Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/pR0rbhCTQdQ8Ml7fFFEuNZwEN1I.roa
File: pR0rbhCTQdQ8Ml7fFFEuNZwEN1I.roa (raw, json)
Hash identifier: 3u5V76Hrg2U51WId+i5H3ujOB+7Of6mKxbOrYZrtooA=
Subject key identifier: A5:1D:2B:6E:10:93:41:D4:3C:32:5E:DF:14:51:2E:35:9C:04:37:52
Certificate issuer: /CN=5597b4d3a664dacc24934d48dd188ea18e8f27c1
Certificate serial: 02859D
Authority key identifier: 55:97:B4:D3:A6:64:DA:CC:24:93:4D:48:DD:18:8E:A1:8E:8F:27:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZe006Zk2swkk01I3RiOoY6PJ8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/pR0rbhCTQdQ8Ml7fFFEuNZwEN1I.roa
Signing time: Tue 26 Apr 2022 14:11:36 +0000
ROA not before: Tue 26 Apr 2022 14:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49270
IP address blocks: 91.212.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165277 (0x2859d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5597b4d3a664dacc24934d48dd188ea18e8f27c1
Validity
Not Before: Apr 26 14:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a51d2b6e109341d43c325edf14512e359c043752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:69:a0:c6:d0:23:68:64:a2:6d:97:15:fa:
cf:ba:4d:01:fc:f8:81:8d:5a:cd:a7:b6:92:c9:76:
41:5a:ba:03:05:b0:07:8a:2b:df:33:0b:06:66:61:
59:4f:68:42:33:7b:cd:c4:b6:43:b5:69:62:5d:03:
eb:7d:a3:ca:61:87:68:16:f7:18:ff:83:24:6f:58:
b7:92:85:fa:02:57:11:56:a1:c4:eb:9b:c7:cd:f0:
66:4f:88:42:54:77:42:d7:78:b2:bb:c3:73:df:50:
a2:e6:5c:ad:a6:7c:4f:36:80:a0:8d:fb:62:51:14:
02:6c:aa:8c:ec:be:25:88:8f:0f:fc:c5:75:c2:63:
b9:f5:62:02:3b:eb:62:55:88:b3:b3:08:d7:21:6c:
1d:8f:5a:37:80:63:09:8c:b6:01:18:09:27:61:23:
0d:25:d0:e3:80:83:85:de:91:f0:ab:77:5e:f1:b3:
4f:68:58:50:bc:4f:a1:c4:cd:76:fd:55:f4:8c:41:
69:dc:9f:89:ee:1c:d6:2c:2d:eb:76:f6:ce:f1:a7:
84:73:70:e4:d8:87:f9:1c:6d:02:43:e8:39:2d:07:
2d:f5:b4:c6:0b:80:a1:a2:06:5d:7c:6e:a3:84:a2:
ae:c4:a9:92:08:94:87:f5:05:08:3b:40:6c:f1:b9:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1D:2B:6E:10:93:41:D4:3C:32:5E:DF:14:51:2E:35:9C:04:37:52
X509v3 Authority Key Identifier:
keyid:55:97:B4:D3:A6:64:DA:CC:24:93:4D:48:DD:18:8E:A1:8E:8F:27:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZe006Zk2swkk01I3RiOoY6PJ8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/pR0rbhCTQdQ8Ml7fFFEuNZwEN1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bac182-d8f9-4b44-b83d-03a63ae1c7c1/1/VZe006Zk2swkk01I3RiOoY6PJ8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.191.0/24
Signature Algorithm: sha256WithRSAEncryption
00:72:bf:af:19:c2:16:c9:cf:96:71:27:30:c9:e1:82:10:6e:
4d:66:20:4c:f8:be:52:2c:83:c7:a1:95:7f:b5:cf:25:83:73:
3a:4c:d7:ec:6b:54:2b:fb:ec:30:ec:e9:f7:bd:1d:ea:f8:2f:
2b:ec:a4:21:40:10:b5:df:31:7c:92:80:e2:ec:df:4c:db:ef:
79:fe:66:51:09:f2:f6:9c:da:4c:1a:88:34:bb:80:13:f5:d5:
0f:01:7d:c7:aa:42:69:8e:38:c0:f8:0a:e2:28:db:7d:da:19:
57:fe:07:02:63:df:a0:6f:3b:9f:5c:88:a9:88:07:cb:11:17:
7e:ef:b3:ea:98:da:00:05:a1:49:b0:26:48:ca:bc:2d:15:a1:
b0:0a:53:37:8b:06:5f:73:46:0e:0e:6a:84:82:b5:69:9d:5e:
65:a8:fd:ae:61:13:2e:4d:81:44:3b:86:55:53:30:60:b9:05:
cc:70:7a:81:7f:e0:be:02:f9:24:2c:52:2c:03:53:9d:b6:da:
6e:0e:71:a1:ef:60:50:d5:c9:ae:47:a1:a7:f1:17:e9:59:f5:
0d:11:fa:df:3a:df:41:0e:a1:77:21:b9:4e:99:4f:d0:86:ed:
5c:78:cd:98:03:36:20:bf:d3:41:da:74:eb:f7:b1:cc:05:a4:
0e:82:e8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:09 2025 by rpki-client