Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/cb5f21-b9df-40db-b566-3e3cd95a5c2e/1/U0Os785xzYMNySTY6eGAJoWBg_s.roa
File: U0Os785xzYMNySTY6eGAJoWBg_s.roa (raw, json)
Hash identifier: 8izpLv3e3mS6/9jEtKOC5fDXNH8f3Ut8/N1qcR0ESiM=
Subject key identifier: 53:43:AC:EF:CE:71:CD:83:0D:C9:24:D8:E9:E1:80:26:85:81:83:FB
Certificate issuer: /CN=49ba079b7f0216a6f6673c971c2afadd5ae942ea
Certificate serial: 0189E0DDC79805CA5760382A6FD21949449D
Authority key identifier: 49:BA:07:9B:7F:02:16:A6:F6:67:3C:97:1C:2A:FA:DD:5A:E9:42:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SboHm38CFqb2ZzyXHCr63VrpQuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/cb5f21-b9df-40db-b566-3e3cd95a5c2e/1/U0Os785xzYMNySTY6eGAJoWBg_s.roa
Signing time: Thu 10 Aug 2023 19:12:58 +0000
ROA not before: Thu 10 Aug 2023 19:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213139
IP address blocks: 91.218.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e0:dd:c7:98:05:ca:57:60:38:2a:6f:d2:19:49:44:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ba079b7f0216a6f6673c971c2afadd5ae942ea
Validity
Not Before: Aug 10 19:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5343acefce71cd830dc924d8e9e18026858183fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:61:83:f9:e3:ad:60:6f:e0:16:a3:65:3f:d9:
a7:8b:bf:16:f2:95:cd:55:db:ad:5f:be:ae:af:a8:
d8:29:a4:96:99:8b:65:64:45:ea:d5:07:c0:5d:b2:
a7:88:9f:a8:93:ba:fb:24:84:ef:b3:57:5e:ae:70:
b7:62:3f:fc:a2:11:cc:2a:3d:17:53:99:56:41:96:
d7:33:74:89:1d:61:4f:4b:51:7d:3b:35:5c:ed:e1:
47:5a:05:90:e4:14:f5:a7:00:41:7a:05:f7:a2:8b:
c2:46:8b:47:c0:b2:93:84:67:51:94:96:1a:b8:7c:
45:fd:06:a9:62:c9:0f:68:af:52:b0:7a:f3:4c:cd:
09:c5:4a:a9:39:e7:71:66:7c:3d:01:63:8c:6c:45:
ce:39:48:96:1a:83:17:46:51:6b:34:9c:6c:db:d6:
dc:3b:2c:01:7c:67:2b:aa:60:69:cb:1f:d4:39:5e:
82:b4:ea:43:e5:e5:c4:31:8c:75:fd:f9:e9:0a:19:
81:f1:59:73:fa:dc:03:47:72:92:3e:b3:d0:bf:81:
7f:69:59:ee:08:6c:16:fb:fa:e7:3c:f1:02:97:84:
eb:62:21:d3:b7:10:c4:2b:d0:fe:fb:ba:57:cc:9f:
7e:56:bb:a2:b3:b5:a3:0a:f1:6f:5e:3a:bc:9c:1e:
1f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:43:AC:EF:CE:71:CD:83:0D:C9:24:D8:E9:E1:80:26:85:81:83:FB
X509v3 Authority Key Identifier:
keyid:49:BA:07:9B:7F:02:16:A6:F6:67:3C:97:1C:2A:FA:DD:5A:E9:42:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SboHm38CFqb2ZzyXHCr63VrpQuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cb5f21-b9df-40db-b566-3e3cd95a5c2e/1/U0Os785xzYMNySTY6eGAJoWBg_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cb5f21-b9df-40db-b566-3e3cd95a5c2e/1/SboHm38CFqb2ZzyXHCr63VrpQuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.56.0/24
Signature Algorithm: sha256WithRSAEncryption
31:79:09:a7:c9:cf:87:b3:8f:a8:4d:fa:bd:9b:ac:21:7e:b1:
ea:28:50:86:60:c9:94:2a:f8:44:1e:1a:6c:06:a0:15:c4:40:
74:da:d4:8b:d5:29:35:52:a1:6f:1d:d8:0d:36:54:63:81:6d:
b0:ce:f7:c5:18:9b:4e:e5:98:cc:f5:16:3d:46:15:15:dd:2f:
09:d9:0c:41:90:c1:df:17:36:d8:11:97:3d:83:d9:a5:03:c7:
12:43:88:99:8b:7b:95:a7:58:28:36:51:92:66:89:ae:20:02:
0f:b3:7c:57:6c:72:e8:01:be:80:b5:80:45:4b:c4:c9:97:42:
79:23:0a:48:09:8a:55:7e:6f:0e:fe:fd:2f:8a:f7:2d:75:c4:
c8:59:98:0a:55:3d:81:e0:51:13:bd:a0:4d:f6:de:41:c1:fc:
3d:c7:fd:0e:76:7b:9d:3f:c8:42:08:1f:43:d9:85:ac:d0:72:
be:bf:63:2c:c9:fe:85:c2:80:e4:e9:1e:79:93:b7:c6:5b:dc:
82:92:43:79:95:21:ab:76:9b:e7:c4:2a:33:43:f9:8e:55:b9:
e9:92:dc:b1:77:2f:52:67:fe:8c:d3:dc:d6:04:47:f0:87:8d:
32:38:b2:d5:64:77:76:c8:e1:f2:bd:85:07:19:b8:65:06:e7:
27:25:5a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:23:09 2025 by rpki-client