Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fa02cb-b378-4fa7-8803-8eaad0b049a7/1/p0VsGGP6X7svDpAswQAogA1Lqm8.roa
File: p0VsGGP6X7svDpAswQAogA1Lqm8.roa (raw, json)
Hash identifier: kDW3l6qfGKcZZe2mXl40TNNLBjkGfLCKFyFXDW7H7OU=
Subject key identifier: A7:45:6C:18:63:FA:5F:BB:2F:0E:90:2C:C1:00:28:80:0D:4B:AA:6F
Certificate issuer: /CN=93c5f10af8bcb5fc6e34a473b4a6cae7ad02d902
Certificate serial: 01856DDD52117FFAD714CDDE66C398362F7F
Authority key identifier: 93:C5:F1:0A:F8:BC:B5:FC:6E:34:A4:73:B4:A6:CA:E7:AD:02:D9:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8XxCvi8tfxuNKRztKbK560C2QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fa02cb-b378-4fa7-8803-8eaad0b049a7/1/p0VsGGP6X7svDpAswQAogA1Lqm8.roa
Signing time: Sun 01 Jan 2023 15:04:59 +0000
ROA not before: Sun 01 Jan 2023 15:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204954
IP address blocks: 91.244.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:52:11:7f:fa:d7:14:cd:de:66:c3:98:36:2f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c5f10af8bcb5fc6e34a473b4a6cae7ad02d902
Validity
Not Before: Jan 1 15:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7456c1863fa5fbb2f0e902cc10028800d4baa6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c6:4d:77:9d:fa:ef:c2:53:3c:d9:e9:6c:db:
be:79:e1:59:b2:38:7b:19:e1:de:fb:5c:31:ce:2b:
36:b3:fa:12:9b:c0:0b:75:f2:cf:f4:1d:d4:b3:f5:
81:4b:02:3b:f2:f5:a4:39:92:2b:0b:af:a9:bf:a4:
a7:3f:e7:29:fe:2d:40:71:3e:73:74:bf:a7:3a:dd:
a5:68:cd:e2:d7:43:15:9a:25:a9:86:ca:70:ec:2f:
fd:5e:dd:03:74:b6:88:2f:16:29:7e:52:e5:cc:ab:
7d:36:0e:f6:a8:49:54:2f:80:13:79:d9:44:7b:ed:
e9:5c:78:49:53:2e:cc:95:d1:be:39:19:a2:a6:e1:
83:1d:d1:6d:04:2b:13:9e:47:5e:56:52:c2:27:86:
93:3c:c0:23:8a:84:58:bf:34:d8:91:c3:6f:67:60:
18:b9:5a:12:68:56:f7:fc:9c:7e:b6:f3:cb:ca:f3:
44:34:e8:9a:bd:60:71:68:ad:d0:8a:6a:be:cb:f6:
47:68:24:3a:a2:b9:e1:be:28:6d:fe:ab:56:ee:8e:
b9:3c:42:07:82:2b:35:15:b9:5d:75:17:1f:d2:8e:
5a:86:d5:47:72:54:1d:4d:96:f8:2e:12:31:0b:f9:
20:42:e2:cd:71:21:29:88:7c:a2:73:a5:f5:e4:3f:
ac:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:45:6C:18:63:FA:5F:BB:2F:0E:90:2C:C1:00:28:80:0D:4B:AA:6F
X509v3 Authority Key Identifier:
keyid:93:C5:F1:0A:F8:BC:B5:FC:6E:34:A4:73:B4:A6:CA:E7:AD:02:D9:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8XxCvi8tfxuNKRztKbK560C2QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa02cb-b378-4fa7-8803-8eaad0b049a7/1/p0VsGGP6X7svDpAswQAogA1Lqm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa02cb-b378-4fa7-8803-8eaad0b049a7/1/k8XxCvi8tfxuNKRztKbK560C2QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.126.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:28:e0:dd:03:9c:65:31:8e:7f:63:10:b0:d7:50:42:91:aa:
37:73:e9:92:d3:04:bb:85:85:2b:c7:3a:df:dc:26:51:0e:75:
d1:1f:0e:44:6b:6f:2b:e4:c3:eb:39:bf:a2:88:fa:c7:60:12:
2f:d6:0a:ed:99:9d:74:90:37:60:5a:19:24:a3:87:c8:0a:cd:
14:56:2f:83:c6:cf:05:cd:ae:cb:40:9d:b2:0c:0d:73:6a:9a:
86:d6:aa:5d:e7:f2:41:a6:aa:1d:1c:ce:25:8a:8b:ca:b9:81:
87:a6:9a:c1:64:66:ab:fb:79:5e:60:a2:20:7f:02:d8:7c:4c:
a7:c0:b7:d9:0b:84:24:fc:e9:e6:65:6a:1c:e1:6f:90:c6:2c:
53:1b:c8:c5:52:7c:b4:ce:d4:5b:60:52:88:4c:31:37:6f:2e:
83:3f:c5:28:45:dd:d1:09:61:77:db:11:c3:2b:ca:bb:96:b8:
13:51:82:06:27:11:c3:a0:60:98:28:b5:03:96:18:a1:8a:5b:
83:18:80:02:ab:66:20:83:42:2f:7b:3a:a7:4e:ed:34:0b:d0:
77:63:ad:2f:a3:25:cb:dd:b8:61:41:6f:20:69:37:ef:f9:59:
cf:90:37:e4:b8:b2:46:1d:1a:f3:2f:49:5e:a2:3e:9e:03:1a:
51:db:f4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:30 2025 by rpki-client