Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/kRfAscQiRXDXUsQcTqairgF3LyY.roa
File: kRfAscQiRXDXUsQcTqairgF3LyY.roa (raw, json)
Hash identifier: xSkLNEIFBIRyCWZ6j7TIOvxG46Xi4Bbi2/N7Xt+KrCs=
Subject key identifier: 91:17:C0:B1:C4:22:45:70:D7:52:C4:1C:4E:A6:A2:AE:01:77:2F:26
Certificate issuer: /CN=7fe0e759354e83cc19320381109de22da0f1a700
Certificate serial: 0185CD274F98BDD2CBEC55B3CD425F81D777
Authority key identifier: 7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/kRfAscQiRXDXUsQcTqairgF3LyY.roa
Signing time: Fri 20 Jan 2023 03:09:43 +0000
ROA not before: Fri 20 Jan 2023 03:09:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60842
IP address blocks: 91.226.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cd:27:4f:98:bd:d2:cb:ec:55:b3:cd:42:5f:81:d7:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fe0e759354e83cc19320381109de22da0f1a700
Validity
Not Before: Jan 20 03:09:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9117c0b1c4224570d752c41c4ea6a2ae01772f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:0c:38:b5:5e:3f:28:ed:04:e9:a2:10:1b:3a:
99:c3:78:c2:25:67:c4:67:e2:aa:d1:15:0c:89:a6:
11:fd:c1:9b:c7:fe:27:5f:01:62:91:c5:35:f6:fd:
fc:f9:dc:7f:f3:19:b0:29:18:75:82:da:0f:e4:18:
c5:5a:1a:75:d2:f1:9f:39:52:f9:b7:b2:53:03:e6:
e7:50:74:fd:03:d6:fe:e2:aa:88:d7:ef:b1:10:dc:
b9:4d:46:71:9a:c3:93:61:f6:23:9b:4c:3b:05:a1:
0c:8d:cf:af:96:06:37:0e:aa:9e:80:b3:2d:7e:8e:
35:91:ac:04:5c:9e:8c:6d:10:cd:f8:d2:ef:72:be:
c9:ae:5c:be:99:92:66:e5:3f:fd:4f:7c:52:bb:e5:
a1:e2:cc:31:22:f5:8b:03:6d:b8:af:89:53:3c:15:
db:40:5d:c0:72:28:7d:e4:85:3b:5c:3b:6e:a3:b9:
b2:0b:a5:9b:a3:df:20:2c:38:71:2e:bf:5c:7d:e5:
44:2a:f4:bf:e8:8d:ac:be:df:7b:d0:28:f3:8b:92:
4b:0d:d0:3c:05:9f:07:62:43:a7:f1:0d:2f:e8:12:
14:12:a6:b6:12:da:e1:c4:27:c8:24:f7:22:29:8c:
ed:b3:78:eb:c9:59:10:3e:28:34:09:ed:eb:44:1b:
9b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:17:C0:B1:C4:22:45:70:D7:52:C4:1C:4E:A6:A2:AE:01:77:2F:26
X509v3 Authority Key Identifier:
keyid:7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/kRfAscQiRXDXUsQcTqairgF3LyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.73.0/24
Signature Algorithm: sha256WithRSAEncryption
00:2b:86:1b:e8:11:f6:1d:47:7f:e5:29:3a:d0:c0:6b:a1:31:
88:be:ec:97:01:d7:30:ea:eb:52:f1:82:54:60:d4:84:ed:5a:
92:6a:c1:ef:1c:a4:39:52:f4:33:65:e1:d4:6b:80:3e:a3:df:
89:a1:a1:8c:18:1f:79:17:b3:0f:1e:7e:25:0a:00:94:9a:08:
8c:69:3d:14:c5:ba:3d:1b:e5:07:38:77:3f:4a:07:d6:ba:f4:
76:14:4d:95:ce:f1:f9:0b:72:e4:03:07:19:ad:5d:53:c9:b1:
35:cf:0f:24:c3:cb:c1:7c:9e:97:3a:fd:a0:1d:b4:de:ad:fd:
64:1a:4b:60:da:db:91:52:61:b9:c8:1f:7f:b4:4a:dd:8f:f0:
bf:f2:ab:58:fe:b7:09:fa:f6:db:53:a9:f4:12:82:4b:89:07:
c6:ff:d6:05:72:75:eb:b3:bd:4b:39:cd:99:3f:f9:9e:3a:6e:
20:ee:38:0a:7e:e3:6f:45:b1:b9:63:51:8f:b5:4a:6e:b0:53:
48:1c:74:0e:88:09:35:df:19:ed:8c:5b:b2:15:99:1d:3b:d3:
d0:a3:8c:f9:61:34:e7:ed:55:8a:6f:29:ba:b6:f3:84:f1:da:
0f:b9:16:7b:42:73:df:78:32:13:53:62:ac:56:e4:b3:34:32:
fe:11:a1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:19 2025 by rpki-client