Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/Y9aRh4UGmV2arQU2ku9SGSTGiGE.roa
File: Y9aRh4UGmV2arQU2ku9SGSTGiGE.roa (raw, json)
Hash identifier: o9pizYocLCiZr1KMv/QD/En+1rozWIrvRanRjPvfkHc=
Subject key identifier: 63:D6:91:87:85:06:99:5D:9A:AD:05:36:92:EF:52:19:24:C6:88:61
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 082C66CC
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/Y9aRh4UGmV2arQU2ku9SGSTGiGE.roa
Signing time: Tue 03 May 2022 09:25:05 +0000
ROA not before: Tue 03 May 2022 09:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 91.227.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137127628 (0x82c66cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: May 3 09:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63d691878506995d9aad053692ef521924c68861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f3:fa:72:ff:04:82:98:20:b7:d9:4e:99:74:
49:73:58:a0:b4:54:b0:58:2d:ff:49:cb:cc:9a:d6:
f9:7a:b5:b8:b4:8a:11:a3:e6:51:58:a8:4c:7e:b4:
dc:21:6a:8d:b1:65:d5:fb:70:f8:2a:59:81:31:34:
e7:a7:ca:38:b3:41:76:3e:21:1b:b8:ce:ed:30:76:
51:38:58:93:e3:ff:aa:48:8b:99:98:b8:80:23:ca:
55:89:6d:9d:21:3d:b3:80:72:dc:76:66:7c:1e:eb:
f6:03:57:7e:a8:d4:44:6f:d6:eb:58:0b:ca:ba:35:
ac:78:dc:25:c9:12:da:86:e2:4c:b2:a6:ff:78:c0:
62:f0:dd:ed:44:f3:33:8a:03:53:3a:5e:d2:25:1e:
7b:b5:a8:cc:9a:bd:7c:39:6e:68:19:3b:f7:7f:ac:
88:f7:cd:64:8f:0d:1f:d0:39:f1:62:90:53:9b:f3:
89:7e:c4:2f:22:85:36:e9:91:cb:74:cf:ad:dc:b1:
30:e1:c6:9f:49:a1:eb:fb:aa:45:a0:f2:73:16:0d:
bf:ac:6f:b2:5d:82:9b:bd:3f:29:cc:a5:9a:22:c4:
39:f5:a0:26:cd:3d:57:ff:4c:fd:94:e1:0d:9a:31:
0e:aa:91:b9:b9:39:00:80:17:fb:ed:75:84:c5:ea:
55:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D6:91:87:85:06:99:5D:9A:AD:05:36:92:EF:52:19:24:C6:88:61
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/Y9aRh4UGmV2arQU2ku9SGSTGiGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.168.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:59:c6:4e:03:40:c7:c1:a4:69:05:c1:65:b0:1c:60:eb:bc:
67:51:80:ea:99:95:0d:b2:86:f5:7c:22:28:bd:41:9a:a6:65:
91:e9:89:06:98:87:88:2b:9a:d9:e8:8f:87:5e:41:1a:5b:a3:
28:4a:e5:67:f3:26:c4:28:4d:b9:f7:96:29:50:65:6f:c6:5f:
5a:27:1d:f0:2e:98:f9:6d:fc:29:25:47:2e:69:f1:c2:1f:88:
42:22:44:95:3f:f6:3c:31:e6:07:af:6d:ce:72:86:12:31:a3:
45:f7:7a:64:5e:34:74:35:7d:eb:ae:6d:58:57:7a:3e:1c:75:
4f:ad:cd:2b:b4:6d:70:8a:43:20:05:30:34:71:ca:c6:5c:68:
7c:b3:97:2a:4e:ed:d6:ae:31:75:13:d5:39:d9:95:2a:fb:00:
fe:2c:e4:a9:b2:ed:b3:7f:44:58:74:da:4a:9c:28:61:0b:24:
d9:75:f5:18:bf:47:e8:9c:b6:92:42:73:6a:69:67:83:d2:4b:
1c:4c:45:69:3e:4d:de:8b:e9:62:13:d4:a8:10:eb:e3:6d:99:
8b:62:44:2e:8a:75:2a:91:9a:21:04:84:ac:7c:1a:77:22:9e:
31:1c:75:54:17:c6:d3:4e:1e:be:ba:37:ff:47:98:4c:95:2f:
3e:8f:30:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:54 2025 by rpki-client