Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/u9Y7RKj3xajQbwoXBlSPHNuAfkw.roa
File: u9Y7RKj3xajQbwoXBlSPHNuAfkw.roa (raw, json)
Hash identifier: i37ACbTZ5H61iWa00zV7ipQmjkoD8RtuiEIdnHw6wH8=
Subject key identifier: BB:D6:3B:44:A8:F7:C5:A8:D0:6F:0A:17:06:54:8F:1C:DB:80:7E:4C
Certificate issuer: /CN=0eca6e06c6824bd1b811183e0e17fa19496d261c
Certificate serial: 043041
Authority key identifier: 0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/u9Y7RKj3xajQbwoXBlSPHNuAfkw.roa
Signing time: Wed 26 Jan 2022 12:41:41 +0000
ROA not before: Wed 26 Jan 2022 12:41:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8352
IP address blocks: 91.213.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274497 (0x43041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eca6e06c6824bd1b811183e0e17fa19496d261c
Validity
Not Before: Jan 26 12:41:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd63b44a8f7c5a8d06f0a1706548f1cdb807e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:09:b5:7a:fc:94:13:31:07:bf:78:0b:a8:20:
64:3a:24:4a:80:88:d7:58:4c:55:e6:44:7b:77:29:
be:4a:24:47:8a:e2:b4:d9:f3:67:e8:ff:67:f1:e2:
6e:1a:c3:b8:f9:95:e2:75:c7:f8:09:44:09:aa:33:
61:0a:af:d4:1d:58:ec:9f:18:cd:7b:42:d6:0d:9c:
db:11:f5:30:23:64:be:2d:f1:fa:9d:77:1d:d4:dd:
53:4a:5a:c3:e6:89:30:be:c7:b4:b4:81:0d:7a:d6:
d9:cf:61:e5:57:94:c8:9b:5b:4f:20:00:72:43:bc:
25:2c:ef:be:eb:ef:a5:f9:e6:d4:77:bf:eb:d5:44:
96:bc:90:6f:ab:b5:71:e5:66:66:8b:cf:c0:dd:47:
bc:28:42:c3:32:35:84:17:f2:8a:13:4d:5b:4a:62:
13:86:1e:13:3b:6f:ac:8b:44:0b:9a:f7:6e:6a:b8:
d9:02:b1:d0:26:c9:c9:13:07:cc:1b:7e:ab:3b:b6:
08:a5:45:cf:06:32:a7:f9:03:52:11:36:ae:20:9f:
e2:d8:68:b9:68:53:54:57:77:66:7d:29:bc:28:24:
66:58:99:c2:8e:c8:2e:e5:f4:30:79:4b:24:71:87:
8a:c1:46:13:f9:47:6b:08:e3:04:5a:91:ae:36:da:
54:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D6:3B:44:A8:F7:C5:A8:D0:6F:0A:17:06:54:8F:1C:DB:80:7E:4C
X509v3 Authority Key Identifier:
keyid:0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/u9Y7RKj3xajQbwoXBlSPHNuAfkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/DspuBsaCS9G4ERg-Dhf6GUltJhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.148.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:14:04:ce:a4:0e:5d:ef:d3:23:21:2f:ed:1d:57:a9:2b:ff:
14:ac:9a:78:fc:12:ce:76:a6:0d:60:1c:b2:de:62:63:db:42:
e0:3a:2b:7d:8c:14:65:a0:f0:6c:2b:93:57:14:b1:b1:63:f2:
ba:c1:e8:de:38:5f:ac:3c:72:9f:4a:09:d9:95:56:e7:42:83:
84:8e:06:8c:6a:07:b3:de:78:1c:4c:17:90:93:cf:cb:10:bb:
e8:e4:b2:a8:b4:90:61:f4:90:fc:d4:cd:46:e3:ba:0e:67:be:
13:d4:ce:d6:f5:0b:9f:96:16:bd:ad:11:04:62:6f:10:91:72:
8f:e6:4b:91:d0:82:25:37:51:eb:07:3e:d0:3e:96:eb:43:c6:
ee:79:7a:08:8a:74:df:5d:a1:2e:17:cb:f5:dc:ed:46:c4:33:
90:1d:b6:44:62:a1:eb:a4:6a:f9:57:ae:84:04:f6:16:01:bf:
06:51:f7:00:2e:ae:1d:e6:70:72:0f:24:45:92:cd:3b:f3:b8:
77:b6:c2:12:0c:ac:22:e0:14:75:5c:17:5f:c7:dd:c5:d3:47:
b1:af:bd:9a:fc:c1:b0:6d:23:34:7e:22:d3:66:8c:25:27:88:
d5:68:22:0d:97:37:c8:0d:ce:88:6a:dd:10:af:2b:34:e0:f3:
52:94:36:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:06 2025 by rpki-client