Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8b1089-aa37-4236-bb1e-4f3ee8365d8f/1/7moPK_YjEh8E1RbyIjTB7TbngnQ.roa
File: 7moPK_YjEh8E1RbyIjTB7TbngnQ.roa (raw, json)
Hash identifier: ZqnaJoOYhxqknxq+QFMGsxoy3IHQSRz9Di4jEBlskYM=
Subject key identifier: EE:6A:0F:2B:F6:23:12:1F:04:D5:16:F2:22:34:C1:ED:36:E7:82:74
Certificate issuer: /CN=94ec5d3d4db1484a77e2c8763d74a0bd7c434da9
Certificate serial: 01856E145CE20349939807079FE8BFFFEDE2
Authority key identifier: 94:EC:5D:3D:4D:B1:48:4A:77:E2:C8:76:3D:74:A0:BD:7C:43:4D:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOxdPU2xSEp34sh2PXSgvXxDTak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8b1089-aa37-4236-bb1e-4f3ee8365d8f/1/7moPK_YjEh8E1RbyIjTB7TbngnQ.roa
Signing time: Sun 01 Jan 2023 16:05:06 +0000
ROA not before: Sun 01 Jan 2023 16:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57126
IP address blocks: 91.230.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:5c:e2:03:49:93:98:07:07:9f:e8:bf:ff:ed:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94ec5d3d4db1484a77e2c8763d74a0bd7c434da9
Validity
Not Before: Jan 1 16:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee6a0f2bf623121f04d516f22234c1ed36e78274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6c:e8:d2:7a:12:d2:be:da:16:42:07:ce:6d:
7f:72:7b:cc:d3:be:47:cc:a1:94:d2:f2:57:53:ae:
d3:c9:23:e0:d8:18:e8:5b:7b:f7:5c:82:e2:47:1e:
4d:09:d3:34:13:16:eb:f0:0b:a2:31:7e:87:4e:54:
6f:1e:39:f5:01:41:d2:db:56:d4:23:a6:09:bb:61:
16:f0:04:49:c1:7a:74:aa:d0:4e:bc:92:b2:a4:d7:
95:82:41:55:cf:cf:a9:2a:9f:a3:2b:62:cf:a1:35:
83:c6:30:e3:61:cf:c6:07:d4:fb:e6:ce:3e:1a:d5:
90:0e:98:2d:42:fe:c4:4e:29:ec:7e:77:6c:55:62:
0c:46:4f:4c:f1:c7:c3:59:9d:32:de:95:d8:5a:11:
a3:f2:7a:64:51:77:2f:fb:9c:5c:72:0e:d6:f1:e0:
79:dc:63:8c:6c:b0:01:6d:98:93:d9:78:87:98:30:
43:3f:68:86:7e:7a:f6:4e:03:b9:6c:d3:93:6e:06:
e5:ca:78:99:2b:fd:6f:89:a3:eb:8b:42:c9:5d:9d:
18:03:3c:02:09:9d:25:5c:ad:cd:28:f2:77:03:b8:
5a:de:d1:bd:38:dd:ae:f6:09:9d:24:09:82:a2:89:
a5:70:a3:60:b9:aa:b3:b0:c5:96:39:89:b3:ff:db:
c5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6A:0F:2B:F6:23:12:1F:04:D5:16:F2:22:34:C1:ED:36:E7:82:74
X509v3 Authority Key Identifier:
keyid:94:EC:5D:3D:4D:B1:48:4A:77:E2:C8:76:3D:74:A0:BD:7C:43:4D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOxdPU2xSEp34sh2PXSgvXxDTak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8b1089-aa37-4236-bb1e-4f3ee8365d8f/1/7moPK_YjEh8E1RbyIjTB7TbngnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8b1089-aa37-4236-bb1e-4f3ee8365d8f/1/lOxdPU2xSEp34sh2PXSgvXxDTak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.234.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a1:6d:73:08:65:36:83:ff:ce:73:ac:cc:a5:fb:3d:85:ce:
1d:64:32:2f:fa:c8:d8:4a:1b:20:68:7b:42:37:9d:5c:12:a9:
7b:74:f1:ac:b2:04:6e:45:bc:ae:b0:9f:b3:8b:4e:3a:28:f7:
af:c7:fc:c6:ab:83:03:5f:c1:65:f8:61:34:75:49:02:34:45:
c1:c1:0a:dc:98:f7:e2:be:35:16:f6:f8:7a:cf:e5:62:9c:c9:
20:30:85:48:21:3c:35:6a:93:72:69:d4:ae:70:7e:48:4d:63:
7a:17:d4:de:50:e9:c9:b0:15:66:17:6e:f1:47:b6:7e:38:a1:
7d:48:19:e0:5d:fb:f6:0a:d7:e0:aa:21:55:8d:df:f4:5f:34:
1c:94:05:8a:cb:a9:f9:8f:d2:19:71:67:03:f2:b4:84:bf:2c:
97:09:37:8b:cb:6f:81:8a:e7:23:df:96:c0:0f:dd:e1:3f:78:
6c:3f:12:dd:6b:04:8e:13:d8:d3:47:01:af:9b:ec:4a:3c:5c:
db:ed:0a:cf:95:a3:35:73:71:89:62:9f:f9:09:ac:68:0c:eb:
7f:24:c3:29:1b:fd:c9:7d:27:d9:b5:d5:a7:87:2e:20:b8:c4:
fc:98:de:d3:4c:4d:da:ae:57:f3:fc:e1:9f:d2:ab:41:24:48:
ce:f9:a5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:26 2025 by rpki-client