Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/mToIhW63HgWBPJmcR6MkbPA1OAY.roa
File: mToIhW63HgWBPJmcR6MkbPA1OAY.roa (raw, json)
Hash identifier: UPotxMO09KjhUcK3vVgWBxyPyhkzWMfwG79haVI5T8A=
Subject key identifier: 99:3A:08:85:6E:B7:1E:05:81:3C:99:9C:47:A3:24:6C:F0:35:38:06
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A68531
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/mToIhW63HgWBPJmcR6MkbPA1OAY.roa
Signing time: Sat 01 Jan 2022 08:54:58 +0000
ROA not before: Sat 01 Jan 2022 08:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202650
IP address blocks: 91.190.82.48/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900105521 (0x35a68531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=993a08856eb71e05813c999c47a3246cf0353806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d0:72:ee:ab:8b:90:50:03:6a:56:ee:af:ce:
09:13:e8:a5:8a:19:d3:3a:1c:34:5e:25:90:7a:8a:
1d:6e:29:11:4e:92:0d:96:48:e2:3c:85:cc:4f:59:
c6:ff:7f:f9:c2:0c:bc:50:87:be:d3:d4:0c:54:a1:
95:1a:41:39:b5:11:95:48:e0:f2:3e:2d:b0:a9:fc:
66:88:97:2b:ce:90:d9:8f:0a:19:75:49:f2:09:a1:
64:b3:f3:c2:b5:35:fe:77:0c:14:75:eb:86:1d:97:
48:c3:d8:9f:55:cb:a7:98:d7:0c:b4:99:54:4a:ab:
8c:a3:4c:31:de:c7:b0:59:15:40:22:8c:69:53:c6:
38:da:59:c1:ff:7a:e8:3e:7f:84:3a:10:bd:0d:8e:
23:66:66:a8:e2:da:df:85:95:e6:ad:7b:5b:f0:58:
b8:1a:eb:5d:c9:47:f6:29:b5:d5:21:9e:92:c7:0f:
fb:94:0b:58:49:86:00:fa:41:cb:bd:94:02:14:e7:
f5:e3:ce:52:fa:d9:db:b7:cb:c2:92:73:e3:88:51:
cc:2a:5a:1a:fd:ac:61:48:8e:0e:66:c2:a6:bc:2a:
b7:fd:ce:86:42:8d:81:9f:6e:04:71:6e:b4:48:bf:
73:e6:37:94:77:a1:c5:f8:82:18:9a:b1:db:4e:da:
c7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3A:08:85:6E:B7:1E:05:81:3C:99:9C:47:A3:24:6C:F0:35:38:06
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/mToIhW63HgWBPJmcR6MkbPA1OAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.82.48/28
Signature Algorithm: sha256WithRSAEncryption
90:a6:ad:55:9f:d5:13:46:78:10:cd:71:2b:6c:18:0f:18:47:
e0:6a:b5:92:6b:cd:6d:b2:f2:fc:9a:75:1a:31:92:65:a9:66:
09:8a:21:4d:0a:34:94:6e:d0:f4:b8:2a:94:37:8e:d5:31:36:
e2:e3:80:6e:2b:5b:e4:14:14:83:1d:9b:f2:f6:d1:81:1a:54:
e7:3d:01:d0:04:1c:70:ac:c1:e3:62:cb:2d:d1:3f:d1:ae:a2:
46:ae:eb:86:2f:16:15:a2:8a:08:67:46:e9:c9:d6:3f:b3:f6:
48:55:80:64:4a:a2:eb:d0:1d:65:6d:ac:74:05:34:68:45:6a:
d9:a9:a6:64:f4:75:b6:34:7a:45:5d:aa:b0:d2:67:3e:2e:9b:
26:94:c1:b0:c2:7f:c7:b2:67:bf:20:c9:e8:00:9c:68:8e:e0:
a1:a8:37:c5:81:fa:44:41:00:ac:05:80:eb:18:ad:a3:1c:9a:
26:6a:16:b7:28:81:e3:e5:03:d5:b5:95:c1:55:ed:86:c6:52:
de:f4:0e:f3:94:98:e0:97:dc:d6:f4:03:f0:bb:56:f1:9c:cd:
67:39:71:2a:98:15:9f:1e:ee:f4:52:61:a8:1d:3a:0e:2e:90:
5b:8b:2b:44:55:16:c5:42:63:bc:0e:5e:78:49:5f:b7:af:0f:
d0:f7:56:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:02:39 2025 by rpki-client