Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/vvBiTmdLV7Ji6seB6ft0Ke6mksw.roa
File: vvBiTmdLV7Ji6seB6ft0Ke6mksw.roa (raw, json)
Hash identifier: xJenmNMSHYDaW3pZ0WhUiRQaen+x3b1Y+4kYtIzHlno=
Subject key identifier: BE:F0:62:4E:67:4B:57:B2:62:EA:C7:81:E9:FB:74:29:EE:A6:92:CC
Certificate issuer: /CN=908d6e3dcf258ae26b0cfa6ffdef467c54bb7d9f
Certificate serial: 01856DCADDF5333466A47B2C2B22682CF6B5
Authority key identifier: 90:8D:6E:3D:CF:25:8A:E2:6B:0C:FA:6F:FD:EF:46:7C:54:BB:7D:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kI1uPc8liuJrDPpv_e9GfFS7fZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/vvBiTmdLV7Ji6seB6ft0Ke6mksw.roa
Signing time: Sun 01 Jan 2023 14:44:49 +0000
ROA not before: Sun 01 Jan 2023 14:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208664
IP address blocks: 91.207.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:dd:f5:33:34:66:a4:7b:2c:2b:22:68:2c:f6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=908d6e3dcf258ae26b0cfa6ffdef467c54bb7d9f
Validity
Not Before: Jan 1 14:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bef0624e674b57b262eac781e9fb7429eea692cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:20:53:fb:91:ab:98:71:e9:06:79:c6:54:8b:
16:5c:94:d9:97:42:e6:db:94:58:e4:c1:d2:45:e1:
07:8d:08:4f:41:5f:25:85:31:1f:5a:b2:2f:87:0b:
48:73:59:a2:e6:d1:c6:c4:b1:ef:2d:0c:bf:a4:07:
5d:7a:9e:cc:7c:fe:1c:55:35:b3:e5:f0:cf:a2:dd:
9e:a8:2c:47:ea:25:c8:ab:63:cb:29:09:45:29:a7:
61:25:60:a1:f4:3e:3a:9e:09:73:94:21:e7:7a:d1:
35:49:9b:a1:ef:8e:00:69:fa:5b:65:f3:79:65:ef:
29:55:24:fc:5b:3f:d2:a4:b7:2b:b6:42:5b:c1:c8:
78:d3:49:14:2b:25:a8:4d:54:3d:a3:54:a9:e0:9d:
77:57:9c:1b:53:98:9b:f0:4b:84:db:f8:ca:57:45:
07:11:f7:18:7e:a9:ee:2f:b1:cd:99:74:93:4d:5d:
a5:9d:7e:71:ad:7b:07:97:ec:e7:24:ee:f9:2f:22:
81:5e:45:c4:6f:3e:0d:a5:2e:57:47:06:1d:74:e1:
b0:c3:07:3b:f3:88:a5:5f:ff:04:30:da:29:8c:58:
66:0c:d6:d1:7f:db:3b:2b:a5:a6:7a:59:ab:1b:9e:
cb:4c:e1:9f:0b:fc:59:a9:b2:17:9c:ca:c2:b6:52:
f9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F0:62:4E:67:4B:57:B2:62:EA:C7:81:E9:FB:74:29:EE:A6:92:CC
X509v3 Authority Key Identifier:
keyid:90:8D:6E:3D:CF:25:8A:E2:6B:0C:FA:6F:FD:EF:46:7C:54:BB:7D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kI1uPc8liuJrDPpv_e9GfFS7fZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/vvBiTmdLV7Ji6seB6ft0Ke6mksw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96c1de-c1fd-49c5-9ee5-ed6114c79dae/1/kI1uPc8liuJrDPpv_e9GfFS7fZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.8.0/24
Signature Algorithm: sha256WithRSAEncryption
45:84:d0:ed:d5:1e:48:60:bf:fd:c6:ad:04:a7:7a:b1:1e:74:
d6:87:ea:34:01:2a:f0:b8:2c:08:d2:ec:46:5f:50:4f:9c:1d:
ca:2f:89:1b:15:c4:ce:36:52:47:ff:2b:46:99:b7:92:96:d2:
a3:df:4d:fc:7a:28:43:62:ef:0e:64:3e:c2:a9:ee:85:22:18:
1e:dd:0d:4d:aa:ce:7c:c3:04:6a:c0:9d:a3:d5:9e:ff:a3:6a:
af:e1:5c:7c:38:a0:50:ea:a4:a1:2f:4c:bb:d8:d3:1c:96:22:
a6:8e:57:42:bf:07:c9:36:41:6e:53:40:16:6a:fc:f6:fd:c7:
1f:81:bc:f3:57:a4:05:12:3e:a4:a5:9d:d3:1c:6a:b1:ac:e0:
02:1a:20:79:84:93:16:52:1c:f3:29:c1:b7:0c:8b:0b:01:ff:
df:81:fa:46:46:94:15:fa:88:f9:84:a5:90:52:1b:9b:0a:af:
db:ae:ff:cb:3b:3d:97:b2:60:85:fe:b4:e8:3b:03:9d:fe:85:
48:69:1c:26:44:ac:1d:86:a8:b2:0b:3d:62:ef:62:78:59:6b:
24:9b:92:48:44:33:cf:bc:d6:b9:72:22:9f:0a:51:eb:84:b4:
61:3f:c7:c6:68:f5:f9:41:95:80:ee:82:36:d1:ba:d3:30:cb:
3f:c7:f5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:21 2025 by rpki-client