Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/ffd1ed-69b1-4932-8fd0-77f9ed1195d5/1/R6NthKqfwYOQT51WlpD4drpU5SM.roa
File: R6NthKqfwYOQT51WlpD4drpU5SM.roa (raw, json)
Hash identifier: TFxzSEeJCMd4eMUPrRftUDCLSfagB09FGwOHSMIokCQ=
Subject key identifier: 47:A3:6D:84:AA:9F:C1:83:90:4F:9D:56:96:90:F8:76:BA:54:E5:23
Certificate issuer: /CN=6081fcf9eb70ab0e1fdcac09c7f9bb5e014c9dbd
Certificate serial: 01831B9D9039F941EF7760660653F83058C0
Authority key identifier: 60:81:FC:F9:EB:70:AB:0E:1F:DC:AC:09:C7:F9:BB:5E:01:4C:9D:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIH8-etwqw4f3KwJx_m7XgFMnb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/ffd1ed-69b1-4932-8fd0-77f9ed1195d5/1/R6NthKqfwYOQT51WlpD4drpU5SM.roa
Signing time: Thu 08 Sep 2022 05:40:54 +0000
ROA not before: Thu 08 Sep 2022 05:40:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59500
IP address blocks: 91.200.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1b:9d:90:39:f9:41:ef:77:60:66:06:53:f8:30:58:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6081fcf9eb70ab0e1fdcac09c7f9bb5e014c9dbd
Validity
Not Before: Sep 8 05:40:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47a36d84aa9fc183904f9d569690f876ba54e523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:40:16:0d:4f:16:76:0e:ed:65:d3:c2:25:cb:
28:a1:78:4e:68:36:27:36:9e:23:2d:f0:81:8b:47:
c9:46:81:dc:68:6c:e7:30:53:37:d3:54:e2:33:ff:
1c:e1:17:ef:6d:bd:6a:2e:79:52:ce:48:aa:0a:88:
d1:e4:92:b0:10:8e:cb:40:78:b4:ff:f4:9b:99:e7:
22:7b:b7:ee:53:ba:b1:a6:cb:1c:09:3c:74:17:78:
5f:c9:a2:aa:9d:2e:4b:04:56:1e:d6:f8:81:e3:0a:
0a:86:63:2b:0f:92:b5:a7:b5:a1:ad:18:73:ad:6d:
1f:56:54:60:83:da:8d:fe:5d:5e:ab:ec:a3:31:ff:
00:c0:0d:d4:eb:67:38:8e:06:ff:8f:eb:c1:a9:94:
c6:7a:ef:92:d9:09:a5:bf:0c:c4:fd:02:7a:f5:95:
48:18:7f:84:3f:40:fa:23:fd:78:a4:f1:0b:01:b5:
dc:b5:2d:39:fa:5b:e3:bd:d8:13:b6:f6:42:8e:37:
d4:69:f7:22:46:33:27:5a:01:13:3f:df:ef:53:89:
d1:b4:6c:e1:11:be:f4:ed:27:91:45:db:0f:68:97:
e9:d7:ba:a7:f8:de:e1:43:c9:97:57:e7:3a:2b:66:
a4:96:33:6f:18:c9:dd:49:df:af:a8:40:c9:05:1e:
5d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A3:6D:84:AA:9F:C1:83:90:4F:9D:56:96:90:F8:76:BA:54:E5:23
X509v3 Authority Key Identifier:
keyid:60:81:FC:F9:EB:70:AB:0E:1F:DC:AC:09:C7:F9:BB:5E:01:4C:9D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIH8-etwqw4f3KwJx_m7XgFMnb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ffd1ed-69b1-4932-8fd0-77f9ed1195d5/1/R6NthKqfwYOQT51WlpD4drpU5SM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ffd1ed-69b1-4932-8fd0-77f9ed1195d5/1/YIH8-etwqw4f3KwJx_m7XgFMnb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.60.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ee:38:c3:45:27:b3:ef:b0:2d:d5:aa:5c:87:39:ca:1c:d7:
d6:6b:a9:43:98:9a:9c:2e:64:08:e5:f3:e7:97:ee:0b:9a:cb:
50:87:e9:4f:4a:30:75:25:7e:7e:e1:9d:42:b0:6c:b2:f6:61:
a0:09:e1:f9:8e:38:11:71:f3:c1:22:56:77:3e:cd:31:e5:ed:
91:f4:0d:77:79:6d:eb:65:a5:a2:99:54:20:17:94:01:38:79:
c4:2d:4d:83:f9:0f:46:44:09:b1:3a:8b:95:03:9b:f6:e3:a8:
cd:ce:5c:6e:c4:ea:e3:aa:8d:f2:e3:62:61:9f:5d:0a:a0:ef:
7d:f1:84:e2:54:24:f5:42:8f:4c:5d:1d:50:da:82:c7:a3:e8:
fd:b9:11:c1:8b:f6:93:d9:2e:94:f1:b3:53:d7:fa:19:8c:82:
7e:81:d5:8a:8f:c0:35:5a:19:4b:15:a8:bb:5e:f4:96:c6:8b:
d1:44:bb:80:db:19:0d:67:22:05:97:bd:75:87:d4:8c:b7:3e:
53:29:1e:b4:d1:f5:b3:99:4a:da:3f:ce:bd:7b:04:a9:83:9c:
f6:b6:95:15:ec:4c:8d:bb:fb:1a:72:d8:07:fb:88:87:14:06:
d3:38:35:6b:7e:01:85:82:69:90:ff:34:c4:0d:16:87:e7:0b:
05:7f:98:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:06 2025 by rpki-client