Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/a4447c-4cf2-41ca-8851-41ace195803a/1/dH0N8ChszE5QUnIZeVvnHD9KVGk.roa
File: dH0N8ChszE5QUnIZeVvnHD9KVGk.roa (raw, json)
Hash identifier: qIC5a2Y60NrmKapzaofNRiIZr53sdaWwL9tZ5VEui0k=
Subject key identifier: 74:7D:0D:F0:28:6C:CC:4E:50:52:72:19:79:5B:E7:1C:3F:4A:54:69
Certificate issuer: /CN=9ab6e9b933bd0cc90c5992446f8ac84726916b1a
Certificate serial: 07B6
Authority key identifier: 9A:B6:E9:B9:33:BD:0C:C9:0C:59:92:44:6F:8A:C8:47:26:91:6B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrbpuTO9DMkMWZJEb4rIRyaRaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/a4447c-4cf2-41ca-8851-41ace195803a/1/dH0N8ChszE5QUnIZeVvnHD9KVGk.roa
Signing time: Tue 28 Jun 2022 10:20:04 +0000
ROA not before: Tue 28 Jun 2022 10:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198984
IP address blocks: 91.199.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1974 (0x7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab6e9b933bd0cc90c5992446f8ac84726916b1a
Validity
Not Before: Jun 28 10:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=747d0df0286ccc4e50527219795be71c3f4a5469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:af:0d:5c:95:e7:93:96:2b:8d:b0:de:7b:0d:
7a:3e:d5:c6:50:1a:4e:e2:15:bf:df:aa:11:24:46:
1c:e9:0c:18:19:80:05:91:26:a7:b1:74:4c:c0:02:
83:79:1c:9b:53:c8:2f:c6:6c:8a:fc:d1:4e:1c:b7:
a6:1f:dc:dc:9e:6f:8c:06:df:2d:de:7c:9e:ef:67:
e0:9e:7f:68:6c:31:75:9d:92:31:97:92:6f:a9:30:
82:fb:14:2a:17:5c:8d:5e:52:e1:d0:cf:14:8b:e7:
7b:08:60:38:b2:a7:58:ea:8b:a0:14:00:b1:15:b2:
05:54:16:65:f2:03:aa:18:db:0b:9b:47:69:6e:bb:
2b:ec:9c:5e:46:8a:52:50:24:f7:92:d9:e0:b9:ed:
28:2b:00:dc:e8:18:1b:fa:de:af:27:7f:74:8f:77:
e2:b1:98:cb:ec:97:3d:64:35:4b:ed:1f:73:56:af:
29:81:84:8e:64:06:ea:af:17:75:09:49:43:15:54:
c4:b5:49:dc:3f:07:0c:34:f1:84:27:57:84:fe:e1:
2f:f0:ae:c2:df:68:d9:13:05:43:88:12:11:63:55:
59:5f:4f:e6:bf:70:cc:7a:5b:9f:c9:bc:96:ef:0a:
73:43:ef:91:cc:08:49:9c:b6:a6:d1:b2:7e:4c:0a:
8c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7D:0D:F0:28:6C:CC:4E:50:52:72:19:79:5B:E7:1C:3F:4A:54:69
X509v3 Authority Key Identifier:
keyid:9A:B6:E9:B9:33:BD:0C:C9:0C:59:92:44:6F:8A:C8:47:26:91:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrbpuTO9DMkMWZJEb4rIRyaRaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/a4447c-4cf2-41ca-8851-41ace195803a/1/dH0N8ChszE5QUnIZeVvnHD9KVGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/a4447c-4cf2-41ca-8851-41ace195803a/1/mrbpuTO9DMkMWZJEb4rIRyaRaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.12.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f8:50:2a:83:df:14:d3:f6:46:29:07:d2:99:bc:c8:38:96:
b1:9a:b8:56:4d:48:fc:95:b7:33:3c:65:65:8d:eb:28:ee:51:
08:f6:be:6f:eb:1d:a2:f4:52:9f:bc:ef:58:3f:cc:fc:c6:44:
ab:bd:c3:fb:ac:f4:00:7e:bd:be:db:36:b6:07:3f:3a:4e:b4:
06:61:b2:f9:af:c6:d2:8f:f5:f3:08:0f:c0:67:50:65:38:0c:
90:0e:fc:69:8c:8a:f0:1c:f7:9a:c3:9e:60:09:d5:7e:55:9e:
f9:09:bd:fe:7f:b3:a3:1a:1d:91:8e:6c:54:d1:c8:78:54:c5:
2e:df:c0:7a:46:84:0a:16:c5:e3:1d:87:46:95:2b:96:39:d4:
8d:c7:7d:17:37:d9:76:5f:40:63:ed:23:4f:11:87:24:11:4c:
5f:a0:27:a6:f1:f4:75:d5:9e:55:3c:4d:f2:73:f8:a6:8f:f2:
49:b1:40:19:bd:e8:f4:d0:60:b0:cd:59:2e:ad:68:45:a6:36:
35:53:34:19:76:ee:93:3d:3c:8e:02:99:67:36:72:bd:f2:57:
78:ae:1e:66:2a:e4:54:65:2e:2f:ee:f5:71:a6:62:13:42:f4:
54:e4:a0:2e:e4:11:6b:d1:9a:21:76:6d:7e:d4:1b:07:d5:e2:
a2:c4:00:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:48:19 2025 by rpki-client