Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/_GQazWof6012Czrq3z1dfu3ulcI.roa
File: _GQazWof6012Czrq3z1dfu3ulcI.roa (raw, json)
Hash identifier: Hr4CygqA4RSWyjJMXCtwwL7s/EXsnHK1DXHFPbaG9s8=
Subject key identifier: FC:64:1A:CD:6A:1F:EB:4D:76:0B:3A:EA:DF:3D:5D:7E:ED:EE:95:C2
Certificate issuer: /CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Certificate serial: 03293F45
Authority key identifier: 4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/_GQazWof6012Czrq3z1dfu3ulcI.roa
Signing time: Sat 01 Jan 2022 08:55:27 +0000
ROA not before: Sat 01 Jan 2022 08:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 91.220.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53034821 (0x3293f45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Validity
Not Before: Jan 1 08:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc641acd6a1feb4d760b3aeadf3d5d7eedee95c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:33:c3:66:f1:5e:92:ca:eb:a0:ce:32:9d:
ec:3d:e1:e0:d1:2e:7a:33:e6:bf:aa:f0:81:e7:ef:
96:21:4a:6b:b2:f2:ad:2c:9e:23:9f:09:fd:a9:7e:
5b:22:28:58:de:e1:b6:e6:25:33:1b:67:02:ed:30:
9e:79:d8:07:a1:5f:25:24:2d:9b:41:76:18:a0:82:
02:27:61:95:ca:d7:e0:35:4e:b2:cc:fc:fd:1f:88:
f3:1e:74:8b:02:25:3c:3b:48:10:58:d8:c2:10:df:
3e:b1:07:7f:29:e6:e8:11:3b:e0:fc:09:e0:84:b6:
71:73:28:90:f3:df:98:38:68:16:01:e3:0b:68:e0:
fd:bb:df:89:ab:58:be:9a:da:b9:4a:50:51:a5:87:
f6:a6:f9:78:63:7d:83:a8:63:51:e0:46:f9:85:fd:
8a:36:86:bd:58:60:6f:2e:6e:58:df:09:ca:6a:35:
68:b3:ed:cc:9f:be:4d:15:8d:1b:8c:f8:6d:04:5d:
c8:63:7a:79:76:e0:57:35:f9:15:17:68:bd:34:b3:
92:6d:6f:95:e5:6f:26:82:8a:eb:75:3f:1d:7e:c4:
0f:06:ef:99:05:2a:f9:43:c2:e7:bc:37:a0:b6:e7:
06:0e:7b:2f:1d:d5:fb:7a:22:20:e1:7d:6f:22:fe:
af:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:64:1A:CD:6A:1F:EB:4D:76:0B:3A:EA:DF:3D:5D:7E:ED:EE:95:C2
X509v3 Authority Key Identifier:
keyid:4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/_GQazWof6012Czrq3z1dfu3ulcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/T4R35WnR19YPBGmnzIp_R0YDm7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.50.0/24
Signature Algorithm: sha256WithRSAEncryption
38:6b:cb:98:51:6e:55:4d:21:2a:81:87:9b:d9:80:ea:c9:9c:
a7:cd:43:bc:b5:ac:3a:8e:09:02:5b:fe:d5:e6:83:4c:ae:64:
9d:ad:cb:ad:20:ad:5f:a1:67:4b:fa:4c:d2:42:d1:14:d1:09:
fd:57:5b:99:71:86:54:5b:5f:37:b3:ed:f1:95:30:40:c7:f3:
8b:47:1c:15:c7:04:00:61:92:1b:71:94:5c:4b:af:f8:d9:87:
e5:bd:e2:37:3c:6b:5e:ed:35:3e:8a:2c:78:40:29:44:5d:66:
09:d3:40:38:44:25:07:f5:d3:fc:39:6c:5a:46:16:52:45:b1:
8c:cb:0b:c1:3d:11:9f:7a:58:7a:f7:a8:bc:4c:84:6b:07:0e:
99:85:09:91:20:ae:98:e7:ef:59:f9:6e:6c:67:46:c1:d3:5e:
df:1d:48:f6:81:2a:26:69:e7:38:1f:dc:98:3d:96:21:b9:ff:
6e:6c:41:e8:9b:14:52:0a:1c:4e:11:a7:16:d3:04:3b:12:62:
49:b7:eb:7e:8d:62:b6:aa:80:93:c5:83:80:40:5d:e9:de:3f:
1f:72:07:ae:cf:9c:74:8a:8c:c4:bb:ec:62:b6:dc:15:b8:35:
f6:bd:c3:06:8e:2c:e9:a8:9b:be:8b:f0:ec:34:9a:ea:be:ec:
2a:f4:1d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:14 2025 by rpki-client