Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/1--GIUT3DVHnqcWlF40-pjp2YSZ0.roa
File: 1--GIUT3DVHnqcWlF40-pjp2YSZ0.roa (raw, json)
Hash identifier: lAN75qayuSeFYr6xlMPcpZJgWvpAAX3ogHpvhh/TE2A=
Subject key identifier: FB:E1:88:51:3D:C3:54:79:EA:71:69:45:E3:4F:A9:8E:9D:98:49:9D
Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf
Certificate serial: 018570396427EDADF67C305E8C2765D2188C
Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/1--GIUT3DVHnqcWlF40-pjp2YSZ0.roa
Signing time: Mon 02 Jan 2023 02:04:47 +0000
ROA not before: Mon 02 Jan 2023 02:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51419
IP address blocks: 91.217.16.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:64:27:ed:ad:f6:7c:30:5e:8c:27:65:d2:18:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf
Validity
Not Before: Jan 2 02:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbe188513dc35479ea716945e34fa98e9d98499d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4c:d3:45:b1:74:f8:86:9e:0c:d4:c8:b4:0f:
06:ed:92:2a:54:92:b5:ba:18:00:2a:1c:28:ee:88:
9c:6a:ec:5c:f2:6b:f6:1e:43:d6:ee:db:21:36:20:
20:46:d9:ca:30:12:d5:c7:7d:69:4d:73:da:af:18:
cf:0e:be:96:2a:95:bf:6f:b6:71:f9:10:de:51:3c:
13:ca:d3:0e:22:15:c0:1c:a8:05:c3:c8:44:10:40:
15:b1:79:53:6e:ef:85:d5:f0:38:36:69:21:7e:a1:
e8:18:27:d7:79:e9:92:13:01:df:0d:35:83:cd:b5:
28:2b:bb:5a:0c:13:89:ce:6c:6a:49:40:f1:17:1d:
73:e5:12:0b:9d:39:a6:a8:c9:4c:96:06:b6:80:47:
90:f7:80:77:b2:05:93:31:9d:c9:2c:ab:0c:e5:8e:
44:75:08:74:ae:bb:9e:16:1f:c3:2a:b4:7a:64:6a:
a3:b3:f7:33:68:83:9a:92:ec:8b:b3:06:f1:2b:a8:
08:40:4c:5f:f5:f4:cb:f0:19:8a:08:fa:48:27:84:
3c:50:da:0e:9f:1d:6d:45:f9:7e:01:08:59:3c:93:
e3:c0:e1:45:f3:25:0f:8e:88:21:18:e7:82:fe:7b:
2c:1c:15:6a:4c:69:5f:01:66:6e:bd:1a:e1:db:2c:
27:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E1:88:51:3D:C3:54:79:EA:71:69:45:E3:4F:A9:8E:9D:98:49:9D
X509v3 Authority Key Identifier:
keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/1--GIUT3DVHnqcWlF40-pjp2YSZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.16.0/23
Signature Algorithm: sha256WithRSAEncryption
47:2e:ed:1c:23:22:d3:53:f4:74:fa:db:2b:f7:ab:2f:a6:b6:
1e:fc:fb:67:69:52:58:b2:96:d9:fe:ad:80:12:09:40:18:0c:
83:23:1b:01:30:e1:44:b6:b8:4d:4a:c3:a6:1c:24:47:20:f2:
c3:28:d0:97:98:16:02:6c:7d:56:36:e5:e5:a8:2e:6c:30:95:
34:96:7d:90:e0:eb:c7:ca:2a:09:9e:f9:75:81:f0:d3:f5:e1:
e7:e2:c8:89:a3:9a:12:c7:27:7b:36:3f:18:fe:c5:24:84:c7:
00:16:01:6e:0a:45:d9:e6:be:54:84:13:8a:2f:b8:52:ac:88:
b7:5b:64:05:f9:97:ca:6d:70:59:fa:bd:4a:52:18:7b:a3:3a:
84:e3:72:5c:47:bb:bf:05:53:0d:7e:d9:73:9d:3a:f3:8a:8c:
5a:5a:c0:33:ce:d6:4c:67:8a:0a:e5:60:9d:41:46:10:c8:e1:
02:0d:e3:34:21:b6:36:1b:3b:4f:85:5a:a2:c2:c6:95:55:10:
24:70:17:83:52:a4:60:f0:83:b7:81:58:75:14:9a:5b:ee:c4:
ed:d6:a5:0e:c7:00:0a:33:51:dc:38:fe:ac:d0:f8:37:d3:74:
96:b9:50:eb:ce:13:17:46:af:d2:17:2b:6a:6e:5e:e5:3f:40:
6b:9c:d8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:22:46 2025 by rpki-client