Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/EET5ptSrRs2deP-xcizviyS29jQ.roa
File: EET5ptSrRs2deP-xcizviyS29jQ.roa (raw, json)
Hash identifier: B8a/fRoAWUZxeWolfw5jpBQ3NonmeCHyeIOrQpeUFL8=
Subject key identifier: 10:44:F9:A6:D4:AB:46:CD:9D:78:FF:B1:72:2C:EF:8B:24:B6:F6:34
Certificate issuer: /CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Certificate serial: 01856F301C55399E9FF7F7061FB3926D6638
Authority key identifier: AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/EET5ptSrRs2deP-xcizviyS29jQ.roa
Signing time: Sun 01 Jan 2023 21:15:01 +0000
ROA not before: Sun 01 Jan 2023 21:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43528
IP address blocks: 91.195.34.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:1c:55:39:9e:9f:f7:f7:06:1f:b3:92:6d:66:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Validity
Not Before: Jan 1 21:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1044f9a6d4ab46cd9d78ffb1722cef8b24b6f634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:31:1b:12:cb:35:ed:d7:6f:00:2b:a2:eb:61:
5e:3e:be:92:bb:2d:b5:58:7f:fd:56:a8:76:9e:cb:
16:fd:8a:1d:b9:79:ad:4d:37:b7:39:c6:fc:a2:93:
de:9a:3c:c4:ef:82:c9:29:88:6a:31:b9:ba:81:3c:
0b:6c:45:7e:b0:56:f5:e8:c6:33:d1:c5:21:a1:fd:
f9:98:2a:5e:07:c0:06:e1:64:37:63:77:18:bc:7f:
b0:f4:15:1d:78:b2:64:c0:67:bf:c0:1d:17:be:19:
2a:c2:c1:f2:06:f7:56:99:52:fa:8f:46:f6:a9:49:
0d:90:15:91:af:7c:78:35:a6:f1:4d:65:36:e9:74:
e3:92:c2:47:1d:2b:0f:4b:d9:57:e1:86:89:85:70:
2a:92:a4:5c:9c:23:ef:1d:17:5e:9d:69:89:8c:db:
3b:a4:03:29:5e:f3:b1:1e:10:de:35:0c:f4:76:51:
65:36:ad:c4:d3:ee:30:7d:af:db:4e:d8:bf:ca:ee:
fe:bb:5c:e2:c5:27:7f:65:e1:e6:6a:bb:37:df:34:
a0:ab:a8:93:c3:93:f5:62:70:19:41:ab:6e:68:fe:
32:9c:c3:0a:ab:6b:b3:13:95:66:6a:c6:ef:b4:39:
06:06:8a:cf:ac:be:95:f1:ea:d9:0c:2d:3c:37:15:
9b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:44:F9:A6:D4:AB:46:CD:9D:78:FF:B1:72:2C:EF:8B:24:B6:F6:34
X509v3 Authority Key Identifier:
keyid:AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/EET5ptSrRs2deP-xcizviyS29jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/qqthEeAEwqBE8Wi40oJzz2dE86g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.34.0/23
Signature Algorithm: sha256WithRSAEncryption
50:3c:00:0e:e1:85:99:99:2c:af:30:b6:fe:6a:d0:12:bb:89:
1b:24:b9:fa:70:57:45:ad:4f:d5:1a:67:b6:66:e1:f4:0b:8b:
a7:9c:18:50:12:4d:5a:4c:e1:d1:2a:e0:19:20:ef:01:57:de:
56:86:3f:17:55:62:fe:f5:4c:a8:68:f7:46:24:f7:18:42:50:
01:d6:0c:e9:bc:c0:88:b6:6a:f9:b6:b1:15:d5:48:1b:02:1a:
9d:e8:aa:ae:72:fb:65:5a:c8:b9:e5:b8:9c:ae:3a:e0:8d:04:
95:25:d4:d7:6a:7d:9f:16:14:dd:40:04:e8:93:74:1b:de:f7:
2a:87:8c:7d:1d:c7:3e:ff:66:62:89:7c:8f:37:df:33:d5:04:
79:f9:dd:6f:70:e2:1c:83:9e:c6:53:07:97:50:41:21:35:07:
77:7c:57:ef:89:d5:8c:b3:13:7c:b0:6a:dc:a5:d2:d3:d4:78:
7b:cc:5f:8f:e8:1b:fd:ec:d1:fa:cc:e1:5d:4b:e6:ea:c1:87:
3d:f9:36:f1:33:e7:6e:be:7b:0e:b1:f4:b4:a7:7f:ee:23:42:
31:4e:af:3d:66:f0:f1:f2:90:1f:ad:9f:56:43:72:0b:89:99:
8f:51:7e:60:e6:b5:f9:c5:c5:b1:bf:e6:32:16:ae:30:1b:5f:
3d:61:dd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:54 2025 by rpki-client