Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/846526-74f5-4b97-a574-273e868cedf0/1/m7WVksHw3Ixd2jI65-4A4lzAys8.roa
File: m7WVksHw3Ixd2jI65-4A4lzAys8.roa (raw, json)
Hash identifier: Gnk2eTVLgaWqjWxcvQ2SB3VaALDH/ykUg1CXP4Z4U54=
Subject key identifier: 9B:B5:95:92:C1:F0:DC:8C:5D:DA:32:3A:E7:EE:00:E2:5C:C0:CA:CF
Certificate issuer: /CN=1055eae30d10faf1d99ebf2cfdfd662ce740f839
Certificate serial: 0B473337
Authority key identifier: 10:55:EA:E3:0D:10:FA:F1:D9:9E:BF:2C:FD:FD:66:2C:E7:40:F8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFXq4w0Q-vHZnr8s_f1mLOdA-Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/846526-74f5-4b97-a574-273e868cedf0/1/m7WVksHw3Ixd2jI65-4A4lzAys8.roa
Signing time: Sat 01 Jan 2022 10:04:04 +0000
ROA not before: Sat 01 Jan 2022 10:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198512
IP address blocks: 91.235.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189215543 (0xb473337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1055eae30d10faf1d99ebf2cfdfd662ce740f839
Validity
Not Before: Jan 1 10:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bb59592c1f0dc8c5dda323ae7ee00e25cc0cacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:80:87:24:10:3e:d5:a3:c9:6f:c3:f1:b6:c6:
8a:24:98:cd:bc:42:fa:fe:50:e0:27:49:d5:df:37:
4d:91:b4:a6:22:07:6c:92:f1:b7:1b:15:e7:9d:f5:
86:59:4b:dc:73:06:b0:72:4d:54:0f:78:99:fb:b1:
fa:52:2d:9e:a2:9a:ad:62:d9:6c:c4:1a:b5:59:c4:
7f:c8:5c:6c:fb:7f:f9:7c:75:bd:a2:1c:ae:77:49:
cc:e0:eb:63:7f:c3:02:2c:41:de:48:4c:ca:9b:3d:
6c:7f:ae:6c:b1:b4:bf:84:cf:01:b0:94:17:c6:ac:
97:21:57:2c:c4:5c:78:0e:0d:e0:64:39:b0:69:9e:
dd:45:6d:d5:ec:3a:e2:04:59:b3:0f:b9:58:65:67:
b7:60:8f:80:b7:7e:0a:89:88:49:0e:42:65:90:e5:
6a:b4:be:66:36:33:58:df:96:fc:e0:68:be:4c:28:
01:c2:36:1d:40:8a:8f:1f:9b:4e:25:fc:95:49:31:
c9:7c:6f:c7:a4:8b:bb:84:45:37:79:0d:ac:90:15:
a8:71:23:ce:30:9a:34:69:ad:99:8b:ba:6e:d2:83:
ee:b5:c5:c6:4f:0e:bb:df:f1:45:d2:1b:aa:fe:44:
08:23:ef:9a:d1:c9:48:89:39:64:24:5a:06:5a:a4:
d1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B5:95:92:C1:F0:DC:8C:5D:DA:32:3A:E7:EE:00:E2:5C:C0:CA:CF
X509v3 Authority Key Identifier:
keyid:10:55:EA:E3:0D:10:FA:F1:D9:9E:BF:2C:FD:FD:66:2C:E7:40:F8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFXq4w0Q-vHZnr8s_f1mLOdA-Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/846526-74f5-4b97-a574-273e868cedf0/1/m7WVksHw3Ixd2jI65-4A4lzAys8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/846526-74f5-4b97-a574-273e868cedf0/1/EFXq4w0Q-vHZnr8s_f1mLOdA-Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.243.0/24
Signature Algorithm: sha256WithRSAEncryption
30:b9:7f:ac:28:53:dc:6a:69:1e:2d:0d:e6:ad:5c:71:36:a9:
15:2c:39:9b:59:e5:5e:29:ee:51:ec:13:5f:ae:bd:b1:91:e2:
c8:aa:7c:ad:8f:6c:cb:60:a3:2b:ba:46:34:89:7e:88:99:37:
f2:75:7e:05:81:a8:fc:ed:12:4a:e2:28:c6:7c:7a:7f:3d:8e:
da:0d:7e:51:77:34:26:5e:86:a7:45:e5:20:23:e2:1c:cb:00:
a0:ef:5c:a3:43:35:d8:09:87:63:8d:35:c2:da:3d:6b:3c:7c:
52:d8:f4:d8:50:18:0d:22:83:3a:e2:04:dd:d1:b7:0e:61:25:
fd:f4:2e:8d:e8:c2:5f:d1:8f:38:6b:7f:4c:67:3d:98:f4:d9:
5b:f9:f9:98:44:4d:34:bf:44:fc:90:bf:41:ac:56:d7:6e:de:
7b:19:f0:0c:04:85:f7:58:b0:0e:77:83:50:c7:68:5e:58:b0:
e8:c2:4f:76:21:be:75:a7:c4:78:f3:8f:43:e1:9c:22:e5:ac:
c2:d3:2e:74:f7:6e:a2:01:3a:e8:83:a3:d9:24:54:a9:e3:54:
ce:e3:c0:00:3a:82:f1:2f:56:7e:96:e6:ec:5d:7f:e1:f8:d6:
92:03:fb:19:20:81:fd:3d:5b:41:3a:2c:5b:6b:1d:78:90:e6:
0b:49:8d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:49 2025 by rpki-client