Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/66650a-598a-4389-941f-534b8cd652e9/1/vKOwG8N5Rsc6aLSuW3XbflieVBI.roa
File: vKOwG8N5Rsc6aLSuW3XbflieVBI.roa (raw, json)
Hash identifier: upw09gvZiJcvVZZJEUn29XPE2iwaZMfWRhyCaFaPF60=
Subject key identifier: BC:A3:B0:1B:C3:79:46:C7:3A:68:B4:AE:5B:75:DB:7E:58:9E:54:12
Certificate issuer: /CN=1bf268175c5a09a7afd0d87851824e1db73f7e7b
Certificate serial: 01862CB03095CD00083DF81558B2730A4C16
Authority key identifier: 1B:F2:68:17:5C:5A:09:A7:AF:D0:D8:78:51:82:4E:1D:B7:3F:7E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_JoF1xaCaev0Nh4UYJOHbc_fns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/66650a-598a-4389-941f-534b8cd652e9/1/vKOwG8N5Rsc6aLSuW3XbflieVBI.roa
Signing time: Tue 07 Feb 2023 16:23:09 +0000
ROA not before: Tue 07 Feb 2023 16:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 91.211.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:b0:30:95:cd:00:08:3d:f8:15:58:b2:73:0a:4c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf268175c5a09a7afd0d87851824e1db73f7e7b
Validity
Not Before: Feb 7 16:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bca3b01bc37946c73a68b4ae5b75db7e589e5412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:74:8e:ca:a1:8a:d9:4a:21:ac:29:02:8c:
34:90:f8:a4:7c:90:58:eb:e5:26:fd:d9:48:d2:a9:
0f:95:e6:36:11:60:99:98:b4:93:5c:75:60:35:7f:
e2:a1:9b:80:4b:7d:19:94:f0:a0:34:20:6b:ec:84:
d8:54:25:9b:85:7d:f4:e8:8e:29:4f:1f:d8:55:a2:
78:e4:74:55:6d:c7:3f:32:aa:6b:c0:ae:2a:71:04:
b6:7c:e5:b2:4f:9d:13:cb:0d:df:ad:fb:05:76:91:
0e:23:d5:31:1c:22:cc:ce:04:19:9b:99:63:08:b8:
8a:b7:52:fc:8c:31:bf:ab:23:d7:0e:8f:a7:75:53:
cc:e1:9f:f6:a7:54:b9:98:98:73:3a:6e:3a:ba:30:
3e:45:34:ee:c3:b4:d2:27:cd:76:5f:e3:39:72:b8:
a3:89:db:27:f5:66:34:98:fc:1f:70:61:97:d1:be:
04:36:1b:a7:a0:f6:a8:1f:7f:89:f2:64:e2:e0:c9:
cd:1f:6f:1b:06:9f:ce:c3:dd:82:83:b6:dc:62:81:
cb:63:70:23:51:23:41:6c:4e:43:40:4e:16:34:57:
48:cf:42:a4:9d:84:d1:c7:34:22:91:aa:89:b2:7f:
53:1a:c1:63:de:9b:7a:ae:74:d9:0b:e4:1c:4a:44:
67:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A3:B0:1B:C3:79:46:C7:3A:68:B4:AE:5B:75:DB:7E:58:9E:54:12
X509v3 Authority Key Identifier:
keyid:1B:F2:68:17:5C:5A:09:A7:AF:D0:D8:78:51:82:4E:1D:B7:3F:7E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_JoF1xaCaev0Nh4UYJOHbc_fns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/66650a-598a-4389-941f-534b8cd652e9/1/vKOwG8N5Rsc6aLSuW3XbflieVBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/66650a-598a-4389-941f-534b8cd652e9/1/G_JoF1xaCaev0Nh4UYJOHbc_fns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.115.0/24
Signature Algorithm: sha256WithRSAEncryption
86:2b:39:52:31:b1:51:0d:8a:67:1b:b6:e0:e3:cc:2d:78:4c:
4f:ee:8e:c5:13:94:af:6f:7e:a3:68:6e:56:01:cf:d1:7f:b4:
17:f5:c0:b6:f0:b9:0d:bb:4e:cf:92:80:7d:4b:1f:28:a9:66:
2d:47:a9:4a:2e:08:83:0a:3b:53:e9:e6:d5:bf:37:84:ae:cb:
0c:f9:47:8b:d3:42:02:fd:81:4d:26:6d:2e:9e:86:3a:fc:a7:
19:9b:69:e0:99:0a:78:d5:e8:b3:8b:ee:09:ad:e8:ff:bc:68:
f6:21:9b:75:56:a2:03:cb:89:96:52:ef:fe:f1:5e:5f:01:4e:
2e:cc:62:2c:d9:13:f1:08:c7:70:f1:fe:7e:95:61:9e:2b:70:
85:6a:e6:c1:48:a6:16:5d:2f:e7:5d:de:71:a1:91:44:f9:2b:
47:6d:2f:bc:e2:a8:74:33:6d:ae:4b:b7:3a:75:54:c7:c5:52:
ea:57:e8:ce:cb:85:99:54:b1:f4:e9:a5:5b:dc:0b:6c:d7:2e:
7f:1e:87:fb:b8:70:11:7b:52:e6:f1:db:f0:95:d3:96:40:d2:
ec:22:d8:67:4a:c5:07:bc:e6:0f:86:7c:bb:42:e7:6d:d7:dc:
b0:f5:e6:fc:01:05:82:f2:96:ef:b3:cf:05:79:39:f2:59:91:
0a:6d:39:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:22 2025 by rpki-client