Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/ad5ea9-8bd1-41ef-8356-fadc3524fa30/1/RLNPU3OV5mSEEgIk176ePUxKByI.roa
File: RLNPU3OV5mSEEgIk176ePUxKByI.roa (raw, json)
Hash identifier: n9sVRn/CMvmcZ/7Q6UFwyjyVPQRWn3NXPD2oIJeWisU=
Subject key identifier: 44:B3:4F:53:73:95:E6:64:84:12:02:24:D7:BE:9E:3D:4C:4A:07:22
Certificate issuer: /CN=eeb3e113ccfaeee1996ba90c461407fce290a9db
Certificate serial: 0185734CB6DA48A73F18F577DB55F1780F89
Authority key identifier: EE:B3:E1:13:CC:FA:EE:E1:99:6B:A9:0C:46:14:07:FC:E2:90:A9:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rPhE8z67uGZa6kMRhQH_OKQqds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/ad5ea9-8bd1-41ef-8356-fadc3524fa30/1/RLNPU3OV5mSEEgIk176ePUxKByI.roa
Signing time: Mon 02 Jan 2023 16:24:45 +0000
ROA not before: Mon 02 Jan 2023 16:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208081
IP address blocks: 91.199.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:b6:da:48:a7:3f:18:f5:77:db:55:f1:78:0f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeb3e113ccfaeee1996ba90c461407fce290a9db
Validity
Not Before: Jan 2 16:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44b34f537395e66484120224d7be9e3d4c4a0722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:46:ae:7e:09:8b:79:13:da:34:28:28:74:2d:
df:e3:c9:41:3b:73:dd:a6:b9:95:ca:ed:fa:89:79:
d9:1a:9a:58:2e:ff:94:db:de:82:98:87:03:8c:26:
fe:4e:ce:77:55:b8:68:8f:7d:47:ac:1d:6c:17:14:
de:a7:5c:69:8e:29:e4:fb:9c:5f:a0:d0:d6:83:3f:
f5:1f:6e:8b:61:77:ec:4a:7c:6e:ca:52:57:ce:c8:
c8:a4:39:48:a5:78:af:20:bd:07:00:dc:c2:18:28:
ec:78:2a:8d:f6:2e:34:b0:f8:0b:c1:13:e1:a0:93:
09:9e:68:a7:5b:0b:14:08:5c:4d:9b:f9:aa:39:02:
53:09:3e:88:05:0d:f7:08:1d:99:73:01:b2:bc:2e:
66:67:9b:59:0d:ed:51:73:74:1e:f3:b7:3b:9b:70:
3d:a0:2c:02:b9:81:e7:25:6d:67:83:05:67:da:46:
3b:c4:90:8e:45:bd:28:af:dd:a4:f9:9f:cf:c9:cc:
2a:ec:48:11:fe:33:52:86:ee:29:48:7c:22:7c:aa:
94:48:3b:d1:b3:db:8c:be:30:6b:51:d3:69:e5:53:
d8:ef:67:cf:00:78:7d:81:7c:30:ce:df:51:c7:84:
6f:bc:98:47:32:8f:77:58:ed:b9:05:4a:a5:73:2e:
6a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B3:4F:53:73:95:E6:64:84:12:02:24:D7:BE:9E:3D:4C:4A:07:22
X509v3 Authority Key Identifier:
keyid:EE:B3:E1:13:CC:FA:EE:E1:99:6B:A9:0C:46:14:07:FC:E2:90:A9:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rPhE8z67uGZa6kMRhQH_OKQqds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/ad5ea9-8bd1-41ef-8356-fadc3524fa30/1/RLNPU3OV5mSEEgIk176ePUxKByI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/ad5ea9-8bd1-41ef-8356-fadc3524fa30/1/7rPhE8z67uGZa6kMRhQH_OKQqds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.36.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:1a:8e:7b:2c:5d:50:3e:fe:8a:d0:59:0a:cc:83:c4:4e:1e:
c5:e7:90:0b:38:1c:3d:7d:d7:c8:1d:46:ed:45:c9:7c:1e:09:
55:24:26:55:5b:b4:8b:05:9d:36:f3:94:1d:bf:ba:e1:2f:c1:
21:d4:a8:30:f6:86:11:e6:80:91:66:e4:1f:62:95:46:1c:77:
a1:3b:ad:1f:40:50:1a:0c:05:a6:bf:66:30:6e:c1:0f:51:9e:
97:22:4f:94:48:c1:7d:b6:b3:2f:fe:6d:13:20:5a:df:67:5d:
8c:bf:e2:2e:83:88:e0:4c:23:11:64:11:b9:e5:02:3b:2d:cc:
4a:22:41:77:81:df:0f:cd:21:4e:db:1a:15:2f:b1:5b:9a:f3:
fe:20:f8:12:69:4a:99:e3:31:c4:58:0d:dc:ec:92:50:64:6d:
db:5b:dc:6f:ce:e0:72:f9:0e:9b:c3:20:a6:7c:ec:f9:be:81:
02:c6:6b:1b:ab:36:2a:90:68:64:c5:b8:0d:fc:48:fa:0a:a5:
6a:91:8d:6d:f5:bf:f9:2f:20:59:cd:44:ab:57:54:c5:ca:2e:
2f:c5:1d:5f:3e:22:ec:50:dc:94:c9:f1:a7:a9:b8:34:ad:0e:
87:92:12:49:7b:57:0b:dc:2e:1e:55:f8:d9:a0:bc:15:bd:1b:
1b:ed:a8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:55:42 2025 by rpki-client