Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/EqR5dEeyn1Knk0vnbbjal8ysQEg.roa
File: EqR5dEeyn1Knk0vnbbjal8ysQEg.roa (raw, json)
Hash identifier: nAUY5PzXPJ3byJoCRR05cXRlJ45OPc5volbi7tom/Vg=
Subject key identifier: 12:A4:79:74:47:B2:9F:52:A7:93:4B:E7:6D:B8:DA:97:CC:AC:40:48
Certificate issuer: /CN=0794b700705e0baa736a5dd090acd1cb912c1719
Certificate serial: 03BE2A29
Authority key identifier: 07:94:B7:00:70:5E:0B:AA:73:6A:5D:D0:90:AC:D1:CB:91:2C:17:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5S3AHBeC6pzal3QkKzRy5EsFxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/EqR5dEeyn1Knk0vnbbjal8ysQEg.roa
Signing time: Sat 01 Jan 2022 07:57:21 +0000
ROA not before: Sat 01 Jan 2022 07:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198437
IP address blocks: 91.234.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62794281 (0x3be2a29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0794b700705e0baa736a5dd090acd1cb912c1719
Validity
Not Before: Jan 1 07:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a4797447b29f52a7934be76db8da97ccac4048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:0d:1d:78:71:9c:45:fa:bf:a2:e2:f4:32:
51:ad:d0:17:3c:31:c3:0d:18:db:e5:14:8b:58:f5:
36:41:c6:91:f0:f0:15:fe:d9:fc:ca:a5:4d:ec:64:
30:b0:dd:17:71:0b:f6:86:cf:f3:a7:86:b2:73:3f:
ad:55:dd:01:cd:f9:34:2e:6f:a8:5d:c5:56:8a:ee:
2e:41:aa:a9:85:4a:3a:d1:06:8b:fd:3c:ee:1f:0c:
2b:ea:af:a1:38:b2:f2:53:b6:14:ac:a1:5b:e5:4b:
1f:e5:76:fc:0d:51:fa:45:75:d7:7b:62:00:9b:e1:
d1:7a:46:73:f9:b7:5d:53:a7:19:30:8f:c5:f3:6d:
1b:0e:62:22:60:61:3b:fd:1f:52:b8:34:46:53:95:
f6:db:7c:44:13:87:b6:3d:a1:7d:8a:26:6e:98:d4:
fb:6f:a5:a1:af:0e:39:82:d7:10:f4:7b:09:3c:f8:
0a:ad:72:43:fa:b8:a5:9a:9e:e8:49:dc:70:09:fd:
02:20:18:23:37:41:40:b2:a6:b2:3c:93:f7:d1:ad:
0d:fb:93:3e:76:a5:30:66:a2:ed:e3:a4:6f:a4:38:
42:18:89:6f:33:77:20:ff:7a:ef:f8:f8:73:5d:e5:
0b:ce:60:46:bc:3e:a1:68:bc:31:f0:21:1f:23:bc:
96:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A4:79:74:47:B2:9F:52:A7:93:4B:E7:6D:B8:DA:97:CC:AC:40:48
X509v3 Authority Key Identifier:
keyid:07:94:B7:00:70:5E:0B:AA:73:6A:5D:D0:90:AC:D1:CB:91:2C:17:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5S3AHBeC6pzal3QkKzRy5EsFxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/EqR5dEeyn1Knk0vnbbjal8ysQEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/B5S3AHBeC6pzal3QkKzRy5EsFxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.188.0/24
Signature Algorithm: sha256WithRSAEncryption
53:34:94:4e:c6:52:d1:4c:47:e7:68:11:74:74:7a:f0:02:c0:
56:5e:a6:a5:2a:3f:6f:c1:b8:6b:ad:d8:36:3d:e3:96:44:27:
5d:e6:90:ea:f9:d6:e1:a9:c0:9a:3c:e6:bb:7e:45:41:ef:77:
a3:b8:7f:30:f3:66:16:f2:79:e8:6a:11:2e:9e:e9:d4:97:8a:
bb:53:70:a1:39:a2:bd:1c:35:cf:65:0b:5e:dc:31:23:52:fc:
b2:39:cf:c4:1c:c5:8b:de:e6:78:5b:25:3a:1a:d1:fd:e7:d5:
30:f1:e0:59:e4:9f:8f:b8:ce:eb:f4:cc:94:0e:5c:43:b7:13:
8f:bd:d7:4c:0e:6f:38:55:65:ad:52:ea:b4:45:31:81:e7:92:
f5:75:3f:02:ac:15:62:f2:fd:a3:f8:85:25:63:8f:cc:29:b9:
4a:e1:b4:35:72:38:37:a9:1d:37:b2:d3:83:2c:31:fc:53:10:
b3:7f:a0:41:fc:c0:98:92:a9:cd:7b:e9:6a:37:5e:e2:a1:84:
c7:b1:6b:55:7d:b4:22:e3:bb:b9:18:f7:d3:73:34:30:df:1c:
df:68:c3:75:63:27:b9:13:f3:60:1c:b8:5e:f5:bd:8a:d7:62:
ec:d1:e2:81:2d:67:17:22:a4:70:38:88:cb:b0:4a:70:2e:fe:
20:ef:66:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:38 2025 by rpki-client