Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/fXkqWRKfAGpHmujkJyCp8n_yy4s.roa
File: fXkqWRKfAGpHmujkJyCp8n_yy4s.roa (raw, json)
Hash identifier: 3W1afkRw4JdnCxNPszmhVhdaQHTPbRGDOHqGMEZnIp4=
Subject key identifier: 7D:79:2A:59:12:9F:00:6A:47:9A:E8:E4:27:20:A9:F2:7F:F2:CB:8B
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BF1D45
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/fXkqWRKfAGpHmujkJyCp8n_yy4s.roa
Signing time: Sat 01 Jan 2022 14:05:07 +0000
ROA not before: Sat 01 Jan 2022 14:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61243
IP address blocks: 91.250.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62856517 (0x3bf1d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d792a59129f006a479ae8e42720a9f27ff2cb8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:0d:29:9f:b7:99:00:c3:c5:34:91:55:0c:
09:1f:34:18:4e:4d:1f:b1:3e:42:a2:c0:64:a4:ff:
1a:7f:7c:0a:f7:d3:95:85:2f:e2:93:d5:01:5d:7d:
b4:20:27:03:a3:2c:e0:f1:e9:13:7c:ab:ca:57:06:
31:f4:1b:41:1b:04:05:ac:c4:1c:98:87:c2:81:be:
d7:f7:ae:01:d5:43:26:36:ad:09:40:b9:88:89:67:
76:53:14:bf:3d:c6:87:11:4e:24:3d:f3:12:7e:a5:
47:d2:d1:3d:88:b9:da:45:0d:e2:37:05:fc:f1:12:
87:f2:c9:36:51:90:b1:f8:d3:99:b7:27:c7:41:7b:
39:49:2d:30:09:b8:11:16:03:75:82:2d:94:d0:05:
ce:7d:4a:cf:eb:c6:97:3d:2b:06:85:22:ae:93:bf:
51:25:1b:09:de:9f:ba:70:71:e7:e6:f1:d7:05:6b:
e0:63:8a:76:86:0a:a4:25:65:39:bf:83:3a:d1:6a:
93:44:1c:94:ac:bd:29:32:99:55:b9:dd:3f:16:5e:
80:04:af:6a:0f:d9:ea:00:26:6d:e3:af:d6:b2:f6:
10:ca:34:ad:d9:87:d1:25:9c:25:14:ae:bf:69:f4:
b4:50:ce:8e:a3:c6:f2:a6:ca:3d:5c:76:c4:d4:bc:
ce:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:79:2A:59:12:9F:00:6A:47:9A:E8:E4:27:20:A9:F2:7F:F2:CB:8B
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/fXkqWRKfAGpHmujkJyCp8n_yy4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.250.252.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:f9:bc:28:7e:1e:cb:2c:91:78:ed:22:c6:95:25:a3:fd:39:
67:c6:df:4b:03:ef:af:2a:11:06:92:94:99:2c:71:97:97:5b:
6e:94:4a:2e:4c:6e:fe:14:36:16:8f:f2:83:f2:50:37:37:7b:
a5:b7:d4:c2:f8:6c:d9:2b:1c:46:7c:e7:02:ea:64:f1:74:79:
4e:46:34:b0:98:27:76:0b:c8:9c:4a:01:4c:e2:e5:64:9e:33:
27:f5:41:8c:97:55:d9:29:fa:13:37:d5:b2:8e:d9:a4:10:81:
0a:4e:ef:6a:eb:7e:ec:cb:c9:29:df:ce:38:5c:cc:38:c5:20:
43:32:a0:3e:b5:ac:54:22:45:ab:fa:46:b2:34:1f:78:2f:71:
63:1d:01:83:8f:af:17:13:b6:8e:e8:29:c6:c1:0c:81:05:c3:
bb:9b:f8:7f:a2:91:20:9e:49:48:89:6c:7a:5d:19:b3:74:64:
db:d8:8d:fe:e8:10:ae:6e:2e:d1:d7:8b:6d:31:6b:0b:11:88:
a2:52:1f:20:ef:c8:c3:57:2f:13:f8:2e:96:88:7c:cc:a5:97:
25:b2:63:d9:ff:e5:34:94:de:e0:2d:6e:33:41:0f:25:40:71:
3d:d3:ff:ae:38:94:31:23:f2:9b:60:aa:4f:c5:c6:ac:91:f5:
85:9b:22:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:41 2025 by rpki-client