Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/E3s1cLMuHp1lG0KwixSCukXJMq0.roa
File: E3s1cLMuHp1lG0KwixSCukXJMq0.roa (raw, json)
Hash identifier: QpP8ck5rlAyjgQy4XQxTdQhZmJaE+jbUlZ6j2xNo3Rk=
Subject key identifier: 13:7B:35:70:B3:2E:1E:9D:65:1B:42:B0:8B:14:82:BA:45:C9:32:AD
Certificate issuer: /CN=762c60af4d73725845ceaf0b7b585e7757066965
Certificate serial: 0A8435F3
Authority key identifier: 76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/E3s1cLMuHp1lG0KwixSCukXJMq0.roa
Signing time: Sat 01 Jan 2022 00:57:26 +0000
ROA not before: Sat 01 Jan 2022 00:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203134
IP address blocks: 91.240.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176436723 (0xa8435f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762c60af4d73725845ceaf0b7b585e7757066965
Validity
Not Before: Jan 1 00:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=137b3570b32e1e9d651b42b08b1482ba45c932ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7e:75:41:b1:7f:40:d7:c2:d3:c8:d2:49:b9:
fa:23:d2:eb:94:09:be:6d:b4:f1:1a:f1:62:3a:0c:
62:2e:17:a4:c9:bf:81:0e:db:2d:27:a3:f4:3c:75:
22:59:57:47:ac:48:b7:7a:ab:35:3e:1a:22:e5:d5:
27:25:7a:78:70:a1:90:06:60:dc:5e:66:81:5c:22:
9d:02:da:a3:68:3d:1f:fb:67:47:10:b6:c2:22:66:
e2:60:1a:50:a0:87:ff:a1:ab:fd:74:0f:02:e5:af:
18:25:1b:b1:1f:72:20:df:2c:49:5c:fd:ee:32:39:
cc:8d:01:ec:bc:da:fa:54:cc:92:4c:95:90:4e:88:
2d:fd:89:b3:3d:e7:b6:e0:3e:5f:e6:10:df:a6:8f:
57:7e:78:6a:5b:7a:79:9c:bb:52:12:98:8b:ba:c3:
49:24:e1:84:64:e5:25:4b:da:c1:41:f0:6d:f4:0b:
c2:4a:94:c4:51:8b:39:45:08:bd:ce:fd:10:e5:fd:
09:35:25:6e:5a:b1:fe:20:f9:b6:86:c5:7c:8a:4d:
6b:cb:3d:76:96:af:af:94:76:cd:96:c4:0c:7d:1e:
a0:9a:19:eb:11:fc:e3:59:99:8e:a9:11:28:90:10:
d8:09:70:cf:fe:dd:83:f2:ef:95:4f:26:fe:77:bf:
1b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7B:35:70:B3:2E:1E:9D:65:1B:42:B0:8B:14:82:BA:45:C9:32:AD
X509v3 Authority Key Identifier:
keyid:76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/E3s1cLMuHp1lG0KwixSCukXJMq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
73:76:40:20:16:4b:c6:a5:1c:44:d1:7e:cc:4f:3e:4b:e2:5a:
f7:6b:ce:16:7a:4f:b3:0f:1b:e7:25:8c:b9:7d:3b:ef:33:78:
5f:5b:74:6e:ec:e1:17:ce:1c:39:99:73:89:5e:c5:c0:55:22:
80:66:4a:10:e3:43:06:9d:0e:d9:dd:22:fd:47:97:b1:6e:a9:
e3:72:20:74:f1:b0:18:f9:40:9a:a2:7f:d7:b3:3c:01:71:47:
34:fc:e3:02:17:c4:54:31:e2:90:0c:5b:98:d4:cd:ec:3c:9a:
db:ae:70:4e:61:89:6c:d0:a5:00:dc:db:b6:f1:d6:35:80:cf:
54:f3:61:89:db:8f:90:29:6d:44:37:64:10:85:62:14:1f:1f:
06:46:e5:fc:77:67:c2:a3:72:a8:e6:4a:74:b6:f1:32:a9:3d:
77:86:b0:eb:a9:3a:e1:62:78:75:44:d9:d0:c0:d4:39:ac:44:
d0:a4:aa:2e:ee:d9:35:36:af:4e:e1:78:7f:89:6e:92:21:23:
48:b8:ee:1b:f4:e3:2e:20:56:19:2b:dc:62:36:28:4c:73:8c:
87:ff:44:95:9f:65:9e:91:fe:09:93:3c:eb:e7:fe:44:25:bd:
c7:9e:26:32:04:2d:8a:9c:21:e6:ef:ca:db:c1:12:21:4b:8d:
1e:3f:8b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:16 2025 by rpki-client