Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/2485f5-df3e-4dba-810e-fe440111d807/1/6Ln-GTDJyHVSnpkhfcYVUFOjwKM.roa
File: 6Ln-GTDJyHVSnpkhfcYVUFOjwKM.roa (raw, json)
Hash identifier: nyTLWrZikbmPbRmuwgEpCePrGq5k6lL+l1fUy06lFPQ=
Subject key identifier: E8:B9:FE:19:30:C9:C8:75:52:9E:99:21:7D:C6:15:50:53:A3:C0:A3
Certificate issuer: /CN=1d87f30274951cadfb5b737e1333c73d64b04256
Certificate serial: 01856EB91265417580AFC017C21893DCC7F1
Authority key identifier: 1D:87:F3:02:74:95:1C:AD:FB:5B:73:7E:13:33:C7:3D:64:B0:42:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYfzAnSVHK37W3N-EzPHPWSwQlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/2485f5-df3e-4dba-810e-fe440111d807/1/6Ln-GTDJyHVSnpkhfcYVUFOjwKM.roa
Signing time: Sun 01 Jan 2023 19:05:00 +0000
ROA not before: Sun 01 Jan 2023 19:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6696
IP address blocks: 91.220.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:12:65:41:75:80:af:c0:17:c2:18:93:dc:c7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d87f30274951cadfb5b737e1333c73d64b04256
Validity
Not Before: Jan 1 19:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8b9fe1930c9c875529e99217dc6155053a3c0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:44:b9:ff:f7:6b:b2:98:7d:46:7b:11:8f:
d8:99:49:3c:4e:21:3c:2f:30:eb:ec:51:47:eb:e7:
90:92:3d:82:95:27:ae:e3:80:81:d5:2a:4b:87:2b:
5b:d2:fe:ed:56:6c:a3:94:be:5c:33:bb:56:7a:b6:
36:30:6c:75:77:d6:43:0e:5b:fd:14:bc:25:4a:d7:
ca:d1:8f:5e:98:8b:14:a9:44:19:a3:78:13:fd:b2:
73:8a:c9:68:05:26:63:01:b3:aa:38:7a:38:0f:79:
37:cc:ba:c0:ee:3d:6d:e5:58:6b:de:91:fd:88:69:
3a:91:be:25:18:e6:0a:c2:a8:eb:a5:e3:c6:6f:bb:
a8:d5:d6:4c:d5:86:ed:80:86:d6:f3:91:b5:ea:65:
df:a3:d3:66:43:df:82:85:82:9b:2f:20:a4:e2:ed:
4c:f0:11:45:ae:7e:5b:c1:c7:80:b4:9e:10:de:89:
07:36:c5:b0:93:4f:b1:b8:7c:89:4f:8d:82:7b:ca:
f4:ed:d6:84:cf:63:09:2b:e0:7a:c1:fc:51:99:bf:
0c:41:5a:d3:4d:03:c9:06:b8:c5:90:42:fc:d4:68:
7b:a4:e7:54:53:db:d6:23:9d:49:3d:ad:ba:02:f5:
57:17:10:44:f1:d9:bc:17:90:95:44:11:01:39:51:
ec:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B9:FE:19:30:C9:C8:75:52:9E:99:21:7D:C6:15:50:53:A3:C0:A3
X509v3 Authority Key Identifier:
keyid:1D:87:F3:02:74:95:1C:AD:FB:5B:73:7E:13:33:C7:3D:64:B0:42:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYfzAnSVHK37W3N-EzPHPWSwQlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2485f5-df3e-4dba-810e-fe440111d807/1/6Ln-GTDJyHVSnpkhfcYVUFOjwKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2485f5-df3e-4dba-810e-fe440111d807/1/HYfzAnSVHK37W3N-EzPHPWSwQlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.111.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a6:79:45:0c:13:05:c2:b5:62:99:30:9f:82:3e:6d:3d:a0:
ba:f4:b4:8b:cd:d6:89:37:7c:41:12:6e:00:9b:bc:4f:ee:41:
4e:c2:30:ec:5e:04:99:44:4e:9d:b4:82:11:52:00:f6:12:29:
56:21:4f:bf:7f:6b:49:51:cf:ae:29:72:cd:70:54:df:d3:cd:
3b:6f:23:bf:64:4a:d7:ef:69:9e:92:67:62:e7:72:75:ef:25:
55:a0:b6:a6:e7:68:1a:db:f7:14:89:12:64:84:30:35:96:d6:
d5:d4:d0:2c:dc:3c:c2:78:05:8c:8d:e6:99:94:b3:84:b8:e1:
f1:06:dd:ea:84:c2:c8:ab:e8:96:9b:ee:56:b7:6f:1c:d2:51:
74:58:bd:ae:89:46:43:e7:0b:82:28:b2:ee:3f:64:cb:91:3a:
64:85:0a:2f:f5:da:fc:97:d1:93:45:32:67:1a:c1:c0:33:27:
6c:d8:85:13:60:93:94:fa:23:99:8a:1e:c8:15:d7:9e:8d:d0:
e7:ef:a9:8b:62:e2:e0:1b:83:8b:76:c8:32:ce:e3:0f:0b:8c:
f1:a6:53:25:24:d3:b4:10:a0:a4:19:6b:3c:33:38:75:89:aa:
e7:c3:eb:0b:74:b1:a6:c1:8f:c8:59:0c:8f:40:f1:09:0f:33:
97:07:b0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 12:43:40 2025 by rpki-client