Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/FUFwG7xgKv97bBrTSWQROCGKTS8.roa
File: FUFwG7xgKv97bBrTSWQROCGKTS8.roa (raw, json)
Hash identifier: qUpb+aApd0RYYP5YPlxUV3MokqR3xGG2NlGd+k88pRM=
Subject key identifier: 15:41:70:1B:BC:60:2A:FF:7B:6C:1A:D3:49:64:11:38:21:8A:4D:2F
Certificate issuer: /CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Certificate serial: 05082849
Authority key identifier: 2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/FUFwG7xgKv97bBrTSWQROCGKTS8.roa
Signing time: Sat 01 Jan 2022 08:56:45 +0000
ROA not before: Sat 01 Jan 2022 08:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 91.198.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84420681 (0x5082849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Validity
Not Before: Jan 1 08:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1541701bbc602aff7b6c1ad349641138218a4d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8b:7d:26:20:0f:fc:d5:14:26:2b:53:bc:f5:
79:0e:ce:c3:89:a5:11:3c:8d:50:5f:bf:e7:32:cf:
e5:8c:82:12:f9:f9:e1:d8:f1:41:7b:af:ca:95:ff:
39:34:92:5e:19:6a:55:84:a2:34:b4:05:ec:03:62:
7a:03:be:ba:51:2a:d4:af:26:fb:50:78:a3:68:60:
b7:14:c6:6d:4c:61:40:c5:20:92:23:43:f1:ce:a8:
0c:47:b7:79:ff:81:55:7c:2d:2a:21:b3:20:dc:0c:
8e:17:a5:6a:6e:2a:c2:47:c3:e0:02:7c:e8:15:99:
7a:d4:e6:65:6e:1e:29:fb:42:44:5c:a6:98:ba:ff:
b2:c0:bd:30:79:5e:db:40:6f:da:77:98:51:4f:0e:
fb:7a:c9:d4:52:90:66:0b:8c:05:8d:33:94:c9:96:
9a:41:57:05:ef:c9:41:bc:c2:b7:ef:e6:da:39:7a:
a0:45:a8:09:ef:14:bf:f4:7b:70:b3:81:10:98:f7:
11:1d:56:01:ec:37:fb:a1:a0:36:04:3f:39:48:94:
39:51:85:f8:ce:5b:43:67:65:a9:f1:ec:3c:b0:08:
07:80:60:5b:bc:7f:da:1f:7f:35:f9:5b:5c:7b:28:
f6:b6:b4:72:7f:8e:45:59:ec:07:b7:d5:0e:3e:50:
ee:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:41:70:1B:BC:60:2A:FF:7B:6C:1A:D3:49:64:11:38:21:8A:4D:2F
X509v3 Authority Key Identifier:
keyid:2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/FUFwG7xgKv97bBrTSWQROCGKTS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:55:01:16:e5:24:a4:3d:4e:09:ae:1c:44:5c:8c:76:04:e3:
dc:6d:72:ec:d9:bb:12:d1:0a:da:7e:75:52:ea:78:a5:a7:cb:
70:10:24:94:fb:15:7f:8c:f9:ce:71:07:a2:c9:18:25:53:36:
c2:6b:80:db:69:ad:fd:28:53:24:bf:0b:83:36:cc:d6:c1:65:
10:b1:2f:49:22:02:4f:03:7e:cf:f1:c8:cd:88:b0:f4:b7:13:
36:0b:e1:17:ff:af:9f:13:e4:d1:04:7f:d1:aa:7a:52:ca:3f:
9e:d9:b0:b3:14:38:52:02:c4:11:9e:3a:f1:fb:42:f3:b2:29:
fe:80:02:13:4e:18:c2:43:f3:86:52:ff:83:03:5a:85:79:ea:
36:88:c4:25:a8:c0:b7:f4:be:85:07:4a:2a:e4:a5:73:7e:6f:
96:60:2e:ba:6a:a0:b0:c6:d2:fe:06:8a:fe:89:c0:1a:b6:ef:
bf:08:6e:27:c6:29:b3:a0:a0:44:7d:ee:f6:56:5e:98:ee:b4:
63:d7:f5:1f:b2:32:8b:d6:ed:75:19:e2:5e:85:6b:6e:b0:23:
12:c5:28:ca:87:95:5e:8e:68:41:ce:5e:be:4c:73:50:8b:7a:
b0:17:10:fb:1e:0e:28:4e:99:e8:f3:d2:95:6d:46:ef:4c:06:
5c:8b:24:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:08:30 2025 by rpki-client