Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/I3PNU8loUGTanAsX5hmdIvXFyM8.roa
File: I3PNU8loUGTanAsX5hmdIvXFyM8.roa (raw, json)
Hash identifier: j00ri2lFOJSK2Wc7ddKg3wG986cA++o2KayJJJAA7/I=
Subject key identifier: 23:73:CD:53:C9:68:50:64:DA:9C:0B:17:E6:19:9D:22:F5:C5:C8:CF
Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Certificate serial: 2718A1
Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/I3PNU8loUGTanAsX5hmdIvXFyM8.roa
Signing time: Sat 01 Jan 2022 01:51:01 +0000
ROA not before: Sat 01 Jan 2022 01:51:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57562
IP address blocks: 91.205.188.0/23 maxlen: 23
91.205.188.0/24 maxlen: 24
91.205.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2562209 (0x2718a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Validity
Not Before: Jan 1 01:51:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2373cd53c9685064da9c0b17e6199d22f5c5c8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5d:8d:85:62:c4:cf:15:a2:af:18:9b:4a:22:
dd:0b:59:a3:64:16:fd:bc:cc:22:2a:d8:8c:42:53:
66:bf:a6:13:9e:55:ed:3c:b6:df:35:a7:42:64:8f:
77:4e:bd:7c:93:77:47:cb:f2:9b:37:50:de:32:76:
f8:fb:36:78:3f:8a:87:6f:92:c1:31:c7:92:94:1e:
fe:2b:bc:c0:37:5c:c2:db:94:9f:70:00:16:87:29:
e5:54:f4:40:1c:c3:ff:fc:21:43:80:43:d7:b7:9d:
19:f8:b9:d2:3a:c1:d6:60:64:37:59:43:36:19:d4:
f1:70:ee:fd:d9:de:2f:15:25:1f:df:d1:1f:29:0b:
99:ca:bf:6e:30:6e:54:9d:5b:64:2e:02:59:06:28:
39:49:ca:2f:cc:77:3c:bc:b0:3e:be:b2:b9:5d:5a:
b2:6a:82:fc:23:14:25:28:10:82:bf:6a:04:40:a5:
6f:a1:cc:30:b2:e4:28:0c:49:dc:09:5a:5a:cb:bb:
12:46:b4:67:34:11:c5:c7:39:2d:bd:62:91:82:f9:
8b:9a:85:23:3a:34:6e:21:ea:5e:3c:3d:32:e9:d5:
4a:03:5f:4c:0a:c9:89:b3:66:28:4d:0a:f2:fb:9d:
0d:d3:24:23:39:e3:f9:08:e3:b5:aa:58:c6:ae:3f:
1f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:73:CD:53:C9:68:50:64:DA:9C:0B:17:E6:19:9D:22:F5:C5:C8:CF
X509v3 Authority Key Identifier:
keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/I3PNU8loUGTanAsX5hmdIvXFyM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.188.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:89:03:15:f3:dd:14:ed:f3:bc:3f:eb:d5:13:54:2d:51:05:
35:49:35:e7:02:e9:2c:f7:ea:1d:fb:1b:b7:5c:87:81:8d:e5:
bf:e0:0e:cc:43:04:90:d7:8e:18:fa:4e:54:02:eb:c2:39:33:
7d:a1:96:3e:8b:81:2e:a2:7a:92:db:e2:b2:2b:cf:6e:ba:ef:
fc:7a:4a:6f:a2:14:c0:5a:22:ac:89:61:ec:30:99:32:75:a9:
2f:d1:95:b3:96:3d:7d:f5:fe:31:50:18:93:7d:42:4a:e1:b6:
7c:74:70:f4:99:ec:6d:9e:42:a6:2a:6d:9f:ce:76:55:fe:bb:
58:2a:03:35:15:ad:63:f6:bf:6c:61:e7:e7:fb:42:26:53:93:
c4:56:22:a2:8e:49:80:b8:04:5c:99:67:27:b8:50:47:2b:3e:
74:59:4c:bf:e2:89:09:32:6b:93:b8:ef:14:44:63:64:bc:d7:
0b:c6:75:66:a5:77:3b:25:3f:75:c8:7f:db:ce:64:9c:08:2c:
54:f4:d6:0c:b2:22:e1:c6:9e:cc:5d:ef:d9:92:15:fc:6f:c4:
1a:38:22:b7:ef:79:77:3e:c9:25:a1:50:46:8a:26:ee:f2:22:
50:ef:0e:e1:58:b9:46:fa:00:92:92:1e:82:e1:42:45:c9:ae:
47:de:e6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:38 2025 by rpki-client