Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/fD4dMhC4HX9DARZIBlGiQnXg-kc.roa
File: fD4dMhC4HX9DARZIBlGiQnXg-kc.roa (raw, json)
Hash identifier: hWXqxcWDeKyczei3q+UMowXHySQYmd4iofmum6v5/z4=
Subject key identifier: 7C:3E:1D:32:10:B8:1D:7F:43:01:16:48:06:51:A2:42:75:E0:FA:47
Certificate issuer: /CN=391e994a95012d92fb51a28c8a650ed9f97737b8
Certificate serial: 01856CEF235F9D25A6264BFD75F83CB0154F
Authority key identifier: 39:1E:99:4A:95:01:2D:92:FB:51:A2:8C:8A:65:0E:D9:F9:77:37:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OR6ZSpUBLZL7UaKMimUO2fl3N7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/fD4dMhC4HX9DARZIBlGiQnXg-kc.roa
Signing time: Sun 01 Jan 2023 10:44:49 +0000
ROA not before: Sun 01 Jan 2023 10:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56792
IP address blocks: 91.227.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:23:5f:9d:25:a6:26:4b:fd:75:f8:3c:b0:15:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391e994a95012d92fb51a28c8a650ed9f97737b8
Validity
Not Before: Jan 1 10:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c3e1d3210b81d7f430116480651a24275e0fa47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:15:44:88:db:b0:9d:47:ef:60:3e:2e:02:bb:
f9:24:db:c1:6b:8b:5f:71:c8:af:2c:76:98:b0:f7:
9e:82:6e:0b:20:07:9f:8a:60:48:56:60:b7:3e:80:
14:c5:b6:1a:ae:f8:7e:e2:d3:95:d4:fd:cf:16:0a:
82:9f:a9:6a:75:7f:ad:84:00:56:df:68:2d:ff:a1:
d2:6d:db:7d:04:0c:6e:9f:77:69:91:4e:93:cc:2b:
37:23:a1:d7:cb:a1:81:0d:e8:06:a7:2f:7f:30:56:
6b:1d:e1:b8:04:ac:69:53:ab:fd:24:bd:3c:86:0d:
dc:78:ec:08:2a:66:c2:1b:3d:64:97:e4:76:a6:48:
20:4a:18:cc:a6:44:e7:51:61:7c:2a:16:fb:b5:79:
a1:c7:50:fe:29:e0:a1:be:b1:df:d6:02:ef:19:f4:
d7:7a:2d:34:89:a8:98:0e:f6:e6:24:00:07:4e:32:
d9:94:77:dc:ae:87:8c:2c:f5:18:4a:de:b2:ce:9e:
a6:a3:af:28:fd:dd:78:05:b1:08:40:55:85:b5:a2:
70:31:57:4d:e5:9e:27:fe:bc:e5:f6:37:3f:36:6b:
72:dd:cd:a6:a0:10:30:6d:a6:96:a3:31:a9:68:62:
5c:a4:f8:82:34:3d:72:e8:02:b5:db:c4:61:90:2b:
4a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3E:1D:32:10:B8:1D:7F:43:01:16:48:06:51:A2:42:75:E0:FA:47
X509v3 Authority Key Identifier:
keyid:39:1E:99:4A:95:01:2D:92:FB:51:A2:8C:8A:65:0E:D9:F9:77:37:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OR6ZSpUBLZL7UaKMimUO2fl3N7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/fD4dMhC4HX9DARZIBlGiQnXg-kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/OR6ZSpUBLZL7UaKMimUO2fl3N7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.185.0/24
Signature Algorithm: sha256WithRSAEncryption
87:04:8e:06:94:25:e6:7f:c2:f4:67:a3:5e:8c:93:49:41:6e:
dd:64:18:28:b2:02:6c:06:94:1c:e1:c5:c3:08:5c:c8:01:0a:
e2:df:df:88:38:8c:cc:56:c0:c8:10:9f:a7:64:08:f8:f4:db:
89:61:e8:a9:6f:2a:7b:6e:5f:62:d2:52:52:31:32:4c:7e:34:
56:61:83:5c:55:6f:0e:8f:97:d9:14:60:8c:f5:10:27:38:d3:
9a:50:a8:b1:ca:eb:3e:f9:3e:e4:d9:b4:24:e4:d1:7b:5a:5a:
ce:51:91:2e:b4:79:38:b6:7e:fc:c7:32:03:e3:82:4f:1d:75:
fa:38:2d:9f:e6:cd:49:f1:82:5d:ae:f7:da:03:2c:fa:6e:54:
8a:22:b7:93:4d:74:6e:16:84:e5:d5:dd:3c:4e:73:4f:f9:3d:
4b:48:a9:d2:c4:d8:af:66:15:d4:bd:70:e8:e3:6c:6e:58:e8:
ff:f5:b7:c0:cf:2b:81:0b:5c:4b:d1:db:d0:14:17:57:37:d8:
ec:31:ef:60:58:b9:7a:7a:e4:f5:4f:19:88:6e:c6:7d:c2:9b:
bf:a3:e2:9d:cc:ea:53:02:6c:d0:0b:7d:e8:c1:5c:70:8a:6e:
a6:d3:98:7f:20:67:ba:5b:02:0f:32:62:81:05:b1:13:c1:62:
60:32:ee:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:34 2025 by rpki-client