Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/64n07Wr0jmkiCyEKAmXCv_mdZ3M.roa
File: 64n07Wr0jmkiCyEKAmXCv_mdZ3M.roa (raw, json)
Hash identifier: 6+5CDFzHgCv8rBFqk8H6fYMb59TrXLgIu2CH6cFHgaA=
Subject key identifier: EB:89:F4:ED:6A:F4:8E:69:22:0B:21:0A:02:65:C2:BF:F9:9D:67:73
Certificate issuer: /CN=3ebeaeaa0f07dc3d54bc115cce202ada9820b1d5
Certificate serial: 0189BAD8D071D81A02C261E6EFB6A4F0553C
Authority key identifier: 3E:BE:AE:AA:0F:07:DC:3D:54:BC:11:5C:CE:20:2A:DA:98:20:B1:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pr6uqg8H3D1UvBFcziAq2pggsdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/64n07Wr0jmkiCyEKAmXCv_mdZ3M.roa
Signing time: Thu 03 Aug 2023 10:01:58 +0000
ROA not before: Thu 03 Aug 2023 10:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209663
IP address blocks: 91.192.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:d8:d0:71:d8:1a:02:c2:61:e6:ef:b6:a4:f0:55:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebeaeaa0f07dc3d54bc115cce202ada9820b1d5
Validity
Not Before: Aug 3 10:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb89f4ed6af48e69220b210a0265c2bff99d6773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6d:42:dd:32:67:6d:97:77:96:05:f8:e8:f0:
ec:a8:51:a7:06:22:c0:30:fc:a6:43:43:2d:11:15:
49:9a:ee:07:62:ec:f0:09:a2:18:59:12:5a:12:de:
c8:6b:7d:9d:0f:1c:74:9e:b9:6c:15:24:b5:92:dc:
59:e9:7b:39:00:a0:57:2c:d3:83:b6:0a:37:3f:c1:
e4:7b:82:75:11:72:5c:d6:2b:08:05:31:51:8a:a6:
cc:7d:23:55:3e:c2:66:92:8f:20:00:13:1f:b8:1d:
27:e8:68:80:e0:59:ce:22:b3:e4:b3:be:64:7f:4f:
ef:37:db:90:e5:e6:1c:12:f9:ba:1e:d4:dc:2d:e2:
d0:b2:f2:e7:0e:88:f9:eb:e8:f1:bf:a3:01:48:39:
15:f6:c9:9f:2b:6b:e4:b6:0b:44:d4:23:1f:a5:0c:
94:65:87:a9:3e:37:ae:d2:17:1a:93:00:d2:5e:e9:
cc:14:b7:88:44:d7:98:b9:bb:3e:4f:ae:a2:de:af:
51:0f:15:de:0c:c0:03:62:45:a4:25:07:b8:8d:cf:
47:29:dd:2c:d4:cb:be:b9:a0:db:5c:dd:d8:bf:4e:
8f:5e:b4:6d:5a:6e:36:f7:19:30:2a:72:07:06:44:
96:85:1c:ce:2a:75:74:73:36:c8:14:e1:d0:c4:ae:
d3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:89:F4:ED:6A:F4:8E:69:22:0B:21:0A:02:65:C2:BF:F9:9D:67:73
X509v3 Authority Key Identifier:
keyid:3E:BE:AE:AA:0F:07:DC:3D:54:BC:11:5C:CE:20:2A:DA:98:20:B1:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pr6uqg8H3D1UvBFcziAq2pggsdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/64n07Wr0jmkiCyEKAmXCv_mdZ3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/Pr6uqg8H3D1UvBFcziAq2pggsdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:58:cd:9d:9b:63:97:b5:c1:90:c7:e9:b7:04:89:38:45:64:
40:d3:ff:88:c0:c4:9d:05:0d:5c:fe:a7:22:a7:63:05:e4:65:
6a:4c:16:69:28:ca:65:18:97:a2:be:75:b8:33:36:10:4b:25:
d8:28:b0:15:e8:6f:3d:09:09:83:fe:39:66:ed:5e:d0:fe:e5:
f3:b3:b8:be:b5:bf:3b:e9:57:91:46:e5:f1:c7:d0:2f:ef:a3:
38:7f:ee:46:7e:7a:8f:de:48:ad:06:7c:3c:0c:95:d5:2c:2f:
85:4c:7d:76:f2:6a:d3:76:11:1f:b2:3d:6e:07:33:f3:75:cb:
f4:f7:54:49:31:2f:3a:ca:79:b7:5b:f6:8a:f3:1a:a9:d0:16:
62:56:ac:48:f3:6c:a8:ce:c3:ca:f2:32:4c:59:d6:89:96:ad:
0c:5f:6b:b8:2f:f0:3e:f6:64:63:eb:4c:35:db:b1:92:75:f0:
ce:84:15:c2:e4:48:7d:ab:22:be:6f:da:07:5d:48:0e:c1:96:
3a:c6:39:c6:93:06:26:42:ba:52:df:13:51:d6:0c:7e:bc:73:
79:20:c0:74:e8:50:75:df:d1:6c:06:76:12:f7:78:bb:05:c7:
ab:03:50:68:50:69:2e:b5:41:7e:13:7e:62:0e:54:a5:c2:4b:
23:e4:b8:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:21 2025 by rpki-client