Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/0eR_kg5768TDiZU40HQ_j6Hnj-Q.roa
File: 0eR_kg5768TDiZU40HQ_j6Hnj-Q.roa (raw, json)
Hash identifier: Zf41kkn9MdSKYR8QDQtKMY/OjUdnNGDzXBeKtN+p9Ic=
Subject key identifier: D1:E4:7F:92:0E:7B:EB:C4:C3:89:95:38:D0:74:3F:8F:A1:E7:8F:E4
Certificate issuer: /CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Certificate serial: 01864F5538612EDE2747C2415FA6FF720783
Authority key identifier: 58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/0eR_kg5768TDiZU40HQ_j6Hnj-Q.roa
Signing time: Tue 14 Feb 2023 09:50:30 +0000
ROA not before: Tue 14 Feb 2023 09:50:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198346
IP address blocks: 91.222.54.0/24 maxlen: 24
91.222.55.0/24 maxlen: 24
91.222.52.0/24 maxlen: 24
91.222.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:55:38:61:2e:de:27:47:c2:41:5f:a6:ff:72:07:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Validity
Not Before: Feb 14 09:50:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1e47f920e7bebc4c3899538d0743f8fa1e78fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:22:ad:f9:b3:f0:aa:1b:fe:5c:a2:df:ad:2b:
63:31:9e:21:d5:67:81:15:4a:3f:ba:a3:9c:d7:4c:
e4:4d:be:b7:bc:97:93:9c:20:1f:f3:5e:dd:29:4e:
b2:26:b1:e7:3d:4b:5f:f5:50:96:06:a9:96:25:ee:
6c:2f:18:e9:24:96:97:5b:d8:db:42:18:37:ef:c2:
93:bd:91:41:96:f4:48:8d:d2:52:5e:2b:54:42:4e:
48:19:9b:2d:2f:19:b1:a1:7d:a5:0f:69:28:87:92:
b8:b2:3e:0a:dd:ad:2f:73:45:12:01:52:56:3d:26:
6e:19:39:58:17:bd:9a:e5:71:43:d4:dd:e7:f3:f4:
e9:01:d4:7a:9f:16:d7:25:3f:68:75:51:bb:68:3d:
20:3d:3e:9b:90:ca:91:12:84:e0:71:c0:be:59:16:
f0:08:dc:17:fd:84:0b:6c:13:9e:45:f9:52:b0:de:
68:7c:ae:2a:19:0f:c6:f5:17:b9:c0:ad:8d:c1:18:
4d:06:af:91:c7:59:cf:02:a2:99:47:f3:61:d7:f9:
01:d4:14:72:81:c4:41:20:26:5b:f2:06:9c:ac:4e:
7e:9c:dc:3c:e1:9e:d6:7b:73:6e:bd:51:7b:41:6e:
82:3b:7e:e7:67:94:1f:49:6e:5b:3b:91:10:2e:f5:
31:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E4:7F:92:0E:7B:EB:C4:C3:89:95:38:D0:74:3F:8F:A1:E7:8F:E4
X509v3 Authority Key Identifier:
keyid:58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/0eR_kg5768TDiZU40HQ_j6Hnj-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/WEfx9Pa8sqR1isipl7wQgADkGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.52.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:a1:d2:71:50:31:ed:96:a7:2f:2b:f4:8f:9a:9f:9e:44:94:
a1:f5:1d:03:60:20:b2:96:e0:81:94:c3:8c:95:ba:ff:09:af:
ac:97:21:1a:4d:40:25:f2:c6:0e:06:a8:8c:9d:d2:8c:49:f3:
a6:ed:39:00:7a:03:93:5f:0e:8a:b1:93:55:8d:06:61:2d:08:
dd:64:ba:9f:9a:bc:8d:ce:42:ce:5b:08:01:3a:49:33:65:c5:
4c:46:d6:81:bd:f0:36:48:50:0c:45:21:32:ba:ef:3e:e1:9b:
c0:f1:4e:f9:a2:77:a3:4e:a7:aa:95:a3:f3:57:18:6b:cd:bf:
c1:8f:9a:1f:fa:0a:a3:c9:43:7c:1a:29:5c:ac:78:9d:84:e7:
7a:a2:67:c8:8f:85:38:7a:6d:8e:63:54:13:14:fd:fd:64:ea:
5e:3a:84:fa:78:7e:a9:e2:16:21:d9:ac:51:e3:d4:78:74:f1:
4a:79:eb:a3:42:18:30:00:82:2c:09:38:56:ad:91:b8:d4:8e:
80:00:2e:19:8a:ed:9c:20:5e:56:b7:96:a6:4b:07:1a:0c:6e:
47:28:dd:9f:28:00:c5:a6:ba:60:8d:af:13:1d:8a:13:9b:94:
b3:11:cf:c3:8a:3a:4a:05:18:0c:54:a8:5f:3e:18:ac:1d:90:
23:2a:e6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:48 2025 by rpki-client