Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/ekd6hsQW37xCGoIfR2NwKUbOvKc.roa
File: ekd6hsQW37xCGoIfR2NwKUbOvKc.roa (raw, json)
Hash identifier: DU+5Ye8yLtfHBp8dqIzPKmX8L1JLSJUu5k6wQPB3tTg=
Subject key identifier: 7A:47:7A:86:C4:16:DF:BC:42:1A:82:1F:47:63:70:29:46:CE:BC:A7
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018571278F284CAE6E7F1E4AB04B2FD2473C
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/ekd6hsQW37xCGoIfR2NwKUbOvKc.roa
Signing time: Mon 02 Jan 2023 06:24:55 +0000
ROA not before: Mon 02 Jan 2023 06:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202650
IP address blocks: 91.190.82.48/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:8f:28:4c:ae:6e:7f:1e:4a:b0:4b:2f:d2:47:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 06:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a477a86c416dfbc421a821f4763702946cebca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:99:1e:55:af:f8:a9:34:43:ee:3b:6d:0b:82:
99:d2:a0:d4:cf:37:d2:bf:12:e3:c5:55:be:0c:25:
6e:5a:0c:cb:b2:d8:05:c3:30:b1:99:de:1c:1c:6f:
f7:8d:53:fc:26:6d:fc:78:dd:cd:c5:d0:14:83:95:
4e:45:e6:f0:8a:6e:f7:58:42:f8:4a:6b:d1:b9:1d:
6f:f3:52:97:e7:66:ad:90:c4:01:48:b2:3d:51:3d:
02:e7:8a:c6:b4:64:f9:b2:1e:8c:24:b7:aa:00:8f:
ad:6e:64:2e:1e:b9:80:76:fa:ef:93:b6:fd:aa:27:
fe:78:f8:f4:c8:73:5c:0e:5b:e6:e5:f2:9e:e6:bb:
64:ba:40:5b:6a:49:84:dc:be:2e:71:bb:c1:78:73:
6f:64:86:31:f3:73:ec:0f:b1:27:6c:de:49:b8:1d:
f9:e6:6f:0b:bf:f2:de:ba:4b:70:81:e4:fe:52:21:
fb:38:0c:32:ac:12:d0:99:38:3a:df:28:d1:50:47:
89:21:d7:8a:fc:88:06:a4:af:2b:9b:2e:14:a4:4c:
f2:d4:9c:40:5a:f3:7d:e7:61:a1:f1:c1:1a:87:26:
b8:25:75:8b:e5:25:b3:6c:96:74:ef:ea:51:f5:be:
52:b7:fd:3c:e6:96:01:61:8c:99:99:5c:bd:12:39:
17:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:47:7A:86:C4:16:DF:BC:42:1A:82:1F:47:63:70:29:46:CE:BC:A7
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/ekd6hsQW37xCGoIfR2NwKUbOvKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.82.48/28
Signature Algorithm: sha256WithRSAEncryption
5c:a4:4a:56:4b:48:35:a0:b0:2e:ce:af:3f:50:3a:9a:75:58:
42:d0:d4:71:b9:20:c5:be:93:d2:cc:be:10:d6:88:8e:77:f6:
cd:ba:f8:44:4a:9d:c7:22:ac:ff:d5:40:27:82:da:04:ab:13:
5f:e5:09:f9:57:77:6b:3c:5c:ab:0d:68:b3:98:a5:5a:57:f2:
b2:36:96:5e:b0:b4:6d:03:15:e7:5c:65:25:37:05:73:14:7f:
fa:e5:19:63:a0:b0:21:c4:36:3a:e6:39:9e:15:ca:df:47:9a:
b8:91:83:a3:25:89:58:31:31:23:e2:c3:00:4e:a7:ac:17:2b:
6b:e3:6a:e7:ed:64:0e:68:f0:f7:5d:3d:9f:b5:f3:ab:e5:ef:
18:5f:6a:fb:32:4d:ed:63:40:81:9e:d2:49:32:6d:06:a2:86:
fb:db:1b:9c:aa:73:6d:56:1b:70:ee:e4:e1:4d:92:5a:5e:2b:
f8:8c:9c:37:a3:c5:65:ec:e5:30:e3:14:b1:af:8e:39:b8:3a:
2c:7f:c7:0f:72:ec:6c:ca:dc:75:02:27:c9:d0:23:59:e3:a9:
6c:6b:9a:f8:1a:90:52:44:05:50:fd:3c:86:29:1b:f4:1e:7b:
a1:d6:93:41:6f:0c:70:f4:f4:97:f1:65:e6:ba:78:5e:f7:ec:
f5:60:07:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:48 2025 by rpki-client