Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3e775d-b117-40dd-ae6a-2d502e956c04/1/R4SrhnHUdqAe8kyLgDE7zptEW7Y.roa
File: R4SrhnHUdqAe8kyLgDE7zptEW7Y.roa (raw, json)
Hash identifier: wuNK6EeC+Co2/6Tr3TBY7W6ZxrsKsiwanPFGHnqwYXc=
Subject key identifier: 47:84:AB:86:71:D4:76:A0:1E:F2:4C:8B:80:31:3B:CE:9B:44:5B:B6
Certificate issuer: /CN=4c9d6c55be1be8a84ad2dfd5a7ffa5848f54d409
Certificate serial: 05A807D2
Authority key identifier: 4C:9D:6C:55:BE:1B:E8:A8:4A:D2:DF:D5:A7:FF:A5:84:8F:54:D4:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJ1sVb4b6KhK0t_Vp_-lhI9U1Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3e775d-b117-40dd-ae6a-2d502e956c04/1/R4SrhnHUdqAe8kyLgDE7zptEW7Y.roa
Signing time: Sat 01 Jan 2022 00:52:58 +0000
ROA not before: Sat 01 Jan 2022 00:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207332
IP address blocks: 91.212.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94898130 (0x5a807d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9d6c55be1be8a84ad2dfd5a7ffa5848f54d409
Validity
Not Before: Jan 1 00:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4784ab8671d476a01ef24c8b80313bce9b445bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:6f:22:d4:9f:7d:0a:69:40:42:19:c9:5f:
51:d0:1c:7a:1e:4c:31:44:1f:18:5b:a7:b7:8a:c3:
6f:a2:91:f4:09:e2:ff:ad:b8:c2:a3:7a:bf:ec:7e:
d6:74:54:c1:d8:56:6d:b0:58:86:2b:31:3c:3b:3e:
34:03:f4:f2:f6:73:1a:0b:c3:81:b7:07:7a:d7:92:
55:cf:63:cb:54:29:de:c5:4e:30:ea:cc:dc:56:ad:
fb:6c:d3:1e:98:75:e1:a6:f8:44:41:14:05:1f:fd:
ff:74:c0:3a:47:12:69:a0:56:10:b7:60:78:b4:87:
c7:9a:a9:65:31:f7:3f:64:d4:c7:58:a4:4c:53:6a:
26:86:2d:2b:ab:0d:55:ae:51:94:2d:e9:b8:dc:85:
c2:40:f7:18:30:e6:88:83:d7:43:1c:36:d2:c2:d4:
11:0e:0e:f5:a4:14:63:ee:d3:4d:25:97:2e:36:5b:
92:7d:a8:80:01:64:f8:46:bc:9d:94:dd:78:7e:70:
e5:e8:98:88:3a:6d:c1:20:13:cd:be:51:e0:ad:2f:
d6:29:9b:3a:a4:a9:b9:0b:3c:28:d4:36:fe:40:33:
7e:44:e8:8b:48:aa:63:b1:77:79:8c:c4:77:a7:a7:
14:1c:23:bf:5d:c5:61:e9:c1:99:e3:89:bf:f1:02:
10:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:84:AB:86:71:D4:76:A0:1E:F2:4C:8B:80:31:3B:CE:9B:44:5B:B6
X509v3 Authority Key Identifier:
keyid:4C:9D:6C:55:BE:1B:E8:A8:4A:D2:DF:D5:A7:FF:A5:84:8F:54:D4:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJ1sVb4b6KhK0t_Vp_-lhI9U1Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3e775d-b117-40dd-ae6a-2d502e956c04/1/R4SrhnHUdqAe8kyLgDE7zptEW7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3e775d-b117-40dd-ae6a-2d502e956c04/1/TJ1sVb4b6KhK0t_Vp_-lhI9U1Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:59:51:c7:3f:ec:08:17:89:fd:18:40:3e:5e:83:73:0d:4c:
28:68:a5:ef:66:df:4a:a7:cf:61:73:be:28:8c:a0:9d:bf:9f:
df:74:81:1d:35:af:99:28:74:a1:80:28:ed:90:b1:f5:d6:88:
74:d0:75:66:d6:71:0a:b0:ff:42:40:fe:89:0e:93:25:bb:4c:
7f:1d:dd:f1:66:8d:49:cb:f2:1d:de:0b:64:1b:a9:1e:4c:15:
0a:15:61:f6:2e:da:f8:97:f7:f1:18:10:fe:af:a8:9b:85:67:
78:96:cf:91:14:59:f8:c4:f9:92:2c:a1:60:15:fc:09:c7:56:
81:23:e6:06:86:b0:89:6d:3e:48:d1:fe:fa:2c:90:c8:94:08:
57:30:79:43:1e:0d:50:5c:82:fd:8c:e5:1a:22:f9:c5:d9:34:
e8:f0:a4:82:7e:00:e8:35:fc:df:26:a8:63:20:79:3c:4d:6c:
ad:b1:49:cd:f4:a9:06:8b:be:bd:cb:3a:ba:ae:7e:d0:86:ce:
0e:5e:b0:cd:d9:e3:50:77:ae:57:23:0a:ca:77:10:1d:b1:8f:
53:1a:6c:9a:4d:64:22:62:08:5c:09:d3:a3:c7:a4:79:d0:83:
8a:46:d1:5f:d3:c9:d6:0c:e7:c0:d2:ca:01:bd:d3:0f:ca:46:
e6:ff:4d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:29 2025 by rpki-client