Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/pJcOUJnhErsrNEJVjUSZJVu44Ts.roa
File: pJcOUJnhErsrNEJVjUSZJVu44Ts.roa (raw, json)
Hash identifier: kpBQt+gII5gEvh6Q/ocQMr+rB4ZYYqXSnGKR6CjDDlA=
Subject key identifier: A4:97:0E:50:99:E1:12:BB:2B:34:42:55:8D:44:99:25:5B:B8:E1:3B
Certificate issuer: /CN=d977120937500eb46696428962e510e02c348e6c
Certificate serial: 01591C
Authority key identifier: D9:77:12:09:37:50:0E:B4:66:96:42:89:62:E5:10:E0:2C:34:8E:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/pJcOUJnhErsrNEJVjUSZJVu44Ts.roa
Signing time: Tue 26 Apr 2022 07:05:09 +0000
ROA not before: Tue 26 Apr 2022 07:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47703
IP address blocks: 91.236.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88348 (0x1591c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d977120937500eb46696428962e510e02c348e6c
Validity
Not Before: Apr 26 07:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4970e5099e112bb2b3442558d4499255bb8e13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:51:f2:8e:44:2a:81:4c:33:13:16:a6:67:25:
78:98:7d:38:94:96:2a:26:ef:7a:e0:77:3f:a4:14:
73:ba:1e:23:b6:b2:d6:c7:8f:8b:e0:ed:d5:ad:4d:
a4:ac:80:45:8f:08:ae:58:51:6a:47:ec:3b:c1:55:
31:f9:7e:10:14:5a:89:5f:67:77:7f:4a:2c:61:15:
bb:e7:35:06:28:27:4e:7c:d6:d2:a8:9e:d8:32:cf:
9a:a2:d2:81:21:87:54:6f:19:e4:36:1e:ff:13:6d:
26:eb:a8:b9:ae:1d:2e:7d:32:0f:37:dd:6d:e0:cb:
45:95:4a:9b:1c:6b:0c:f5:78:18:d8:3c:93:88:f4:
8c:a2:ac:28:2f:d9:93:bb:6f:6e:aa:2a:84:b8:75:
18:55:83:2f:a2:37:ef:99:5d:ca:c8:08:4a:66:cb:
88:0f:33:16:f1:20:68:bc:76:40:e5:4c:d7:98:f4:
f4:8f:e3:06:6e:84:45:cb:75:10:0b:96:c2:a5:6e:
a4:a4:5a:9d:1c:48:c0:6f:a1:4e:af:12:3a:ff:63:
c3:21:41:80:25:a7:a9:68:bd:0e:97:6b:62:01:12:
36:36:93:71:3c:88:41:e9:ea:76:aa:fd:80:ef:97:
cf:48:ef:a5:7b:75:1e:31:04:3e:03:44:3c:1c:84:
4e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:97:0E:50:99:E1:12:BB:2B:34:42:55:8D:44:99:25:5B:B8:E1:3B
X509v3 Authority Key Identifier:
keyid:D9:77:12:09:37:50:0E:B4:66:96:42:89:62:E5:10:E0:2C:34:8E:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/pJcOUJnhErsrNEJVjUSZJVu44Ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.228.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:85:cc:9d:10:ec:a0:60:f1:a6:38:4b:fa:be:39:cd:2b:07:
ae:41:08:a0:55:b6:a5:83:0e:89:65:b6:fe:0b:2f:2e:74:68:
8a:5d:3d:4a:bc:ae:16:35:77:ac:62:e1:88:99:0c:ad:ac:23:
f4:90:7c:22:cf:7e:82:be:11:36:a9:e5:e7:7a:da:6a:dc:26:
8a:40:e5:6e:23:c8:0a:a0:be:b7:c2:a6:df:d0:4d:d4:eb:42:
22:57:c8:5a:72:4b:df:a9:ac:e5:b0:44:6f:a8:f6:06:84:5f:
c6:fd:96:ec:15:14:22:76:cc:d8:a8:72:59:e8:88:b0:f3:aa:
1c:d9:87:57:f2:72:76:05:93:9a:b3:55:8e:be:48:72:c5:bc:
0d:d4:ac:4a:65:6d:34:44:2f:b2:c1:39:4e:9c:fb:e3:5b:71:
85:8d:70:3c:20:1e:b3:52:99:32:84:9f:d3:fb:a4:71:a5:2a:
36:bc:fc:bf:3a:d3:92:5b:6f:59:89:87:1b:48:fa:d9:36:da:
6d:ec:e7:80:e8:4d:55:9b:1f:d3:2f:8c:bb:7f:65:91:47:74:
e8:4f:75:09:e2:78:87:ca:8a:a4:1a:0d:f3:06:26:6d:fc:03:
b3:52:80:5b:0e:6a:25:14:be:f4:74:3c:5d:72:d4:e3:4a:58:
3a:c2:22:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 08:18:03 2025 by rpki-client