Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/DNvWdjkIKmim3_llk0baNxoV0Oc.roa
File: DNvWdjkIKmim3_llk0baNxoV0Oc.roa (raw, json)
Hash identifier: 2oOAXZwxJMTZ1nA5Bv1wrmRtSDLfcyVx1eoNW7zjqbE=
Subject key identifier: 0C:DB:D6:76:39:08:2A:68:A6:DF:F9:65:93:46:DA:37:1A:15:D0:E7
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 0554407D
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/DNvWdjkIKmim3_llk0baNxoV0Oc.roa
Signing time: Sat 01 Jan 2022 09:55:26 +0000
ROA not before: Sat 01 Jan 2022 09:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199258
IP address blocks: 91.196.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89407613 (0x554407d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 09:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cdbd67639082a68a6dff9659346da371a15d0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7c:e3:14:9c:c8:fa:3e:bf:4c:f9:d9:e1:70:
ae:8f:2b:6a:91:fc:43:ea:d5:0d:ca:16:61:94:20:
2b:53:45:46:ec:46:7b:d2:49:b9:ba:48:8e:69:f8:
a5:80:71:ec:45:ea:bc:f4:7e:08:45:a2:a8:20:2b:
74:cb:a0:0f:25:55:31:67:2d:15:0b:db:23:3f:e6:
15:19:2f:45:63:a5:76:4e:3f:d4:ed:5d:c0:b2:ee:
2f:8c:00:60:11:96:3f:f4:d0:20:b0:eb:04:bb:d7:
53:a5:a0:44:72:bf:65:27:0b:e7:24:0e:44:6b:e8:
e5:92:e9:8a:6f:b3:62:4d:a3:4b:ca:86:85:8f:84:
f8:7f:52:3a:1e:e6:3b:f9:c4:82:97:e3:f9:d1:4c:
91:fd:66:52:e4:a4:d2:ef:dd:32:0c:d6:ae:4d:97:
ce:22:3c:59:a1:c5:2b:ed:72:cd:2f:a2:ea:7e:67:
f6:d3:08:c4:47:3f:43:f7:c0:7f:50:91:74:e9:da:
48:56:12:d1:3e:c0:1a:17:33:b7:32:f9:ce:78:6f:
37:1e:b0:f9:66:62:1f:31:56:82:85:7c:d1:58:3d:
b9:4a:62:2f:a6:5e:e1:b8:78:83:03:f5:36:01:5c:
d8:b1:b4:3a:b6:ad:73:43:60:3c:64:36:46:9e:a2:
dc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DB:D6:76:39:08:2A:68:A6:DF:F9:65:93:46:DA:37:1A:15:D0:E7
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/DNvWdjkIKmim3_llk0baNxoV0Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.137.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c1:d8:48:78:a4:e5:8a:71:51:46:69:f6:e3:b6:92:6a:70:
9d:b1:42:ea:50:d7:fc:3d:d3:58:1a:ff:2d:5f:dc:1c:70:ec:
06:18:88:f3:8a:29:2c:2d:4c:ee:03:8c:2e:92:ab:64:3b:75:
61:f1:77:1b:96:dc:b3:ee:38:d4:9a:7f:73:e0:f2:7b:83:e7:
a0:c1:93:47:52:af:0b:e8:ed:0d:9e:70:d1:08:e9:0b:9a:c0:
b5:82:ee:76:1a:13:cb:eb:91:2d:20:66:a7:3f:15:0c:c3:8d:
01:e0:a4:51:8f:2b:81:00:da:8b:18:48:fd:18:b9:7d:6f:20:
4a:c3:eb:fc:09:59:7c:a8:74:08:18:e6:9a:cf:8a:d0:4e:4e:
85:07:94:28:30:12:0d:4f:ea:52:1d:b1:9c:9f:78:71:2d:dd:
e4:16:0c:44:26:00:43:1c:fd:d8:e3:d6:92:11:d5:5f:48:2f:
88:ad:0a:32:13:4c:99:86:91:3d:36:67:70:45:64:67:e5:e6:
a5:26:33:f5:88:be:cb:ef:1e:f7:d8:d1:6e:1d:f3:c4:15:e6:
02:eb:f3:e8:ac:12:f7:00:14:ad:79:d1:2b:bb:30:ab:da:b1:
0a:ad:b1:7b:8f:42:bd:9c:60:2b:d5:5f:05:34:e2:c9:19:5f:
f7:05:63:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:16:19 2025 by rpki-client