Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/V12K4qlpSrKLbCFElfFJkXpW-4Q.roa
File: V12K4qlpSrKLbCFElfFJkXpW-4Q.roa (raw, json)
Hash identifier: qHWM7w5Epu8GZeKTzPTb2b548Dbhs6XuvyVbDPA7zxc=
Subject key identifier: 57:5D:8A:E2:A9:69:4A:B2:8B:6C:21:44:95:F1:49:91:7A:56:FB:84
Certificate issuer: /CN=5597b4d3a664dacc24934d48dd188ea18e8f27c1
Certificate serial: 018570D5348C65B275745C71EE0FF04AF848
Authority key identifier: 55:97:B4:D3:A6:64:DA:CC:24:93:4D:48:DD:18:8E:A1:8E:8F:27:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZe006Zk2swkk01I3RiOoY6PJ8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/V12K4qlpSrKLbCFElfFJkXpW-4Q.roa
Signing time: Mon 02 Jan 2023 04:54:58 +0000
ROA not before: Mon 02 Jan 2023 04:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49270
IP address blocks: 91.212.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:34:8c:65:b2:75:74:5c:71:ee:0f:f0:4a:f8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5597b4d3a664dacc24934d48dd188ea18e8f27c1
Validity
Not Before: Jan 2 04:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=575d8ae2a9694ab28b6c214495f149917a56fb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:71:4c:cc:b8:83:14:a5:fd:f1:20:3d:2a:d2:
94:3f:3e:a6:43:46:53:c1:fd:ae:f9:98:7a:01:4f:
3c:9b:59:31:ce:7f:65:ce:9e:b1:30:c4:d6:f8:1a:
ca:ed:95:2a:b1:bb:73:c6:0d:1d:e2:f3:ac:b3:84:
94:71:04:a2:69:98:b9:d9:78:66:5a:fa:4f:a9:13:
ba:47:1c:86:09:09:7c:6a:91:92:73:63:e8:64:14:
85:b0:cb:ad:33:36:30:bd:92:db:dd:71:65:99:2f:
90:75:d8:83:ad:8b:a1:dc:6d:94:6a:1a:ec:ba:69:
33:60:e4:a4:0b:a1:55:18:5e:57:8c:ae:19:04:a4:
b3:63:e7:6b:2d:29:f1:32:9a:35:62:0a:93:0d:02:
e0:3e:46:44:5c:8d:b0:3e:e1:81:e6:85:1e:20:fe:
45:c9:51:d2:c8:60:c0:20:54:86:13:be:36:e2:92:
34:1e:63:41:20:81:9e:1d:c3:56:9f:ab:88:4f:32:
cd:f7:db:0a:50:9b:f0:fa:65:f5:c0:a3:e4:b7:d8:
87:3f:f3:7d:c0:bf:a7:92:f0:31:b8:68:ee:d7:58:
41:53:a2:56:e9:12:15:b5:cc:a8:05:3e:c6:88:d6:
69:37:88:30:de:e6:6a:52:f7:04:0c:21:3e:fe:c3:
78:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:5D:8A:E2:A9:69:4A:B2:8B:6C:21:44:95:F1:49:91:7A:56:FB:84
X509v3 Authority Key Identifier:
keyid:55:97:B4:D3:A6:64:DA:CC:24:93:4D:48:DD:18:8E:A1:8E:8F:27:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZe006Zk2swkk01I3RiOoY6PJ8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/V12K4qlpSrKLbCFElfFJkXpW-4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/VZe006Zk2swkk01I3RiOoY6PJ8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.191.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a0:ed:21:a5:8c:44:3a:7a:12:b1:c2:fc:99:1a:30:92:84:
94:07:c3:1a:b7:55:c4:20:02:b8:0e:10:1c:aa:da:24:40:ab:
73:35:56:b9:7d:01:b8:ec:97:ab:21:a3:97:4b:61:4d:41:b6:
40:a7:99:7f:58:87:df:1f:92:d9:c1:55:06:df:94:3b:50:40:
32:47:62:99:65:fe:f8:c9:1d:3a:14:a7:57:d3:d5:f5:a2:f0:
36:37:4b:fd:42:84:4e:85:ab:17:2b:58:2a:ae:3a:43:f0:44:
97:9e:1c:b3:08:2f:07:9e:fb:06:16:aa:f8:7f:b3:a5:83:77:
70:45:41:55:8b:e7:1e:60:3e:11:3a:17:1d:62:9c:17:53:0d:
31:1e:ab:3f:93:3a:79:ad:b6:8e:4c:c5:ca:47:87:9f:e0:0a:
01:65:89:4e:c9:54:8f:30:2a:6d:65:2a:33:57:13:74:58:48:
c3:e9:67:2f:e6:be:28:33:7e:b2:ad:f4:1e:d6:8a:d3:21:a5:
b9:4c:fa:73:7b:fd:83:45:0b:47:92:ef:89:1e:54:6e:fb:4b:
dc:67:47:77:d2:b5:ae:d1:f3:ff:50:ff:93:d0:a8:5f:4d:70:
d5:40:08:f5:4d:98:ad:05:36:26:92:78:e7:88:84:35:d2:59:
07:7d:06:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:17 2025 by rpki-client