Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/BdV7pp8qBxkMyG5bhN_5cCvWpEc.roa
File: BdV7pp8qBxkMyG5bhN_5cCvWpEc.roa (raw, json)
Hash identifier: bUe0PnQD2sk5NiUHdRSkxR9TlHhhObDvSfTbtkjDrvo=
Subject key identifier: 05:D5:7B:A6:9F:2A:07:19:0C:C8:6E:5B:84:DF:F9:70:2B:D6:A4:47
Certificate issuer: /CN=53b8b4cea94c867d34c2bff9ace7640bff51d06b
Certificate serial: 03ED1793
Authority key identifier: 53:B8:B4:CE:A9:4C:86:7D:34:C2:BF:F9:AC:E7:64:0B:FF:51:D0:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7i0zqlMhn00wr_5rOdkC_9R0Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/BdV7pp8qBxkMyG5bhN_5cCvWpEc.roa
Signing time: Sat 01 Jan 2022 02:59:56 +0000
ROA not before: Sat 01 Jan 2022 02:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57584
IP address blocks: 91.233.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65869715 (0x3ed1793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b8b4cea94c867d34c2bff9ace7640bff51d06b
Validity
Not Before: Jan 1 02:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05d57ba69f2a07190cc86e5b84dff9702bd6a447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:75:70:2a:ab:28:6e:54:c0:d9:e7:6b:40:
db:f5:5c:5a:ca:07:70:c5:d0:cf:1a:d6:ba:b4:4c:
62:e9:95:17:95:83:f0:be:87:73:6e:d5:59:02:55:
a2:e4:dc:c7:c5:6d:eb:a0:61:42:7f:92:3a:d0:83:
6d:d6:b4:9f:7e:45:0f:81:67:0f:e2:b9:69:f5:e8:
88:7b:7c:54:58:f2:3d:79:20:24:d3:87:cc:91:8e:
c1:a6:ac:8c:6e:75:41:1a:2d:11:e2:76:ab:70:44:
37:b7:be:25:33:be:3d:5f:06:87:1f:e8:01:56:ce:
56:fc:50:c4:5c:b5:b3:db:c6:42:e8:34:b1:de:98:
9f:42:b1:59:11:4a:24:91:55:78:76:7e:9e:5e:40:
77:5e:60:37:fa:75:4c:68:9a:27:cc:91:22:4a:5d:
94:33:c9:04:e1:11:73:3f:17:26:24:ae:1b:96:53:
18:e0:81:7d:59:58:03:af:93:91:98:e5:b5:5b:f8:
c3:f4:55:19:9a:4e:61:aa:e7:db:4d:82:ab:45:52:
66:2f:40:6f:b2:f7:a7:b1:46:d6:e2:ef:e0:8e:8f:
e7:98:07:6d:78:ec:ce:58:33:bd:9b:89:08:36:2e:
66:4c:45:c0:6e:4b:73:d4:c6:22:8c:20:cb:35:db:
d3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D5:7B:A6:9F:2A:07:19:0C:C8:6E:5B:84:DF:F9:70:2B:D6:A4:47
X509v3 Authority Key Identifier:
keyid:53:B8:B4:CE:A9:4C:86:7D:34:C2:BF:F9:AC:E7:64:0B:FF:51:D0:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7i0zqlMhn00wr_5rOdkC_9R0Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/BdV7pp8qBxkMyG5bhN_5cCvWpEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/df94ff-de9c-48a8-976d-965f1763782c/1/U7i0zqlMhn00wr_5rOdkC_9R0Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.68.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:1d:ce:5d:f1:cf:5f:0e:da:72:77:1b:34:5a:09:98:77:2d:
52:70:59:0f:ea:de:a7:3c:5b:dd:09:15:81:af:8e:b3:35:a3:
69:5f:9e:a3:f5:cd:dd:4c:1a:f4:71:79:79:7b:05:73:5d:ea:
c4:01:1f:47:da:bc:90:f2:a3:89:bc:82:c9:1d:bc:79:c9:3c:
a9:d5:78:d7:c2:61:aa:8a:65:e1:b6:9e:9b:ee:c8:90:9d:74:
88:2d:16:9d:42:da:3a:9b:c0:a7:74:eb:90:80:96:75:75:70:
5e:d0:3e:89:3a:5c:0c:90:c6:6b:6b:84:30:d7:80:0d:4b:64:
fd:60:5e:84:e4:fc:f1:66:96:0e:62:9f:63:d2:8c:7c:e5:7d:
25:a0:91:f3:9a:85:df:01:e0:c3:ed:d5:7c:a0:51:61:56:cf:
a8:4f:7b:56:2a:b2:cf:f1:16:44:20:a7:21:ca:1b:7b:63:1f:
3c:2a:08:e2:75:60:81:25:4f:ef:49:6f:33:64:14:eb:66:73:
d7:68:bb:5b:bb:13:f6:9c:4d:cc:b1:62:d0:66:a5:98:db:6b:
a2:bb:55:9c:0f:df:cb:d0:1b:ca:d8:69:a4:ac:92:30:76:97:
0e:d4:4b:f7:ee:52:ff:50:08:a0:73:c9:84:a7:64:18:58:3e:
dd:66:ad:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:46:34 2025 by rpki-client