Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/p5WHhu7rhBuqKI0zKXsMEP31AII.roa
File: p5WHhu7rhBuqKI0zKXsMEP31AII.roa (raw, json)
Hash identifier: i40ebEzCdTIvmCPUQNdqUCkTV3Gj+bO+pMUFpI/uHYY=
Subject key identifier: A7:95:87:86:EE:EB:84:1B:AA:28:8D:33:29:7B:0C:10:FD:F5:00:82
Certificate issuer: /CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Certificate serial: 05CA73AC
Authority key identifier: 94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/p5WHhu7rhBuqKI0zKXsMEP31AII.roa
Signing time: Sat 01 Jan 2022 10:03:07 +0000
ROA not before: Sat 01 Jan 2022 10:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43394
IP address blocks: 91.194.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97153964 (0x5ca73ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Validity
Not Before: Jan 1 10:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7958786eeeb841baa288d33297b0c10fdf50082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:25:1f:16:46:f4:1a:5d:8b:8e:1b:e7:5d:7c:
8f:cb:f5:15:fd:96:91:3d:2f:7b:33:92:47:72:02:
76:ea:b1:3b:60:1c:f7:4f:cb:ce:79:78:43:cf:ae:
ba:e2:45:0d:52:58:97:8e:3b:57:78:71:62:7c:3a:
76:46:66:4c:05:c3:da:b2:1d:73:8c:a2:6c:08:a1:
72:39:17:6c:c4:5c:f5:23:b4:0d:d7:c5:c9:72:ec:
64:a2:8b:a4:a7:49:df:d9:b7:53:11:81:38:57:1c:
e0:f0:94:84:6b:13:31:14:35:50:ee:41:2c:a6:cb:
ee:06:87:b7:96:bc:e4:97:8b:fb:5d:99:4e:e2:74:
fa:80:45:35:91:83:1e:af:bd:2d:36:74:bc:71:3e:
88:c2:19:07:67:51:fb:a4:18:f7:84:60:5c:24:79:
fb:c4:f1:fa:e4:48:f3:a8:c2:03:29:f6:0e:8d:03:
86:4e:30:cc:cf:d7:f6:22:c2:c9:80:4e:28:c6:20:
2e:90:63:65:b6:ad:ba:fb:53:16:2d:c7:9f:0e:2e:
c0:15:89:36:6c:0d:39:87:33:a1:a5:63:8e:74:62:
f8:2f:fb:61:19:ab:50:cf:68:d6:5a:05:08:d0:f6:
ee:58:73:95:ad:b8:ee:63:e7:fc:35:0a:d3:06:dc:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:95:87:86:EE:EB:84:1B:AA:28:8D:33:29:7B:0C:10:FD:F5:00:82
X509v3 Authority Key Identifier:
keyid:94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/p5WHhu7rhBuqKI0zKXsMEP31AII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/lLHL_0vZcPon_e_Uv2iwLWjSud0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.242.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:78:62:1c:19:17:54:ab:13:2b:25:60:12:c8:09:76:ed:f5:
23:c1:09:2a:49:a1:c0:fa:9b:f9:46:98:8d:94:77:8a:86:36:
14:89:42:18:ae:80:b2:04:eb:7b:01:0d:f9:00:08:c3:1f:8c:
24:e7:f9:2d:ec:dd:a0:b0:9b:39:ea:ca:ff:d1:f6:b0:3d:6b:
f8:73:f9:16:a7:15:ce:5e:19:0e:2e:18:36:e0:cc:0d:1f:19:
22:a4:34:4b:8f:a0:cd:ff:ee:ba:ef:f2:b9:6d:07:aa:e9:01:
86:ff:1e:25:9e:5b:f1:3e:a4:62:b0:c1:c9:60:67:46:34:45:
36:f1:fa:19:17:e1:f3:86:9b:e1:1b:10:ac:d1:82:f9:d5:54:
e1:63:48:2d:27:66:a9:41:7a:02:be:5b:d2:8d:a8:79:c4:de:
40:8c:7f:a3:75:cb:a2:c2:e3:b7:af:48:d2:4a:95:1b:1e:a9:
d5:99:8e:9e:41:e9:ef:06:5f:83:f1:b5:25:a7:a0:fc:9c:24:
38:c8:a0:84:b5:a4:d7:ae:03:b3:7c:d5:a4:7e:f4:ad:af:0b:
a1:13:ea:a2:5a:f2:a8:2d:ad:4b:22:4f:4e:c4:3e:34:9b:c8:
56:a0:15:a1:26:a1:1a:bc:e7:d6:4a:00:f5:6b:7a:95:6d:0d:
6c:7b:5c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:33:51 2025 by rpki-client