Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/TX4F28sgarphzfsMlRXif3a8Xa8.roa
File: TX4F28sgarphzfsMlRXif3a8Xa8.roa (raw, json)
Hash identifier: nod9Jbl3iqbGTeJx+99BOQTZUGoPOS2Z9gPLGJVZ0+Y=
Subject key identifier: 4D:7E:05:DB:CB:20:6A:BA:61:CD:FB:0C:95:15:E2:7F:76:BC:5D:AF
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 082CDCD6
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/TX4F28sgarphzfsMlRXif3a8Xa8.roa
Signing time: Tue 03 May 2022 09:25:06 +0000
ROA not before: Tue 03 May 2022 09:25:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136744
IP address blocks: 91.227.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137157846 (0x82cdcd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: May 3 09:25:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d7e05dbcb206aba61cdfb0c9515e27f76bc5daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:10:7c:b4:a5:4d:6f:3d:69:69:4b:6a:0d:ab:
72:70:df:ff:35:1a:1c:bf:25:ee:f5:24:71:a1:81:
d2:c8:ad:72:10:c3:29:2a:bf:fa:cf:ab:0f:84:30:
d5:f6:ad:df:1a:4c:fc:e8:b7:1b:80:07:1b:a6:6a:
e1:59:23:fa:83:d7:6e:3e:25:7b:9f:84:a7:10:39:
14:60:d5:c8:f3:a0:71:15:c1:6a:34:0d:6f:d6:df:
10:26:19:18:a4:ac:a3:b8:1c:00:d9:02:d1:bd:d0:
a5:fa:72:8c:2c:d6:32:c8:90:a1:31:e3:47:ee:28:
b2:d5:75:a3:2d:c3:bc:e4:f4:3b:63:d9:8b:0e:8c:
b2:f2:d5:f7:7e:79:7e:13:02:da:36:2a:e4:8e:db:
0d:aa:e1:4a:21:e0:f8:62:2f:8e:ac:b7:c8:af:a7:
e9:28:ee:2e:c4:14:09:64:13:23:2a:21:20:98:1a:
21:e6:d4:f0:9e:51:38:7d:ef:c2:8d:43:f2:86:46:
29:9d:f0:f1:3e:a2:35:05:b1:ae:e0:b6:f7:17:07:
c4:f7:b6:cd:e0:0e:02:6f:e0:b0:10:e0:86:3d:47:
7a:a4:cd:8f:ab:d3:6d:5d:d5:f7:38:4d:d6:20:36:
ba:6e:12:75:7a:c8:85:7a:b6:da:12:d2:bf:01:fa:
23:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7E:05:DB:CB:20:6A:BA:61:CD:FB:0C:95:15:E2:7F:76:BC:5D:AF
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/TX4F28sgarphzfsMlRXif3a8Xa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.137.0/24
Signature Algorithm: sha256WithRSAEncryption
25:19:3f:39:14:a0:20:dd:a2:e7:9e:85:08:08:7a:69:03:cc:
90:fc:12:b3:3b:54:8a:94:de:b2:2d:ed:5a:67:80:bf:cf:0a:
ab:9d:c0:3f:71:ba:d9:78:4f:87:bb:2a:83:e9:05:b4:5f:0e:
d8:68:da:a3:64:96:05:7b:8a:21:88:e9:4d:d4:b9:14:57:f3:
70:19:49:b8:40:e7:62:68:0f:1d:35:a8:08:0b:1c:f9:a4:6f:
f2:d6:c1:09:c9:fb:13:bd:3c:a8:73:d5:b4:27:ea:96:dc:51:
22:b7:24:d7:c7:86:d1:ef:71:fa:40:f5:5a:34:03:21:45:72:
99:52:8d:2c:ae:f7:25:70:a6:3c:06:8e:47:ed:31:d3:e0:fa:
d2:4b:94:d9:24:3b:c0:6c:b7:c4:7d:4f:35:0c:28:37:5b:fb:
ce:e8:77:b3:c0:f6:37:03:6a:f2:f8:9a:fd:34:29:47:25:e1:
0c:93:88:01:e8:cd:09:e4:53:69:72:ff:8e:b5:98:5c:3b:41:
67:1b:05:be:a9:1f:5c:7f:a2:3d:c3:43:96:d3:e7:63:1f:a7:
ed:66:4a:9b:31:43:c4:cf:26:19:17:cb:2b:50:74:37:3b:c3:
28:87:ef:be:00:d9:0c:7f:d9:02:66:f5:7d:1d:b6:81:9c:7b:
1b:59:0a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:17:09 2025 by rpki-client