Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/aHUB9c89v1fTePDs7YVhxZBQL98.roa
File: aHUB9c89v1fTePDs7YVhxZBQL98.roa (raw, json)
Hash identifier: AQ7JWJyuunrGtS8qFbXZviiAP/Wca79UF51+t+YDdeQ=
Subject key identifier: 68:75:01:F5:CF:3D:BF:57:D3:78:F0:EC:ED:85:61:C5:90:50:2F:DF
Certificate issuer: /CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Certificate serial: 0183426A25B174242A8D8B3B025A3A10E73B
Authority key identifier: A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/aHUB9c89v1fTePDs7YVhxZBQL98.roa
Signing time: Thu 15 Sep 2022 18:29:56 +0000
ROA not before: Thu 15 Sep 2022 18:29:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44630
IP address blocks: 91.199.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:42:6a:25:b1:74:24:2a:8d:8b:3b:02:5a:3a:10:e7:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Validity
Not Before: Sep 15 18:29:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=687501f5cf3dbf57d378f0eced8561c590502fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:20:b0:53:67:7c:48:f6:5d:5e:5b:11:2f:75:
4a:9a:ec:bc:e5:63:26:51:a6:cc:0f:6e:c3:c0:89:
8f:c1:73:28:c6:00:5c:d5:ce:1c:01:4b:df:fd:ca:
1c:2b:3c:17:b2:f0:82:81:aa:ba:65:28:58:2a:08:
c7:2b:fa:82:e1:22:ea:95:6a:3e:51:9e:3f:df:53:
cf:48:e3:a2:87:45:bd:6c:1e:67:b2:be:6b:7a:f6:
79:ca:c3:d2:95:c5:92:e4:cb:0f:c2:2c:9d:6b:b6:
2d:33:f5:f4:78:33:25:5d:1c:ea:dc:f3:ae:6e:38:
61:f3:a0:26:52:8b:b9:74:26:34:87:e2:7a:85:3a:
96:fe:64:0d:6a:ae:7a:cd:b8:d3:8e:51:68:8d:15:
97:09:02:0f:6c:e2:fb:5d:7b:fc:62:45:3d:69:ee:
4c:40:36:43:1f:09:9e:8b:bb:1f:c8:b2:c9:8d:5b:
90:10:5a:83:3b:5d:5b:dd:cf:68:df:3d:7c:4b:af:
99:92:22:82:75:5f:c6:df:50:8e:af:b8:9a:de:f6:
98:80:9a:e5:3c:c1:1c:fe:59:66:39:b2:a3:7c:ea:
71:c8:15:06:91:e8:f6:1a:4e:01:d6:25:ca:b6:5c:
66:0e:0c:b6:2f:da:66:d0:11:13:8e:26:af:cf:25:
ef:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:75:01:F5:CF:3D:BF:57:D3:78:F0:EC:ED:85:61:C5:90:50:2F:DF
X509v3 Authority Key Identifier:
keyid:A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/aHUB9c89v1fTePDs7YVhxZBQL98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/pdroBcyUvdKfwnEHzWOwvSfJFNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.188.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0e:de:97:4e:ba:37:63:13:9a:ff:75:9e:2c:0e:eb:96:51:
b9:55:01:90:a3:4e:32:c8:bf:53:56:76:61:7c:92:07:28:7e:
ba:58:89:d5:ef:e1:32:f6:d3:95:7f:8a:87:b7:82:7d:ec:26:
61:79:ac:40:a2:5f:65:80:ff:6d:21:c6:e3:c0:53:78:dc:91:
b7:34:dd:03:8b:32:6b:8a:62:74:d3:4b:b6:3e:95:69:ce:6c:
51:04:b5:1d:01:0c:f7:1b:1d:ac:0d:d0:2c:5b:89:10:e2:ef:
11:0f:eb:da:ab:41:f2:9c:3b:a0:fe:56:5a:bf:18:8c:c0:66:
49:a2:4e:46:9c:27:60:f7:41:ca:1a:30:5a:ad:7a:b0:d9:99:
0b:08:35:43:47:40:ee:85:96:cf:b8:4e:80:bd:75:36:57:13:
ec:c8:eb:7e:2b:cd:b5:e1:2c:e4:95:b5:1b:56:86:cc:50:fe:
49:af:cf:82:c1:0a:6b:5a:0f:99:ad:f2:3b:f7:31:6b:4f:5c:
71:28:18:92:b7:38:26:cb:88:d7:9f:56:9c:48:b1:c9:f3:fb:
0c:0f:c1:71:84:02:88:32:ab:b3:24:f6:34:c2:42:e7:48:71:
5e:10:5b:47:1f:9d:7c:39:24:58:4e:6c:95:41:d1:b3:8a:bd:
b7:3d:79:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:23:00 2025 by rpki-client