Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/50lfQZaUnghh70-tc7Jzfl859SI.roa
File: 50lfQZaUnghh70-tc7Jzfl859SI.roa (raw, json)
Hash identifier: N4g5z3G6P9EmSxpOZBpQdRwdsvTzcemc3xZHhz6ZQcM=
Subject key identifier: E7:49:5F:41:96:94:9E:08:61:EF:4F:AD:73:B2:73:7E:5F:39:F5:22
Certificate issuer: /CN=cdb150276f55bae455988d3a13e59341074dcd0a
Certificate serial: 01856D4AC56A8BD78C1A6CEDD56EB2438AA8
Authority key identifier: CD:B1:50:27:6F:55:BA:E4:55:98:8D:3A:13:E5:93:41:07:4D:CD:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbFQJ29VuuRVmI06E-WTQQdNzQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/50lfQZaUnghh70-tc7Jzfl859SI.roa
Signing time: Sun 01 Jan 2023 12:24:54 +0000
ROA not before: Sun 01 Jan 2023 12:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 91.194.94.0/23 maxlen: 23
91.212.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:c5:6a:8b:d7:8c:1a:6c:ed:d5:6e:b2:43:8a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb150276f55bae455988d3a13e59341074dcd0a
Validity
Not Before: Jan 1 12:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7495f4196949e0861ef4fad73b2737e5f39f522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a3:1a:61:1f:b0:b3:08:93:0b:53:ea:f1:18:
09:b9:fb:cf:54:51:0a:3a:e2:52:eb:80:e5:28:24:
00:5b:60:e3:52:40:eb:22:e6:22:25:6f:29:50:77:
99:8f:72:78:9b:9e:f9:00:7a:5c:77:80:7d:24:a9:
9a:dc:a3:c5:34:a2:3f:28:9a:10:b1:8c:f9:58:9b:
b3:34:8f:08:d6:07:9c:42:0e:c5:42:76:92:4b:3d:
ad:09:13:fb:af:8c:b3:9b:5a:d4:8b:ef:85:0d:5d:
b8:94:9b:52:db:95:d5:34:85:08:4a:c2:96:1f:d1:
b8:75:29:79:6d:78:db:fb:60:e7:f6:f6:8e:b7:78:
f6:d5:f4:16:2e:a5:26:44:48:fc:a0:b1:7b:dc:19:
f8:1b:12:ca:2f:2d:bc:3f:54:0b:4a:75:81:a5:4a:
36:4f:56:1e:af:75:47:18:71:3c:62:e6:8f:ab:cc:
03:d8:96:0f:ca:9c:1d:e5:9a:5f:ed:1c:1d:ad:26:
25:e9:81:e0:80:e3:2b:5e:49:00:f7:39:7d:cb:c9:
60:cb:aa:72:7e:5f:17:af:03:a8:bb:98:e5:44:bf:
fe:1d:41:b5:13:c9:3e:86:c5:63:0e:99:ff:41:f6:
c2:97:e3:58:2f:3a:30:3d:0e:e8:05:7b:58:e0:09:
7c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:49:5F:41:96:94:9E:08:61:EF:4F:AD:73:B2:73:7E:5F:39:F5:22
X509v3 Authority Key Identifier:
keyid:CD:B1:50:27:6F:55:BA:E4:55:98:8D:3A:13:E5:93:41:07:4D:CD:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbFQJ29VuuRVmI06E-WTQQdNzQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/50lfQZaUnghh70-tc7Jzfl859SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/zbFQJ29VuuRVmI06E-WTQQdNzQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.94.0/23
91.212.28.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:59:b3:6d:13:47:6b:ce:cd:e3:70:e5:fb:16:2e:a9:91:2a:
6c:8e:05:a3:4a:21:80:72:cd:ae:5a:d1:79:1c:30:24:26:68:
6d:e1:63:c6:cf:d0:ed:0f:61:30:86:b9:e7:5d:88:89:03:1d:
da:fc:4b:4a:ba:b1:c4:06:c6:7b:f1:31:a4:3c:11:f5:58:15:
42:53:5c:da:a3:f2:49:79:12:5c:e9:db:9d:da:fa:55:08:68:
11:d3:34:c5:0a:e6:6d:2a:70:35:bf:64:4e:42:35:1c:98:69:
b7:d6:b5:05:a0:53:f6:ad:64:8e:c3:a2:15:8f:2d:ba:eb:5a:
4d:fd:f4:b5:01:d3:57:93:6f:86:45:40:fb:9c:cc:21:18:a1:
35:4e:76:82:6f:7d:4b:8c:02:40:1f:86:49:0f:4e:5b:f9:1c:
b1:25:e1:1f:65:47:1e:13:cb:cc:a7:1c:7d:12:21:cd:5c:bf:
3f:d4:a7:4f:fc:03:f5:92:92:44:c4:41:2b:c6:a6:1a:f3:c1:
ca:53:41:f5:fc:af:14:b8:32:95:de:32:f7:52:b3:4a:72:cb:
3b:dd:6e:f5:5b:56:94:22:23:f1:42:64:93:bb:04:ac:db:6b:
12:1f:83:b2:15:be:75:94:a2:7c:c6:e0:54:69:c7:10:92:e9:
00:b4:f2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:39 2025 by rpki-client