Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/4G6yYQc8GUn1B3u6PA2-thAR2o0.roa
File: 4G6yYQc8GUn1B3u6PA2-thAR2o0.roa (raw, json)
Hash identifier: qm5zq6HZsahfByp+zHOU+bvCRgEZuRiN0hhhzuOqAKo=
Subject key identifier: E0:6E:B2:61:07:3C:19:49:F5:07:7B:BA:3C:0D:BE:B6:10:11:DA:8D
Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial: 0FE08A1C
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/4G6yYQc8GUn1B3u6PA2-thAR2o0.roa
Signing time: Sat 01 Jan 2022 10:01:18 +0000
ROA not before: Sat 01 Jan 2022 10:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51296
IP address blocks: 91.216.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266373660 (0xfe08a1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Validity
Not Before: Jan 1 10:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e06eb261073c1949f5077bba3c0dbeb61011da8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:d7:fc:6a:c2:b5:3f:b3:88:93:d9:db:8e:
56:4a:c4:5f:16:b1:83:10:73:44:f2:a6:e8:d4:31:
bc:c0:d7:80:6d:c3:06:a4:4a:24:0b:5b:99:0d:53:
35:20:aa:04:49:c3:27:ff:d1:37:61:c1:6c:60:24:
30:87:7c:56:0c:20:f5:8c:b5:e9:a0:28:60:09:17:
1b:10:43:c7:71:9f:49:bb:e8:74:81:18:1f:11:6c:
11:f3:ea:26:2f:a1:95:a4:62:be:9a:37:d0:3f:a0:
73:67:3a:93:0f:b7:c7:a7:bf:39:98:fc:37:7a:7a:
e3:3b:10:45:5f:03:d1:f9:6f:54:f0:ad:ad:44:10:
5e:0d:43:ac:c6:c8:70:f6:20:70:ba:b7:97:5e:f3:
d9:27:e3:0f:5b:25:ff:61:b0:c4:c0:93:fe:4d:26:
2f:ef:43:f7:42:95:a1:13:3b:00:54:be:6e:11:e1:
09:cb:67:ed:f4:a6:27:0d:65:5e:cc:31:ab:e6:0b:
52:db:95:81:14:c1:72:a1:c3:1e:24:a7:0d:3c:ee:
d6:f0:a2:6b:6b:33:af:fb:b8:bb:0a:24:77:38:43:
07:45:e9:06:d8:8a:85:a1:e3:66:2d:64:8d:88:8c:
3b:b3:ac:b6:60:a2:73:59:65:d4:f1:04:12:44:a2:
58:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6E:B2:61:07:3C:19:49:F5:07:7B:BA:3C:0D:BE:B6:10:11:DA:8D
X509v3 Authority Key Identifier:
keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/4G6yYQc8GUn1B3u6PA2-thAR2o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.255.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:40:2e:56:f1:99:ac:86:0d:ca:d2:5b:2d:a0:94:73:99:2d:
1d:c8:2c:d3:cf:d1:00:09:3f:b6:f2:75:1d:f3:6e:9e:fc:2e:
70:00:cb:dc:d1:df:52:a8:30:28:99:68:44:71:76:78:88:93:
17:dd:cb:ee:26:00:87:05:53:88:f2:dd:0a:27:1a:1f:9e:24:
d1:06:e7:b7:8b:28:a9:55:76:78:2e:5b:95:40:18:09:80:37:
4b:86:b9:e2:ba:34:c0:90:8c:b8:a1:b4:4a:f9:cb:2a:54:e1:
64:55:55:56:a2:a4:8c:7c:1e:1d:69:ce:95:b1:12:86:06:7e:
0d:c4:6b:f1:cf:d8:03:51:f8:04:d7:c5:74:cd:35:04:29:4a:
c5:39:51:1b:89:0d:65:97:9a:f6:87:99:40:04:48:2f:02:8a:
f6:58:fc:a6:f9:6d:65:09:54:9f:e0:00:0b:b4:03:3b:9c:f1:
e9:53:e5:61:6a:71:e9:86:1b:e6:aa:98:b4:51:88:83:d3:dc:
a4:76:fb:91:19:cd:89:a9:b1:aa:1a:e4:bb:e6:25:2c:31:2e:
d0:65:5b:31:ca:43:c5:26:31:8e:ea:43:dd:ad:2d:aa:68:41:
0f:88:a4:9f:8c:79:6f:0f:3b:53:33:b1:8f:2f:e1:4a:90:74:
32:37:39:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:12:21 2025 by rpki-client