Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/EWjiX2qwNcX5PUhCjR9tACVu-hU.roa
File: EWjiX2qwNcX5PUhCjR9tACVu-hU.roa (raw, json)
Hash identifier: uP75RbiZsTP6Ma16QmJQNbNCeZfei6xOP7PK06aGYcw=
Subject key identifier: 11:68:E2:5F:6A:B0:35:C5:F9:3D:48:42:8D:1F:6D:00:25:6E:FA:15
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01843D6D4D398052550FCE80ED21FBA2FCA5
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/EWjiX2qwNcX5PUhCjR9tACVu-hU.roa
Signing time: Thu 03 Nov 2022 12:18:04 +0000
ROA not before: Thu 03 Nov 2022 12:18:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197731
IP address blocks: 45.91.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:6d:4d:39:80:52:55:0f:ce:80:ed:21:fb:a2:fc:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Nov 3 12:18:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1168e25f6ab035c5f93d48428d1f6d00256efa15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9b:1a:dc:06:97:4b:2e:a5:39:5c:35:be:a6:
ad:ca:f8:85:e6:18:9b:42:af:1b:67:15:73:54:25:
d1:1e:19:e3:5d:cc:d9:1e:43:fb:6d:06:6d:85:d5:
4e:5e:49:7f:16:70:e0:b5:04:e8:de:b6:e4:de:96:
16:05:ce:c6:84:f1:83:b5:15:80:c3:8d:ac:43:e7:
74:57:3f:af:e1:49:3e:c9:35:e8:59:e5:9f:01:d0:
a4:52:6b:fb:e1:3b:10:03:3f:66:af:8a:ff:92:b9:
6f:7d:fb:c3:07:de:b8:ea:96:37:76:8d:d6:da:ee:
fe:81:4d:6f:22:8f:d7:11:4c:ae:5c:58:16:f1:e9:
3c:98:f7:93:56:3a:f1:8d:95:11:74:b3:e3:57:9c:
24:d5:80:55:22:68:d3:0f:10:e7:10:26:28:24:d4:
21:38:81:ab:03:97:17:32:9f:f1:a2:f0:0a:3e:04:
b5:ff:40:a5:96:ac:f9:38:dc:b1:e8:f5:39:fd:4b:
4e:8e:33:54:f4:84:ea:f0:9e:fc:de:89:d9:c7:13:
bc:14:6c:e8:57:6e:64:f9:15:20:94:10:40:e5:b9:
01:34:59:1d:48:22:50:6f:22:06:d6:02:01:2f:18:
19:b0:c7:cb:29:4d:c7:19:d6:81:57:59:c0:f6:e6:
c5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:68:E2:5F:6A:B0:35:C5:F9:3D:48:42:8D:1F:6D:00:25:6E:FA:15
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/EWjiX2qwNcX5PUhCjR9tACVu-hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.118.0/23
Signature Algorithm: sha256WithRSAEncryption
91:92:b1:c4:64:76:a0:ce:ee:8e:0b:bb:d3:7b:c2:3a:d8:2d:
2a:2d:96:5d:a9:5b:13:15:08:b7:f3:30:1e:d6:49:f3:a7:9d:
cb:c7:9a:ed:24:11:e1:34:14:f7:92:0f:dc:53:d7:20:f0:4e:
71:2e:28:9e:9c:13:4a:85:2f:f6:1b:37:b1:2e:df:52:41:38:
a7:93:a0:e9:89:93:04:5c:d9:d0:1b:24:02:71:d5:4e:4f:04:
d4:d3:25:92:53:6a:62:e8:75:99:f1:29:89:c7:19:68:21:37:
1b:eb:b0:55:48:99:6f:fc:de:5a:ee:19:9a:21:4e:43:9b:55:
be:b4:8b:3e:e9:96:fa:45:fc:d2:17:1a:a2:39:1d:18:d5:2c:
e6:21:9b:ab:3f:00:ae:9a:8f:6b:6c:59:12:4b:e0:6a:a0:f0:
ae:fc:21:71:51:9b:88:b8:75:60:de:f4:a2:c0:46:d1:95:a0:
21:5e:22:86:40:29:5a:78:6e:61:d9:93:3a:ba:15:f0:31:ec:
3c:58:2c:68:8c:61:dd:79:cf:58:dd:61:8f:75:34:dd:86:36:
0d:e1:f3:9a:c3:af:87:4b:a6:60:1a:77:a1:70:84:35:d0:f4:
9f:af:f5:80:5f:89:8f:d6:37:c9:bd:33:56:f8:9e:ef:98:44:
0a:c5:05:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:20 2025 by rpki-client