Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/wTxnr2iWEVF2YtXUpYc-9ccOHdw.roa
File: wTxnr2iWEVF2YtXUpYc-9ccOHdw.roa (raw, json)
Hash identifier: yL7fyDxmsrnZJVo+C00tVX/2bUftk3sqnMeFkJL9WlE=
Subject key identifier: C1:3C:67:AF:68:96:11:51:76:62:D5:D4:A5:87:3E:F5:C7:0E:1D:DC
Certificate issuer: /CN=ffbcae2b290c801d57d09d025a9348e16706f182
Certificate serial: 0574FA36
Authority key identifier: FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/wTxnr2iWEVF2YtXUpYc-9ccOHdw.roa
Signing time: Sat 01 Jan 2022 09:00:20 +0000
ROA not before: Sat 01 Jan 2022 09:00:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44124
IP address blocks: 91.209.151.0/24 maxlen: 24
91.209.149.0/24 maxlen: 24
91.209.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91552310 (0x574fa36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbcae2b290c801d57d09d025a9348e16706f182
Validity
Not Before: Jan 1 09:00:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c13c67af689611517662d5d4a5873ef5c70e1ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:2b:4f:0d:d6:1c:7a:58:66:13:49:5b:19:
6f:dc:b6:bc:25:b3:a7:7e:48:55:2a:58:ef:80:f4:
a6:c8:8f:39:95:41:49:17:b2:07:f4:67:4e:89:7b:
5f:fb:13:e7:25:21:7f:12:bf:e6:76:29:8d:82:7a:
9d:79:8b:de:e7:91:39:ec:36:26:66:cd:a9:ec:2e:
a3:ff:13:fd:5c:c9:6a:ab:12:29:3b:12:c1:c6:70:
79:8f:ae:e8:09:45:86:5c:02:5e:2e:b8:81:e4:34:
cd:54:53:0b:7f:a2:10:2e:82:3f:73:24:b7:b4:7f:
2c:d8:d0:f3:e2:aa:5d:50:fb:ee:b5:a6:91:45:85:
b1:25:1f:21:7f:c9:8b:2b:fd:64:cd:84:f3:1c:44:
8d:ef:ab:eb:fe:8a:1d:3e:a5:0d:06:54:3f:85:d9:
4b:3e:fe:0b:3c:b1:32:4a:83:92:1d:2a:a8:29:e9:
ae:91:5b:a7:0e:7d:68:a5:99:08:6d:a3:f6:e1:40:
18:83:47:d8:2b:df:56:f9:67:a5:ca:b4:85:1e:3b:
4f:97:b3:75:37:51:da:04:a8:1f:a9:b9:ff:d2:14:
4f:b6:f5:e5:fd:4b:f0:42:81:4c:3f:30:1b:6e:b2:
25:08:ca:50:7e:35:a2:b7:d4:d5:52:a0:19:78:64:
b6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3C:67:AF:68:96:11:51:76:62:D5:D4:A5:87:3E:F5:C7:0E:1D:DC
X509v3 Authority Key Identifier:
keyid:FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/wTxnr2iWEVF2YtXUpYc-9ccOHdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/_7yuKykMgB1X0J0CWpNI4WcG8YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.115.0/24
91.209.149.0/24
91.209.151.0/24
Signature Algorithm: sha256WithRSAEncryption
18:0e:dc:a0:16:b1:8b:bd:b0:d0:54:4d:dd:15:31:0b:bf:8b:
da:9f:25:ba:c5:c8:e0:4c:00:c5:0c:b3:dd:58:97:a7:3e:c8:
9f:a3:3f:66:56:19:14:c4:ab:ba:c0:38:78:5a:6b:a5:3f:2d:
22:7b:e7:0c:8d:2c:01:14:e7:ea:66:63:78:9b:04:50:23:63:
04:16:24:21:57:41:c9:64:76:bd:ed:cb:95:9d:c9:35:1f:70:
d0:4a:56:cb:27:5c:f3:10:95:10:83:c2:70:ea:46:b7:f5:b2:
de:1e:02:c1:a0:37:0d:7d:71:8a:90:2b:cd:33:8a:d8:29:b8:
ec:65:79:d5:05:39:1d:25:e0:8f:ba:48:59:bc:0c:2f:b4:9f:
d9:90:6d:96:20:cb:cf:0b:34:c5:e0:5f:f4:dd:6b:bd:d9:9f:
1e:74:18:4e:1c:00:d6:22:4f:7e:71:9f:1f:03:ae:97:61:18:
de:d7:68:e1:49:20:da:49:15:53:ac:e5:27:b3:89:b6:f2:d4:
fa:e1:11:c9:b1:db:00:5a:e4:14:37:22:93:7a:c2:f1:e8:b5:
3e:b4:80:ef:96:69:88:53:94:65:bc:b0:a1:11:54:ee:5e:40:
15:11:09:12:e8:21:3a:f2:19:b4:56:3e:91:2c:b5:f1:5d:83:
a5:1e:42:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:40:10 2025 by rpki-client