Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e9203d-cdcf-4f23-a3bf-f449bad29855/1/Yqm4E1oxNYB19cZUsZLNbpAWn_4.roa
File: Yqm4E1oxNYB19cZUsZLNbpAWn_4.roa (raw, json)
Hash identifier: eEsob374RsTEOwcyruTc9whhPKzHRFeR1aIRAAHzBYY=
Subject key identifier: 62:A9:B8:13:5A:31:35:80:75:F5:C6:54:B1:92:CD:6E:90:16:9F:FE
Certificate issuer: /CN=d70af942465ff265b896f0d1b762490f27dc322c
Certificate serial: 01856C41210838387CEAE6F27D3473C55177
Authority key identifier: D7:0A:F9:42:46:5F:F2:65:B8:96:F0:D1:B7:62:49:0F:27:DC:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wr5QkZf8mW4lvDRt2JJDyfcMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e9203d-cdcf-4f23-a3bf-f449bad29855/1/Yqm4E1oxNYB19cZUsZLNbpAWn_4.roa
Signing time: Sun 01 Jan 2023 07:34:45 +0000
ROA not before: Sun 01 Jan 2023 07:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30417
IP address blocks: 91.208.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:21:08:38:38:7c:ea:e6:f2:7d:34:73:c5:51:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d70af942465ff265b896f0d1b762490f27dc322c
Validity
Not Before: Jan 1 07:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62a9b8135a31358075f5c654b192cd6e90169ffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:71:0c:df:c1:ac:4d:38:77:53:56:c8:5d:0a:
e6:64:96:bc:87:1b:6d:73:90:bb:11:f9:7e:cd:e2:
e9:6c:fb:84:e6:57:1b:0a:94:77:9c:3c:32:f2:1e:
3c:c0:2d:fd:bc:72:ee:f8:d1:fc:a7:29:1a:9d:e3:
67:79:d7:01:b7:23:b5:b8:a5:5b:d5:d2:6c:f4:c0:
7c:c3:e9:22:2d:3b:65:ae:f1:fb:5f:ac:b3:9e:f1:
72:85:56:75:c7:93:08:c9:52:52:01:bb:30:f3:58:
45:3d:27:6b:d9:85:a1:3e:7d:8b:03:2f:92:60:9b:
b6:0f:71:6f:a4:88:dd:96:24:6a:51:16:02:7e:7c:
c3:c6:52:88:55:71:19:90:40:b1:f6:80:20:51:85:
e7:35:e4:51:33:b1:48:1f:05:01:45:72:1d:84:17:
62:9b:06:f0:48:ee:06:96:e2:c6:9d:d7:8d:90:16:
8d:19:2d:57:04:83:36:9a:4d:f1:0b:74:ab:72:40:
da:1b:ad:e5:61:9a:25:39:99:ba:ba:fe:aa:83:5f:
78:c7:20:c5:6c:c1:9f:75:ef:70:be:e2:a5:a8:cb:
48:47:c9:cd:e6:6e:7a:b4:92:f8:8d:d9:c0:b5:fc:
56:e9:64:9f:8b:8b:1d:84:01:04:15:13:a5:d9:2b:
68:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A9:B8:13:5A:31:35:80:75:F5:C6:54:B1:92:CD:6E:90:16:9F:FE
X509v3 Authority Key Identifier:
keyid:D7:0A:F9:42:46:5F:F2:65:B8:96:F0:D1:B7:62:49:0F:27:DC:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wr5QkZf8mW4lvDRt2JJDyfcMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e9203d-cdcf-4f23-a3bf-f449bad29855/1/Yqm4E1oxNYB19cZUsZLNbpAWn_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e9203d-cdcf-4f23-a3bf-f449bad29855/1/1wr5QkZf8mW4lvDRt2JJDyfcMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.252.0/24
Signature Algorithm: sha256WithRSAEncryption
24:9f:d6:bc:6b:63:db:09:e7:cd:73:8e:fc:2d:ab:0b:1c:b1:
ea:b5:88:cb:19:6f:c8:39:2b:12:e1:cc:96:76:a4:41:e6:03:
73:61:99:54:c2:8e:a7:48:3b:e0:91:3f:f2:f4:ec:8b:95:63:
7a:87:2a:90:34:08:12:61:61:87:02:e4:58:7e:a5:a8:ce:01:
fe:79:e4:92:00:2c:59:70:e9:97:7c:e9:3e:5e:ff:3d:6d:d2:
ee:59:bb:5f:89:a7:5b:a1:d7:4c:89:49:89:c1:c9:88:dd:48:
08:60:96:5d:bf:75:39:fa:7c:ca:7f:62:53:b2:06:53:85:29:
79:8d:6a:1b:7b:dd:87:1f:99:e8:c1:3b:e5:e8:cb:9a:e7:a9:
dc:7c:d7:f4:33:85:64:0b:6b:0d:8b:d4:e4:f3:ac:9d:c6:82:
28:56:29:ed:09:ea:44:af:f8:5e:a7:18:30:7b:f5:a7:b9:1a:
8b:51:3d:d0:5a:02:bd:92:5b:f1:e2:50:34:6f:ff:03:3b:37:
cb:bc:76:48:19:16:da:50:3a:52:28:97:3d:07:32:d0:7d:e4:
9c:1c:9d:c9:14:0f:ab:64:7a:9e:9b:f6:40:1c:ec:45:5b:74:
b5:44:a0:56:3d:da:11:14:57:72:8a:47:2a:27:94:f7:90:14:
18:84:d7:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:10 2025 by rpki-client