Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bdc335-0acb-4f71-bdb7-54ee6c513ff9/1/7CHaed55zqwrMx8xK84o_ZJAIAA.roa
File: 7CHaed55zqwrMx8xK84o_ZJAIAA.roa (raw, json)
Hash identifier: fJqFSuNOLl7UZPgNujjEdVfZnWRogaOEME1TgacoQcQ=
Subject key identifier: EC:21:DA:79:DE:79:CE:AC:2B:33:1F:31:2B:CE:28:FD:92:40:20:00
Certificate issuer: /CN=14af12bc28a060b59a2b30af2743c9dcbd748e3a
Certificate serial: 074D4840
Authority key identifier: 14:AF:12:BC:28:A0:60:B5:9A:2B:30:AF:27:43:C9:DC:BD:74:8E:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FK8SvCigYLWaKzCvJ0PJ3L10jjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bdc335-0acb-4f71-bdb7-54ee6c513ff9/1/7CHaed55zqwrMx8xK84o_ZJAIAA.roa
Signing time: Sat 01 Jan 2022 09:56:47 +0000
ROA not before: Sat 01 Jan 2022 09:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34881
IP address blocks: 91.237.147.0/24 maxlen: 24
91.237.146.0/23 maxlen: 23
91.237.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122505280 (0x74d4840)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14af12bc28a060b59a2b30af2743c9dcbd748e3a
Validity
Not Before: Jan 1 09:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec21da79de79ceac2b331f312bce28fd92402000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dd:e5:7f:0d:1a:34:01:35:04:ab:08:11:82:
34:a8:df:2d:57:72:6f:e2:87:ce:2a:a8:c7:d1:d9:
27:49:79:6b:2e:7d:dd:af:8e:8c:46:1a:bf:38:8f:
33:ea:ee:d9:98:42:62:46:4f:4d:38:da:50:ee:8c:
0a:92:ed:45:15:90:39:56:c0:74:b1:46:1b:36:71:
ca:24:75:44:d2:5b:f8:d4:61:16:5d:8f:50:ea:29:
7d:ed:0e:03:d6:ae:00:64:10:df:b7:0e:a2:1e:ec:
6f:9b:42:e3:18:f0:e4:18:d5:cc:56:b0:27:c6:dc:
1c:95:61:0e:88:cd:be:89:05:b6:76:ce:45:88:7b:
02:61:92:89:b6:ac:0e:97:d9:fd:70:3e:d9:9b:21:
89:cf:c6:3b:fd:c5:86:01:f0:81:53:67:f0:f4:99:
dd:00:6a:48:27:ef:10:85:db:7c:92:b7:19:d5:e9:
5d:27:82:56:66:8a:52:35:79:60:cf:71:95:f1:52:
26:f2:80:e1:42:30:19:c5:d6:cf:43:e6:c7:fe:01:
d0:2b:a6:33:64:ce:fc:39:18:ce:f4:b3:e8:eb:48:
b3:59:56:84:38:a5:36:06:f8:07:78:e3:f5:b8:1a:
0d:cd:54:02:25:55:f1:e4:20:8a:82:28:df:f7:95:
b8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:21:DA:79:DE:79:CE:AC:2B:33:1F:31:2B:CE:28:FD:92:40:20:00
X509v3 Authority Key Identifier:
keyid:14:AF:12:BC:28:A0:60:B5:9A:2B:30:AF:27:43:C9:DC:BD:74:8E:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FK8SvCigYLWaKzCvJ0PJ3L10jjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bdc335-0acb-4f71-bdb7-54ee6c513ff9/1/7CHaed55zqwrMx8xK84o_ZJAIAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bdc335-0acb-4f71-bdb7-54ee6c513ff9/1/FK8SvCigYLWaKzCvJ0PJ3L10jjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.146.0/23
Signature Algorithm: sha256WithRSAEncryption
96:0d:4e:6c:99:7c:4a:ff:d1:f8:cd:0f:33:56:fe:08:01:67:
eb:af:4a:a6:e9:b2:26:59:e8:39:a9:58:e7:32:67:bc:e9:c0:
1c:c3:e1:89:be:2a:d1:e4:b8:e1:4c:1d:69:b7:ef:c2:e0:a3:
3e:7b:ef:d0:63:c9:85:1e:1e:7e:eb:a1:01:51:c4:27:81:e5:
b2:3c:a8:3d:f8:59:07:56:2c:b9:16:d4:2e:69:1c:4b:8e:f5:
29:67:0a:20:f5:a6:21:15:6c:c5:87:28:da:e8:9a:78:80:12:
02:b6:28:e1:87:45:05:9d:d7:56:df:19:4b:b3:82:4e:6e:14:
e2:2b:15:3e:60:c5:b7:99:54:51:34:34:8b:f5:74:9a:98:97:
68:db:e1:98:29:21:79:78:19:a2:ad:33:fc:3a:9d:de:b7:a3:
dd:c9:d3:b1:be:7b:87:10:88:2f:72:21:68:d3:ee:a5:8c:fb:
bc:b5:dc:d3:be:3b:76:0d:3e:eb:b5:30:83:a2:3a:f2:2f:1a:
b0:dd:94:bc:ff:9b:e7:ae:97:95:68:18:e2:6e:71:eb:42:bd:
3d:b7:e6:09:8e:23:23:fb:bd:6e:07:7b:9a:0f:59:a2:1b:a1:
9d:4d:6d:12:d4:f9:e5:7d:bb:e1:39:ab:87:0e:f0:c5:6a:ea:
56:7f:ea:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:42:22 2025 by rpki-client