Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/rHy9VZv7cGdCptwGAc1L8jrwi28.roa
File: rHy9VZv7cGdCptwGAc1L8jrwi28.roa (raw, json)
Hash identifier: 6O5jtnbHN2ndplaVRFATA+1xtbRoZHax372mYcE8N6s=
Subject key identifier: AC:7C:BD:55:9B:FB:70:67:42:A6:DC:06:01:CD:4B:F2:3A:F0:8B:6F
Certificate issuer: /CN=908d6e3dcf258ae26b0cfa6ffdef467c54bb7d9f
Certificate serial: 04104EDD
Authority key identifier: 90:8D:6E:3D:CF:25:8A:E2:6B:0C:FA:6F:FD:EF:46:7C:54:BB:7D:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kI1uPc8liuJrDPpv_e9GfFS7fZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/rHy9VZv7cGdCptwGAc1L8jrwi28.roa
Signing time: Sat 01 Jan 2022 03:55:50 +0000
ROA not before: Sat 01 Jan 2022 03:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208664
IP address blocks: 91.207.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68177629 (0x4104edd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=908d6e3dcf258ae26b0cfa6ffdef467c54bb7d9f
Validity
Not Before: Jan 1 03:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac7cbd559bfb706742a6dc0601cd4bf23af08b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:53:09:00:bb:5d:e6:0c:a0:32:b5:7f:6c:da:
6f:eb:61:f4:60:e0:69:e5:15:15:a0:26:27:e3:cb:
e7:a5:f6:8f:c9:6a:85:6c:ed:49:39:d8:c0:fa:71:
af:bc:b8:f4:84:82:d7:95:f2:1e:7b:f9:1e:e3:c1:
53:16:91:16:4d:76:e7:9a:1a:fa:1a:b5:f6:63:c9:
ca:74:10:4a:ba:16:49:52:c7:06:81:6b:cd:f3:68:
97:2e:e5:b0:b1:b0:12:a5:81:00:d1:fa:6a:11:c4:
8a:95:66:c4:8a:eb:99:0a:cf:a6:03:ea:70:37:eb:
60:ec:ea:c3:f2:4c:e3:61:ae:f3:29:6d:80:1d:0f:
92:94:fe:57:be:76:1f:a3:0f:5f:f5:3f:e4:c4:56:
66:c3:59:23:40:3d:e6:eb:da:4d:5a:4e:f7:1a:3a:
8c:eb:4f:23:22:c2:88:6e:71:98:64:b5:dc:99:d6:
df:10:4d:bd:2f:d9:57:a2:e8:20:f3:8c:d0:68:7a:
3b:32:e1:55:66:24:ff:4f:f2:e0:b8:7d:f1:e1:84:
90:dd:72:7d:f1:62:a5:e8:c6:68:2f:0a:65:29:3f:
0a:31:2e:ba:4f:cd:d7:b9:ff:c1:87:a3:48:eb:88:
9d:0c:2c:c5:4f:64:b1:6c:26:a4:4d:3c:25:32:3c:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:BD:55:9B:FB:70:67:42:A6:DC:06:01:CD:4B:F2:3A:F0:8B:6F
X509v3 Authority Key Identifier:
keyid:90:8D:6E:3D:CF:25:8A:E2:6B:0C:FA:6F:FD:EF:46:7C:54:BB:7D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kI1uPc8liuJrDPpv_e9GfFS7fZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/rHy9VZv7cGdCptwGAc1L8jrwi28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/kI1uPc8liuJrDPpv_e9GfFS7fZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.8.0/24
Signature Algorithm: sha256WithRSAEncryption
57:64:f7:eb:96:2d:83:ce:85:a4:59:99:88:10:18:b3:92:a7:
60:07:ef:a3:6f:92:7b:11:87:09:95:58:8d:2f:76:f0:ca:8e:
2e:12:7b:68:61:21:10:9a:7a:42:56:a1:0d:63:36:60:22:6d:
4f:7f:fc:eb:79:53:e2:c4:0d:0f:02:ce:1f:4c:01:47:cc:9f:
58:9f:18:f1:01:09:7b:13:23:fe:5d:93:34:1d:5a:ce:68:87:
9c:35:5a:fc:21:7d:5a:45:34:fe:2b:56:8a:06:9a:ca:d1:ff:
70:7e:60:a1:ff:bb:45:9e:c4:de:73:de:4c:68:c2:9a:73:3e:
24:23:79:4a:94:b5:69:d4:c1:74:1d:c4:78:b2:01:43:09:2c:
2e:00:d5:65:f2:f6:80:a9:37:10:f0:a4:8a:6c:3b:e9:92:54:
81:03:7a:29:61:85:69:9a:fc:a4:2d:79:49:04:f6:63:75:1a:
0f:5a:e7:9b:bd:23:35:7a:21:4e:ad:62:94:12:05:44:78:76:
42:6b:38:8b:56:11:aa:d2:72:a1:28:69:b9:62:f5:7a:54:ce:
1c:9e:0b:54:4b:70:63:b2:97:65:6b:94:88:d2:d2:36:d6:c1:
18:88:38:59:14:2d:c6:36:97:68:4b:81:3e:81:23:76:43:81:
ca:ec:b0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:02 2025 by rpki-client