Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/sBeN2bhOlDQ5dW0x_SdiJGl7qI8.roa
File: sBeN2bhOlDQ5dW0x_SdiJGl7qI8.roa (raw, json)
Hash identifier: iwACvJA7NVEcoBgYnBEW6lirRat+CrsZVjIZr8SrZUk=
Subject key identifier: B0:17:8D:D9:B8:4E:94:34:39:75:6D:31:FD:27:62:24:69:7B:A8:8F
Certificate issuer: /CN=0d12e0c7774191a55c3d1931fbf20004335fd21c
Certificate serial: 01861B0EA3B6EBDFE4E35C0E1AF8B3C2BCF6
Authority key identifier: 0D:12:E0:C7:77:41:91:A5:5C:3D:19:31:FB:F2:00:04:33:5F:D2:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRLgx3dBkaVcPRkx-_IABDNf0hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/sBeN2bhOlDQ5dW0x_SdiJGl7qI8.roa
Signing time: Sat 04 Feb 2023 06:13:09 +0000
ROA not before: Sat 04 Feb 2023 06:13:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34121
IP address blocks: 91.201.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1b:0e:a3:b6:eb:df:e4:e3:5c:0e:1a:f8:b3:c2:bc:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d12e0c7774191a55c3d1931fbf20004335fd21c
Validity
Not Before: Feb 4 06:13:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0178dd9b84e943439756d31fd276224697ba88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:23:8c:df:4e:dc:df:e6:9c:b4:d7:9a:9d:
ba:71:fe:05:1a:7a:31:de:d3:c0:b9:22:94:af:04:
34:ac:5f:6a:cd:a9:c4:7d:4f:b9:d4:28:dc:93:17:
d7:19:7a:f2:34:cd:59:9c:1d:f5:8a:66:a0:9d:39:
99:fa:81:f7:60:9c:b1:3f:6a:4f:32:3f:9c:f7:b5:
d2:94:5a:65:de:d5:5d:f4:fa:66:b1:ae:87:a2:a6:
b7:29:ca:31:88:b6:5c:14:29:31:29:76:0f:b5:7b:
7c:6c:7e:ac:a8:af:07:8c:78:91:d1:68:bc:25:c3:
c4:f5:1a:16:70:71:64:40:2c:2f:ba:22:7a:91:83:
e6:f8:dc:9e:71:16:0f:e5:8c:c4:d5:9f:d1:59:0b:
af:31:fd:20:87:3a:6e:86:e4:3a:51:c7:a2:47:f9:
2f:12:f1:a0:15:8b:46:5a:b2:54:ab:48:15:61:c0:
ec:34:e8:76:af:60:ed:15:cd:7a:af:e7:27:2f:f4:
4c:fa:f9:bf:ea:c9:24:49:b4:18:25:d1:33:af:0e:
36:fc:ea:74:ea:30:06:50:cf:fb:7e:8e:d3:fa:9b:
03:7c:53:44:b4:30:74:78:ef:36:9f:6d:14:78:a2:
e8:c5:9b:23:95:ce:e3:5d:d2:76:38:19:fe:90:0a:
e7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:17:8D:D9:B8:4E:94:34:39:75:6D:31:FD:27:62:24:69:7B:A8:8F
X509v3 Authority Key Identifier:
keyid:0D:12:E0:C7:77:41:91:A5:5C:3D:19:31:FB:F2:00:04:33:5F:D2:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRLgx3dBkaVcPRkx-_IABDNf0hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/sBeN2bhOlDQ5dW0x_SdiJGl7qI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/DRLgx3dBkaVcPRkx-_IABDNf0hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.184.0/22
Signature Algorithm: sha256WithRSAEncryption
40:39:73:90:f7:87:5e:c6:a5:58:4f:70:23:2d:71:b4:ab:16:
5e:62:65:f4:c5:b3:4e:5f:05:fc:e1:4d:ac:22:1d:3e:c0:c4:
84:bd:70:92:35:04:d9:f6:53:90:69:23:95:7e:83:a8:2c:dc:
93:87:61:ab:00:9b:3e:c8:df:e8:55:fd:50:47:7c:49:a0:8f:
93:24:f5:16:70:1f:af:fb:ed:37:6b:97:57:cb:9e:0f:ad:63:
b9:f1:79:12:de:28:4d:58:01:67:58:62:c1:08:3c:0a:2a:41:
95:a4:47:2b:46:d4:ad:63:e5:8c:1b:ff:b6:8f:6f:62:6a:c0:
ae:39:ee:63:3e:d0:3c:fc:48:24:6c:17:d8:34:ce:96:7e:68:
60:64:f9:07:59:28:4f:e9:f3:ee:e7:b8:08:ca:76:c9:39:02:
2a:0e:c9:44:4a:1e:05:e9:04:ac:1f:19:d7:11:d8:d6:45:0a:
a3:de:a0:79:d5:53:98:03:75:c6:f4:12:5f:ff:cc:24:8e:51:
6b:ef:13:a1:f8:6d:18:2f:d1:ff:b1:eb:7b:d6:83:bd:52:2b:
5b:9c:7e:08:19:e1:4e:04:0d:a1:e1:36:3d:60:31:f2:70:d2:
37:7a:96:08:f0:57:ec:16:6a:f9:c4:f2:d3:7a:a5:b4:c2:d1:
e4:6c:4d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:18 2025 by rpki-client