Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/B4_EwbuxeaMQDk4mhmnKfP85d_w.roa
File: B4_EwbuxeaMQDk4mhmnKfP85d_w.roa (raw, json)
Hash identifier: rDeQTz39C3/StMmOz96qmSYcQextBkE9ujuairUPwfg=
Subject key identifier: 07:8F:C4:C1:BB:B1:79:A3:10:0E:4E:26:86:69:CA:7C:FF:39:77:FC
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018A99C440BB5B9A5527EF45AB76B825170D
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/B4_EwbuxeaMQDk4mhmnKfP85d_w.roa
Signing time: Fri 15 Sep 2023 16:54:50 +0000
ROA not before: Fri 15 Sep 2023 16:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.116.226.0/23 maxlen: 24
212.116.243.0/24 maxlen: 24
91.147.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:c4:40:bb:5b:9a:55:27:ef:45:ab:76:b8:25:17:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Sep 15 16:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=078fc4c1bbb179a3100e4e268669ca7cff3977fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:51:be:ee:1d:af:97:79:22:1b:70:25:10:47:
c2:1f:78:29:fd:0e:4e:96:1c:f6:d7:dd:90:4c:85:
b8:f7:80:2f:32:72:ee:e3:3f:de:f2:e4:16:3b:29:
f7:55:34:26:8f:26:0e:68:b7:f1:a6:28:3e:31:6c:
9e:37:6b:1a:b2:26:dc:35:21:f7:f8:f1:67:bc:db:
9d:e0:1c:42:8f:b6:01:9a:d4:dd:49:f2:d0:b7:2f:
ee:79:6e:93:eb:4a:b7:df:41:ee:6d:3a:46:4f:94:
27:56:d2:e6:2a:35:fb:d7:c8:e0:fe:9b:d2:18:05:
50:86:a3:13:17:3c:a2:2c:4e:a8:c3:16:b9:99:25:
38:e7:0c:b5:f6:e2:10:74:35:08:1c:e7:61:78:d9:
88:ea:95:48:43:3b:03:ed:26:cf:c6:36:35:45:6e:
98:c2:48:f0:19:b9:75:02:95:83:58:d4:12:42:57:
90:79:98:64:81:58:a8:64:d0:d0:3c:34:66:35:a0:
95:9c:3d:6e:f2:62:c1:06:7b:5b:10:e5:a6:ab:cc:
50:47:3b:b1:e6:8e:c8:19:c9:ce:68:bf:98:2f:d5:
16:3d:aa:8b:73:fc:5e:a2:85:2c:e1:94:71:0b:e2:
3b:15:41:d8:17:d7:41:de:3c:70:83:f6:84:9b:d5:
21:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8F:C4:C1:BB:B1:79:A3:10:0E:4E:26:86:69:CA:7C:FF:39:77:FC
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/B4_EwbuxeaMQDk4mhmnKfP85d_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.121.0/24
212.116.226.0/23
212.116.243.0/24
Signature Algorithm: sha256WithRSAEncryption
40:7c:7e:a3:4d:41:17:6a:7c:64:71:0d:f5:2a:48:bd:59:ba:
5d:25:5e:2c:6f:db:4f:99:1d:a7:73:4e:0e:8c:cc:9e:93:46:
9e:e5:58:58:b5:7b:ea:fb:b1:2f:6f:cf:e6:cc:68:81:09:e2:
87:38:46:5e:22:ec:fe:71:c2:75:3c:e1:d2:47:2f:4c:78:19:
5b:36:81:eb:69:7b:10:60:b5:0c:d4:6e:20:fc:94:5e:c1:de:
33:a1:83:d2:2e:49:6c:e7:34:e0:11:df:3b:82:e7:a8:05:2d:
22:54:c6:e1:c6:4b:37:11:0f:8d:b8:ee:48:d4:11:3d:bf:f5:
cf:52:d1:39:89:0d:69:d1:1a:d2:d0:26:a8:c1:eb:33:c3:44:
8b:5d:2f:26:ef:2b:ac:ea:2b:de:52:e7:c2:00:3c:12:3c:a5:
72:fa:71:9f:70:0c:bf:ec:ee:ae:bc:3b:e2:f8:9a:3d:f3:8b:
1c:8e:15:da:ce:8b:c6:64:55:f8:e4:a5:32:a8:73:14:45:dd:
c7:c2:0b:00:2e:bc:1d:db:cc:7c:9c:de:e1:0f:fd:c8:25:d6:
39:a1:b3:71:c0:d7:8c:c8:1e:eb:a1:e7:53:cf:36:79:ef:65:
bb:71:fb:72:fd:ea:a8:b1:da:d1:78:1b:e3:f4:0a:ee:43:2b:
f3:a0:44:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:26 2025 by rpki-client