Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/_4cSgou3PBgLi9CReY5nIPCJ5Xk.roa
File: _4cSgou3PBgLi9CReY5nIPCJ5Xk.roa (raw, json)
Hash identifier: /5/aJ5xO06QVnafCkD3C5y5/o+68HjAm0p2xLQ1SECo=
Subject key identifier: FF:87:12:82:8B:B7:3C:18:0B:8B:D0:91:79:8E:67:20:F0:89:E5:79
Certificate issuer: /CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Certificate serial: 01856E26572C2C48FC2DB9CA17121FC560D9
Authority key identifier: 42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/_4cSgou3PBgLi9CReY5nIPCJ5Xk.roa
Signing time: Sun 01 Jan 2023 16:24:44 +0000
ROA not before: Sun 01 Jan 2023 16:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51780
IP address blocks: 91.209.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:57:2c:2c:48:fc:2d:b9:ca:17:12:1f:c5:60:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Validity
Not Before: Jan 1 16:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff8712828bb73c180b8bd091798e6720f089e579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ae:4d:83:83:2f:aa:8b:d3:27:77:1e:f3:e4:
50:00:59:a5:5b:d7:b5:d3:12:c5:a4:33:9d:d6:60:
ac:4d:40:fa:92:e0:64:dc:3e:67:8c:dc:89:3d:aa:
b5:e9:96:8c:a3:24:57:6b:85:36:f2:f6:c4:c4:42:
67:ea:ac:5d:6f:e7:b6:ff:2d:d6:b5:97:bb:42:db:
82:96:ab:16:e6:2b:59:da:b0:72:d1:28:db:55:67:
70:3c:40:29:93:a7:3a:7f:d0:53:00:bc:04:28:a3:
b8:5c:6b:95:a3:bf:b7:32:ae:60:4f:3a:25:af:39:
af:bc:c5:10:d2:0b:c9:e9:0b:58:d2:d4:84:a6:7a:
48:5a:76:67:88:8a:7f:56:3d:32:f1:02:1c:f9:1a:
a7:3f:5b:19:73:76:ca:8c:27:24:7d:46:5a:e3:df:
17:42:44:75:55:a0:c7:5b:d9:37:34:02:0d:55:3d:
ea:86:75:14:29:3b:3d:9b:8d:64:45:72:ec:34:a7:
47:b6:dd:61:91:69:8f:7c:5d:66:db:72:34:cf:dc:
a2:7c:45:3e:bc:9d:2e:ee:e6:b4:8f:ec:e9:47:66:
88:9a:8b:8e:48:81:fe:e0:e0:46:76:de:88:5a:e8:
ce:c7:c8:9a:36:42:59:ad:12:e1:46:52:01:1f:16:
e5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:87:12:82:8B:B7:3C:18:0B:8B:D0:91:79:8E:67:20:F0:89:E5:79
X509v3 Authority Key Identifier:
keyid:42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/_4cSgou3PBgLi9CReY5nIPCJ5Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/QmRGpKHLVrP3b-a03vq6072bUgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:6f:f0:02:80:4c:7f:e4:61:e9:d8:54:a3:7b:78:84:2e:7a:
a5:d8:57:ee:1c:d9:14:19:4c:07:7c:ec:ea:48:25:66:e5:53:
b1:46:ab:1c:b0:1f:17:7a:e9:05:2e:d4:38:f3:d1:5f:89:a0:
ed:56:de:bb:46:5e:a2:e7:d4:29:d8:e1:4f:19:74:aa:86:72:
2c:55:34:c5:ff:46:8c:00:5f:e8:3d:34:b5:23:36:93:d2:f4:
a5:ec:57:29:d2:b3:c8:b8:39:4c:8a:ed:8f:24:b7:df:6f:62:
83:80:6a:6a:f9:b5:f3:9e:7b:0b:49:30:4f:a3:58:96:ef:3e:
49:77:8a:bd:e6:e5:88:3f:0f:91:f7:54:0e:2d:22:aa:ab:a9:
2a:2d:fc:f2:06:35:d3:d5:90:a2:04:da:84:2b:e6:40:e4:93:
a9:06:10:50:6a:69:0d:2c:7a:4f:df:fd:b9:fd:66:02:c4:06:
33:d4:a6:ba:28:c3:91:07:84:ad:7a:e2:45:ce:76:31:fb:2d:
cf:ad:3a:61:cf:78:51:f5:a2:f6:94:fd:fb:76:f2:77:bd:e3:
a4:7e:62:a4:b7:3d:10:cf:8e:80:1b:88:41:53:11:e2:d4:c0:
ce:99:9a:ff:23:bb:c4:2c:85:64:83:2d:f2:fb:8f:6d:50:71:
5d:32:6b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:55 2025 by rpki-client