Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/iMUcQ30FtXVfrECPiY8IRLPUbsQ.roa
File: iMUcQ30FtXVfrECPiY8IRLPUbsQ.roa (raw, json)
Hash identifier: 5qYyWuP3RXB6I0LozcuIiFamtVtZlL3shzs9H4Oh/hs=
Subject key identifier: 88:C5:1C:43:7D:05:B5:75:5F:AC:40:8F:89:8F:08:44:B3:D4:6E:C4
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 0183B190B2826EBB548E721A6D886289A215
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/iMUcQ30FtXVfrECPiY8IRLPUbsQ.roa
Signing time: Fri 07 Oct 2022 08:29:53 +0000
ROA not before: Fri 07 Oct 2022 08:29:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21208
IP address blocks: 91.228.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:90:b2:82:6e:bb:54:8e:72:1a:6d:88:62:89:a2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Oct 7 08:29:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88c51c437d05b5755fac408f898f0844b3d46ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3d:25:88:40:98:ac:9e:df:45:b6:6e:cc:90:
cc:ae:ab:be:92:f0:89:de:d9:e7:84:7a:89:51:fe:
15:9b:6c:eb:dd:f3:82:7e:01:ca:03:b5:f1:91:ad:
75:fb:9b:80:99:97:69:7e:43:56:74:c7:3f:e2:a1:
c8:9e:8c:ca:c8:12:e8:37:ed:b7:1a:ab:29:cc:b2:
6d:fb:9b:06:89:b4:ec:7f:32:c0:0d:1d:1c:92:66:
7d:6c:dd:55:2b:7b:8f:1c:03:91:13:a4:1d:97:80:
2f:08:ea:20:d4:8f:c3:87:96:bc:12:89:dd:bf:c5:
c4:dd:75:f8:0c:fe:b6:c6:03:98:f8:6a:0e:5e:90:
3d:a3:7f:f7:61:a6:4a:f0:55:83:95:80:74:b9:d2:
25:b4:78:14:5f:0b:b3:2d:29:51:09:87:5e:f2:7b:
5c:33:97:50:0f:5c:25:a1:2a:10:33:d6:f3:fd:bf:
0f:4b:0b:df:7c:89:6a:6e:08:d9:3b:26:4d:9d:c7:
30:d5:bd:01:2e:47:a0:f3:e0:c9:62:81:89:5b:f2:
62:7a:25:5e:d3:50:73:6d:6d:d5:e3:95:e1:ac:b0:
79:dd:d5:a3:7b:b4:b5:3c:44:b9:14:3c:30:8b:49:
f9:53:f5:48:ae:43:a5:ff:9f:a2:b1:b6:38:99:e8:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C5:1C:43:7D:05:B5:75:5F:AC:40:8F:89:8F:08:44:B3:D4:6E:C4
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/iMUcQ30FtXVfrECPiY8IRLPUbsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.188.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ff:af:fa:f4:ad:1b:65:cb:51:44:2e:fb:15:2d:08:10:11:
0f:7a:71:15:32:e1:e3:a3:7d:57:01:0e:ed:f9:86:01:c1:75:
5c:60:69:df:d8:c1:c5:1d:30:60:ec:0d:c3:4e:d3:de:87:35:
d8:7c:17:d6:e9:25:62:9f:9d:60:70:1b:d3:04:8a:da:cf:6f:
42:98:97:ab:d7:86:23:ee:6a:c5:0a:4b:d3:ba:a8:50:c1:0d:
bb:54:2f:5d:b8:0a:67:e8:dd:26:6e:b4:26:06:40:9f:de:47:
55:ee:9f:2c:4f:7d:1e:1d:7d:7a:ce:ee:a8:c7:99:92:7e:20:
ff:d4:19:9e:4c:13:c1:e1:ab:7b:7c:11:1c:05:de:0a:8d:57:
6b:13:cd:9b:ff:bd:6e:3c:9b:68:3b:6e:d6:ae:55:44:5e:d9:
0d:75:84:f6:40:f6:22:3d:8e:6a:32:8e:09:c2:0b:5e:97:69:
fa:d3:28:f0:2d:d9:3f:83:57:1d:f6:25:d0:df:12:8f:4e:61:
b4:de:2b:8e:aa:80:59:88:06:45:9b:96:13:b6:76:35:a9:5e:
e0:86:12:f5:4b:6a:a1:f1:6d:c1:e9:67:d3:94:73:0a:28:a3:
5c:71:6f:ff:e9:4c:17:cb:3a:a4:e2:ae:c2:ec:d4:b6:0e:bb:
d1:b0:ed:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 14:35:03 2025 by rpki-client