Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/pOJDYvqk_VjpLdfN2ga8iJqIrQw.roa
File: pOJDYvqk_VjpLdfN2ga8iJqIrQw.roa (raw, json)
Hash identifier: wP9AYqDA6+6n7UZL2B5PMMvuMxEzgzP7CPra3Rugv84=
Subject key identifier: A4:E2:43:62:FA:A4:FD:58:E9:2D:D7:CD:DA:06:BC:88:9A:88:AD:0C
Certificate issuer: /CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Certificate serial: 02698B1F
Authority key identifier: B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/pOJDYvqk_VjpLdfN2ga8iJqIrQw.roa
Signing time: Sat 01 Jan 2022 05:59:41 +0000
ROA not before: Sat 01 Jan 2022 05:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43349
IP address blocks: 91.215.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40471327 (0x2698b1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Validity
Not Before: Jan 1 05:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4e24362faa4fd58e92dd7cdda06bc889a88ad0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:44:c1:5b:31:e7:89:25:51:b3:0c:bc:52:33:
e7:3d:0f:58:74:e4:be:67:7f:16:aa:82:f8:56:97:
90:1a:9d:44:e6:a7:cf:2e:0a:06:a4:b3:b9:e4:60:
9b:ed:db:57:57:fc:54:cf:09:1a:a2:5c:89:df:7e:
7b:27:3f:96:36:73:12:2e:d2:bc:f3:df:5d:61:bb:
35:e7:7b:83:71:ba:85:49:21:b9:d7:02:b3:07:2e:
8d:d8:d6:e8:a7:1f:0a:44:2e:15:55:23:d7:03:30:
47:0e:19:7d:72:de:e3:c2:e6:ba:9c:17:97:6b:d0:
8d:51:83:c2:56:22:bd:dc:bc:08:52:f1:af:43:b7:
87:e3:f0:6d:00:df:cf:40:b3:15:af:5e:52:de:54:
24:19:c4:e9:6f:df:fe:a2:cc:e2:27:0b:5c:23:73:
d4:45:71:f3:dd:6e:6e:db:ef:d7:0b:ab:bd:85:f0:
5c:bd:6e:4b:1f:33:85:b7:72:de:26:b8:31:be:23:
f3:a7:5d:27:48:66:34:20:51:03:4e:14:b4:85:b2:
5b:66:f2:91:4e:71:a8:53:24:80:41:36:85:d7:ad:
a3:90:e5:d4:0d:4b:cd:d6:63:2d:51:8a:41:57:74:
b1:85:1b:a6:e4:ef:e5:2a:3f:3a:f4:bf:86:3c:6a:
b3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E2:43:62:FA:A4:FD:58:E9:2D:D7:CD:DA:06:BC:88:9A:88:AD:0C
X509v3 Authority Key Identifier:
keyid:B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/pOJDYvqk_VjpLdfN2ga8iJqIrQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.201.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f6:0e:82:24:8c:50:a1:cc:2a:37:28:f1:c0:0a:67:91:c7:
78:d0:02:95:ec:2f:cf:b4:2b:5b:22:1d:2d:05:5b:8c:4d:38:
00:3f:c3:81:62:e7:df:8e:48:10:b4:a7:18:87:58:a0:e5:54:
64:df:bb:0a:03:b7:60:dd:e4:27:cf:a1:19:a6:c7:6d:40:40:
30:fb:da:f1:07:f9:8b:98:22:26:42:1c:6d:7d:d6:ad:03:07:
b0:fd:89:95:ae:07:1f:31:86:ce:29:6b:33:81:1b:3f:48:0b:
ac:55:94:17:0f:17:9f:1a:b8:07:1f:6d:ae:e1:15:f5:95:7b:
97:f6:f0:a8:e3:f4:76:ef:f7:95:34:e1:fd:2c:02:e5:54:f1:
d7:d2:0b:46:ba:67:79:f4:13:30:c9:50:18:00:50:6d:73:92:
06:49:48:0c:b6:8a:56:db:63:fc:73:7a:8a:a6:b1:24:c6:2a:
e0:32:8e:86:8c:8f:f7:bf:c8:db:9e:0e:4e:82:a5:3e:22:68:
25:9b:70:8f:91:9d:2f:8c:05:f3:0b:12:69:f5:4e:29:57:64:
dc:75:9c:99:d8:28:f9:d9:28:a2:93:48:b1:8b:40:06:a6:3a:
3e:82:7a:66:d0:5f:86:a2:30:24:9c:3e:84:ad:d5:be:86:df:
72:a2:41:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:09 2025 by rpki-client