Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1f63db-c963-44bc-a039-8aaa6a90ff95/1/7uWXeyFxolEqVreC7IvNE0Wvbos.roa
File: 7uWXeyFxolEqVreC7IvNE0Wvbos.roa (raw, json)
Hash identifier: aCniINnKFddtcZbX2JMbg47ZUy2J9xeWL8HALaOi8z4=
Subject key identifier: EE:E5:97:7B:21:71:A2:51:2A:56:B7:82:EC:8B:CD:13:45:AF:6E:8B
Certificate issuer: /CN=7d3045fc491d39f52e7145b1000b3b86c37ded45
Certificate serial: 0F897BEA
Authority key identifier: 7D:30:45:FC:49:1D:39:F5:2E:71:45:B1:00:0B:3B:86:C3:7D:ED:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fTBF_EkdOfUucUWxAAs7hsN97UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1f63db-c963-44bc-a039-8aaa6a90ff95/1/7uWXeyFxolEqVreC7IvNE0Wvbos.roa
Signing time: Sat 01 Jan 2022 09:53:33 +0000
ROA not before: Sat 01 Jan 2022 09:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.236.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260668394 (0xf897bea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d3045fc491d39f52e7145b1000b3b86c37ded45
Validity
Not Before: Jan 1 09:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eee5977b2171a2512a56b782ec8bcd1345af6e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:77:bd:1e:20:2b:70:39:73:0a:42:c8:bd:2c:
7f:72:1e:25:a8:62:f9:16:29:44:6b:c9:54:1a:6f:
3d:15:ad:9d:8e:c5:b9:f9:5c:f6:a7:21:ac:a8:30:
df:22:a2:f6:c9:6a:09:e8:ae:e2:07:20:1a:5b:4a:
20:20:ef:0d:86:8c:95:fa:54:32:65:22:e8:28:fd:
67:91:84:eb:45:79:3f:07:ae:57:ff:7a:18:26:18:
13:69:25:94:1d:38:dd:6b:d6:cf:b4:ac:b8:50:c2:
98:f1:71:b8:4a:4e:66:2d:e9:fd:24:a4:96:94:cd:
4b:aa:06:d0:ed:c2:50:45:7f:c5:3b:39:0f:2b:03:
42:8a:5a:fb:91:e4:f9:dd:26:b6:58:eb:fd:83:e3:
13:f1:11:ae:37:58:a7:04:11:4b:9c:6f:f0:41:c7:
94:6f:66:19:55:3d:ba:62:39:8d:8b:f0:69:9f:30:
df:39:75:2c:20:64:f9:9d:fc:37:cb:65:21:e6:a2:
34:f6:8a:35:6a:0c:7c:08:ac:cc:3f:f2:be:8e:10:
3c:cc:2b:02:7d:20:8b:0a:8d:40:f6:b3:d3:03:c5:
cd:65:f3:76:bf:70:46:4e:44:7c:b1:82:65:47:7b:
c6:91:94:ea:e7:7b:f7:a5:7b:49:6e:17:83:c2:29:
cc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E5:97:7B:21:71:A2:51:2A:56:B7:82:EC:8B:CD:13:45:AF:6E:8B
X509v3 Authority Key Identifier:
keyid:7D:30:45:FC:49:1D:39:F5:2E:71:45:B1:00:0B:3B:86:C3:7D:ED:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fTBF_EkdOfUucUWxAAs7hsN97UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1f63db-c963-44bc-a039-8aaa6a90ff95/1/7uWXeyFxolEqVreC7IvNE0Wvbos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1f63db-c963-44bc-a039-8aaa6a90ff95/1/fTBF_EkdOfUucUWxAAs7hsN97UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.18.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a1:52:fd:6c:10:ce:c0:3c:ff:4f:ab:7e:88:8c:9c:cd:33:
10:24:5d:22:e8:e4:29:c0:a9:7a:1e:17:3e:35:90:70:31:cf:
45:1d:9b:ff:e0:d7:cf:49:5c:32:4e:2e:b4:ef:5a:1f:e9:23:
2c:67:21:ae:b2:b5:c6:e6:92:20:27:19:df:2d:2e:f6:11:3b:
67:7c:6b:cc:66:06:92:0b:c2:96:0b:26:18:66:b5:e6:6e:94:
af:8e:b1:a1:6e:f0:6f:2f:16:95:03:a3:a4:69:2a:06:5e:59:
49:a2:49:37:5a:c0:7b:27:19:e7:26:c4:89:28:14:7a:13:5c:
34:e8:2c:e8:d4:9d:9f:1e:15:fb:2e:30:0c:4e:1b:d6:5c:65:
7d:15:84:a5:f6:b5:38:73:46:6d:56:42:3f:85:55:86:1e:37:
ed:a7:9a:4d:4c:71:3c:1e:df:6f:d6:d4:6b:c2:bc:92:15:37:
4b:a5:cd:b7:67:a4:53:9d:d7:f9:7a:44:fb:2b:38:8c:73:e8:
12:46:72:0f:d9:5f:4f:5a:90:67:4b:0d:d9:be:05:d3:70:ae:
ed:44:7f:48:e1:fa:07:44:d3:06:e6:bb:0a:29:22:90:cd:bf:
10:8a:ad:76:47:59:37:47:27:fe:df:d0:e1:a0:be:b9:f2:ed:
b5:35:ae:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:48 2025 by rpki-client