Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/55dc83-2707-4917-b63f-95c4e94ad0a9/1/I7CR2EGjIu3r7SunwkWAVbMSnYE.roa
File: I7CR2EGjIu3r7SunwkWAVbMSnYE.roa (raw, json)
Hash identifier: +VWt6cgL8xQghlttitQERUB8ythPZ8pblR7s6O5vD5Y=
Subject key identifier: 23:B0:91:D8:41:A3:22:ED:EB:ED:2B:A7:C2:45:80:55:B3:12:9D:81
Certificate issuer: /CN=363548ed4628966248204c2fe69065f0d7b527a3
Certificate serial: 06C8B12F
Authority key identifier: 36:35:48:ED:46:28:96:62:48:20:4C:2F:E6:90:65:F0:D7:B5:27:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NjVI7UYolmJIIEwv5pBl8Ne1J6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/55dc83-2707-4917-b63f-95c4e94ad0a9/1/I7CR2EGjIu3r7SunwkWAVbMSnYE.roa
Signing time: Sat 01 Jan 2022 10:01:37 +0000
ROA not before: Sat 01 Jan 2022 10:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202523
IP address blocks: 185.91.240.0/22 maxlen: 22
2a05:ee80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113815855 (0x6c8b12f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=363548ed4628966248204c2fe69065f0d7b527a3
Validity
Not Before: Jan 1 10:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23b091d841a322edebed2ba7c2458055b3129d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:49:a9:d7:97:3e:8e:48:05:85:b7:2d:d6:
33:03:23:3e:41:6f:96:34:95:c5:67:1b:29:3d:33:
cf:25:f5:ce:96:3d:d6:3c:b2:31:4f:22:32:ee:f5:
0f:cc:a0:52:5a:f5:b0:cb:42:76:17:dd:25:06:9e:
c1:89:64:f0:50:82:c8:c6:c6:82:3c:1c:80:bf:f6:
73:22:44:e5:0d:44:df:fc:d8:fb:3b:c7:b2:6d:a9:
a2:ee:0c:7a:18:03:53:18:8a:49:92:62:0c:fa:f0:
47:fa:e7:f9:77:95:e2:31:b2:fe:ea:6b:8c:a2:76:
72:c6:ac:b8:80:e3:7b:57:6e:4d:37:d6:6e:0d:44:
f4:cc:90:98:27:3d:b2:ba:9d:9f:8c:46:73:dc:32:
a1:71:f9:0e:d9:58:2a:00:82:32:71:ee:06:53:f5:
df:69:f3:fb:25:1a:15:f0:5d:bc:b6:0a:25:9b:b9:
21:c9:6f:1c:33:bf:bd:a2:d7:3f:18:51:77:b2:0f:
50:4d:b6:6f:73:37:2b:7a:83:c6:b0:ad:b9:c8:32:
90:6e:90:c9:85:d6:ef:26:36:db:1b:f7:e1:97:fa:
74:d4:1c:1f:6a:b1:a1:c7:39:94:fc:99:53:06:fa:
3b:1b:06:be:f2:1e:66:6d:12:08:0a:81:d5:7d:f0:
23:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B0:91:D8:41:A3:22:ED:EB:ED:2B:A7:C2:45:80:55:B3:12:9D:81
X509v3 Authority Key Identifier:
keyid:36:35:48:ED:46:28:96:62:48:20:4C:2F:E6:90:65:F0:D7:B5:27:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NjVI7UYolmJIIEwv5pBl8Ne1J6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/55dc83-2707-4917-b63f-95c4e94ad0a9/1/I7CR2EGjIu3r7SunwkWAVbMSnYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/55dc83-2707-4917-b63f-95c4e94ad0a9/1/NjVI7UYolmJIIEwv5pBl8Ne1J6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.240.0/22
IPv6:
2a05:ee80::/29
Signature Algorithm: sha256WithRSAEncryption
96:15:e4:ea:2c:99:e2:65:c6:d9:71:75:a8:61:ee:b4:01:84:
3f:9d:7d:d9:5f:1a:0f:16:44:55:61:cf:fc:17:81:c5:52:fc:
36:ae:42:6a:be:2c:4d:5f:17:27:76:6a:67:f0:e1:59:e9:c5:
4f:0a:c3:34:81:da:01:ae:ed:60:0b:96:1f:31:0a:e4:ff:20:
ec:dd:5e:7f:ac:b2:c4:e5:2f:f2:a4:02:ef:b5:a0:40:25:ce:
7c:08:31:cd:da:58:af:cc:24:50:7c:a6:4a:05:bc:d0:b5:bc:
8f:1b:61:45:e6:01:d0:6d:6c:69:41:88:37:c9:74:97:fa:a8:
3b:e9:ee:48:51:f9:2b:01:ba:6f:49:19:6d:a4:28:e8:87:08:
13:b2:3d:6a:15:84:86:2b:60:7d:46:72:94:e7:73:19:14:63:
8c:86:41:d7:5c:7a:e8:db:08:89:e7:cb:07:26:d9:ff:cd:6b:
29:d4:9b:e4:e1:a5:13:31:c0:17:b0:81:0f:d0:5b:9d:d5:c8:
8a:69:95:60:ed:51:cf:ee:c1:f9:cf:ab:54:b4:91:75:4c:f5:
ef:1f:4a:c5:c0:a8:79:21:3c:7f:1c:8f:fd:dd:f4:a0:cb:0a:
cb:94:9a:35:48:96:81:50:0e:07:fa:e7:61:60:84:f0:22:f5:
d9:df:3c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:28 2025 by rpki-client