Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/KlK0ukYQC_6Mdnjl6IfZbDLhu_g.roa
File: KlK0ukYQC_6Mdnjl6IfZbDLhu_g.roa (raw, json)
Hash identifier: RnoixpUz3veg0dggq0m21TDI38lHqFxdnjUyto/usag=
Subject key identifier: 2A:52:B4:BA:46:10:0B:FE:8C:76:78:E5:E8:87:D9:6C:32:E1:BB:F8
Certificate issuer: /CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Certificate serial: 022E8F31
Authority key identifier: B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/KlK0ukYQC_6Mdnjl6IfZbDLhu_g.roa
Signing time: Sat 01 Jan 2022 05:01:08 +0000
ROA not before: Sat 01 Jan 2022 05:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35297
IP address blocks: 91.184.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36605745 (0x22e8f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Validity
Not Before: Jan 1 05:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a52b4ba46100bfe8c7678e5e887d96c32e1bbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:02:1b:c7:2d:3b:c2:9f:81:e6:5d:5d:7e:
ce:f3:11:1c:c1:8a:5e:00:8f:12:c8:d0:6a:3c:58:
a7:59:a4:63:50:bf:ab:90:17:34:3c:fe:d7:da:3b:
5c:22:e3:6a:65:3d:10:0f:da:20:83:a1:27:00:bf:
57:a6:ab:4d:d7:83:59:15:a1:63:6c:9e:82:51:04:
62:84:b1:e0:62:ec:09:1f:00:39:4a:27:07:08:e4:
47:7e:7c:f9:9a:ce:bd:5a:e6:6d:19:7d:07:d2:32:
d0:43:3c:b7:28:0d:20:c6:4b:89:b6:98:99:23:91:
00:88:ee:55:24:46:ba:9b:38:20:6d:40:91:fd:3e:
d1:f7:3c:e3:c4:c6:a2:1d:57:ff:28:df:62:95:bf:
47:e9:5e:f5:4a:8b:97:38:cc:61:26:03:e5:47:05:
dd:82:61:04:7b:08:b0:ef:10:4c:51:7d:bd:3d:ef:
59:2a:68:44:45:81:ce:4a:9c:b7:78:f2:59:be:f5:
88:bb:cf:a1:ad:6c:ec:ed:f9:77:d7:20:5b:67:96:
2b:b3:4a:2a:23:38:f8:d8:8f:db:d3:82:2d:9a:5c:
66:9d:b2:22:bd:fc:f9:c3:27:ee:ce:e4:b6:a9:8b:
47:58:3b:74:48:a2:46:f5:53:9b:0c:41:a9:d5:10:
be:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:52:B4:BA:46:10:0B:FE:8C:76:78:E5:E8:87:D9:6C:32:E1:BB:F8
X509v3 Authority Key Identifier:
keyid:B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/KlK0ukYQC_6Mdnjl6IfZbDLhu_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.184.224.0/22
Signature Algorithm: sha256WithRSAEncryption
45:48:19:44:c0:76:10:3a:04:8f:76:46:6b:54:83:8e:3a:a7:
47:15:f0:de:a0:03:c6:7d:1c:e5:1d:d4:9b:c0:c4:99:24:fa:
24:ed:a1:a0:7f:39:87:bf:b6:7a:e4:ba:63:41:6b:17:03:60:
ce:89:02:2f:9e:9e:60:fb:e1:94:3d:6f:06:5f:68:7c:71:4e:
76:b4:df:3c:25:68:d9:2f:0a:6a:46:bb:f7:00:7c:99:08:fc:
ec:73:28:56:97:e3:06:4d:85:7f:37:ec:ef:9f:48:27:2a:dd:
ac:dc:ec:3c:08:fa:c3:3a:b1:d2:65:a1:4d:7a:a3:d6:c6:3a:
9c:6b:39:42:ac:0d:49:ca:6f:a2:94:d7:8d:3a:fb:19:20:c7:
f9:62:ee:fa:97:6d:90:ed:fc:64:65:88:a1:27:48:10:07:c4:
29:ca:26:ee:13:88:c4:0b:5d:9a:3d:99:97:8d:8c:01:03:cb:
b0:7b:90:6b:28:f0:10:23:a3:9b:17:15:4d:57:4c:c4:e0:6a:
1a:e1:fe:67:9b:34:0d:56:c9:f1:a8:e0:1f:5b:0e:62:63:84:
76:f5:d3:39:1c:b6:fe:ac:c3:4a:19:49:c4:db:8e:e2:e1:f3:
a7:44:47:8d:be:60:55:1e:31:82:f7:76:8c:ec:8d:43:6a:16:
83:6a:55:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:07 2025 by rpki-client