Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83f818-19c0-4702-83e5-d95636a7a664/1/8Lc3L10uL54SYysYcCnqQiEiuKo.roa
File: 8Lc3L10uL54SYysYcCnqQiEiuKo.roa (raw, json)
Hash identifier: GePIf35CvoqCJIitIzi+CClImVX/6VJdkQhIKIEnd50=
Subject key identifier: F0:B7:37:2F:5D:2E:2F:9E:12:63:2B:18:70:29:EA:42:21:22:B8:AA
Certificate issuer: /CN=5ad8a44dad315f21ea992fc6e10482c41ecdfcf5
Certificate serial: 018571FA2179B28E7ED5BDFC065FAC8495A9
Authority key identifier: 5A:D8:A4:4D:AD:31:5F:21:EA:99:2F:C6:E1:04:82:C4:1E:CD:FC:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtikTa0xXyHqmS_G4QSCxB7N_PU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83f818-19c0-4702-83e5-d95636a7a664/1/8Lc3L10uL54SYysYcCnqQiEiuKo.roa
Signing time: Mon 02 Jan 2023 10:14:55 +0000
ROA not before: Mon 02 Jan 2023 10:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62313
IP address blocks: 91.233.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:21:79:b2:8e:7e:d5:bd:fc:06:5f:ac:84:95:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ad8a44dad315f21ea992fc6e10482c41ecdfcf5
Validity
Not Before: Jan 2 10:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0b7372f5d2e2f9e12632b187029ea422122b8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:71:6f:2e:71:49:cd:52:20:d7:1f:93:c8:dd:
64:5c:f2:de:b1:b3:44:02:81:51:55:03:d8:51:fe:
85:1c:e5:7e:5a:db:de:ff:96:dc:fd:9f:ea:00:ff:
21:2e:e8:6d:00:a9:24:40:2c:ac:cd:62:1e:78:e9:
6e:7e:d6:53:cc:69:7e:00:d8:25:70:88:42:8b:14:
94:cf:5d:d2:8e:81:a2:18:90:5e:95:21:05:64:bf:
75:d8:72:dc:e8:d6:4a:06:be:52:ee:aa:36:ba:1a:
e6:49:89:2d:13:05:b2:bd:23:fa:78:51:b4:ac:6a:
d5:ad:00:c5:52:13:7b:50:1a:de:39:c5:92:d7:07:
c3:20:d2:54:fc:99:be:80:45:e4:08:60:a6:b3:ec:
46:4f:38:c5:51:fd:71:d9:a9:cc:eb:63:ec:be:ea:
91:07:2f:71:38:12:24:c8:b6:1a:80:ea:47:5a:ba:
01:39:91:72:fd:a6:cb:4a:0e:61:de:5e:ea:f6:1d:
93:3d:8a:51:48:46:59:de:ec:2a:47:cd:8c:fd:8b:
7f:05:5a:eb:bd:9c:24:be:37:b0:29:3b:5c:f9:aa:
63:d1:3c:a5:c7:4e:76:d4:64:19:49:7a:4d:53:22:
0f:0d:9a:42:a4:85:28:a9:dc:a2:e4:9f:75:fb:0d:
e7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B7:37:2F:5D:2E:2F:9E:12:63:2B:18:70:29:EA:42:21:22:B8:AA
X509v3 Authority Key Identifier:
keyid:5A:D8:A4:4D:AD:31:5F:21:EA:99:2F:C6:E1:04:82:C4:1E:CD:FC:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtikTa0xXyHqmS_G4QSCxB7N_PU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83f818-19c0-4702-83e5-d95636a7a664/1/8Lc3L10uL54SYysYcCnqQiEiuKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83f818-19c0-4702-83e5-d95636a7a664/1/WtikTa0xXyHqmS_G4QSCxB7N_PU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.35.0/24
Signature Algorithm: sha256WithRSAEncryption
96:52:99:22:9f:81:07:74:bd:06:a5:ba:c8:cf:4f:8f:10:6c:
9d:4b:6d:3e:c7:fb:4e:14:5b:e7:e5:d4:31:ec:e7:7b:f0:33:
30:19:b2:d6:f7:3a:7d:8a:36:3c:7b:2d:46:58:1d:19:82:25:
bd:6e:cd:bb:71:29:98:5c:17:4d:f2:84:55:b7:af:ed:08:76:
17:f2:fa:2e:a4:0a:32:35:52:19:46:78:e5:d1:ea:b9:26:2b:
83:de:ce:45:00:fa:b8:f3:e7:95:d4:b0:20:e5:da:a4:a5:cb:
b5:c4:1b:d6:fb:87:fd:19:26:29:0a:0d:11:e4:70:c3:97:5a:
cd:32:8f:9c:e0:d1:94:c3:8c:0e:32:1f:4b:ca:bb:71:cd:f9:
40:64:28:c7:96:76:f2:e2:22:6f:b4:2f:20:01:c0:1c:c7:d9:
6a:b6:70:21:08:fa:70:99:8a:d8:03:d8:dd:33:2f:6e:cb:c3:
16:12:a1:2b:eb:ac:70:e1:bc:a9:71:ad:7b:b6:65:5d:d3:b7:
4a:5d:9d:b2:04:c1:e4:58:62:45:0d:9f:e7:a3:63:d0:5e:ca:
ca:59:2a:68:b8:47:7a:5b:78:18:97:c3:b8:82:3f:0d:64:47:
e5:b1:08:ea:99:e3:5d:ae:37:9b:47:d0:29:e1:dd:f8:d1:5b:
60:e4:ab:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:39 2025 by rpki-client