Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/CenWm4EH2_c_-zI7nf7Qmna1ZHg.roa
File: CenWm4EH2_c_-zI7nf7Qmna1ZHg.roa (raw, json)
Hash identifier: jhG95Ld3Hx35H9svyXG9RWPdwXjzWwRSwE16cHooUEY=
Subject key identifier: 09:E9:D6:9B:81:07:DB:F7:3F:FB:32:3B:9D:FE:D0:9A:76:B5:64:78
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 01856EF422AE1D5D4983F768595E0781B52C
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/CenWm4EH2_c_-zI7nf7Qmna1ZHg.roa
Signing time: Sun 01 Jan 2023 20:09:31 +0000
ROA not before: Sun 01 Jan 2023 20:09:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33847
IP address blocks: 91.212.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:22:ae:1d:5d:49:83:f7:68:59:5e:07:81:b5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 20:09:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09e9d69b8107dbf73ffb323b9dfed09a76b56478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:56:92:17:08:f5:42:3c:05:c2:48:a7:89:f6:
cf:8d:b7:d4:1a:9d:b3:09:31:1a:11:00:53:8f:a4:
54:67:a2:38:2f:73:a9:b5:07:db:61:5c:4d:6a:8d:
82:d4:f9:eb:6b:b3:01:f0:48:f3:45:bf:ab:0e:6c:
b7:75:ea:4d:bd:02:77:e3:95:7e:2e:bc:6b:88:3c:
19:a3:9e:fb:bf:1c:ef:8b:1f:58:1b:b7:af:c5:88:
ea:b7:4d:fd:8b:b1:18:36:c5:aa:8b:f1:48:fa:00:
02:1e:c7:6f:ea:05:da:1e:89:1d:50:27:1d:01:ab:
16:9a:e9:f9:a7:30:a1:2f:61:1c:08:0f:5a:cb:f3:
3e:65:d3:4a:26:6b:7d:31:9c:73:83:ba:f7:db:1a:
37:23:df:6e:ce:b9:c8:f5:9d:b1:b2:cc:72:56:ca:
78:a6:11:e8:73:36:22:6f:10:4f:d5:05:e8:b6:c1:
49:eb:60:32:46:32:be:86:0a:07:94:d3:6e:cb:13:
6b:26:b5:a8:96:43:e0:dc:13:20:6b:41:f7:a2:85:
f2:00:2f:5b:45:5f:90:37:43:c3:43:25:93:70:8d:
58:f4:df:cb:89:33:79:ed:b9:1d:74:28:88:ab:bb:
52:2c:c4:b3:0c:ba:eb:5f:d3:68:cd:69:8b:10:ea:
8c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E9:D6:9B:81:07:DB:F7:3F:FB:32:3B:9D:FE:D0:9A:76:B5:64:78
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/CenWm4EH2_c_-zI7nf7Qmna1ZHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.53.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:a6:c9:04:9a:e6:a8:76:cd:14:33:88:85:5f:97:1a:95:71:
30:c6:55:df:e0:f4:7e:dc:a6:1c:34:48:2a:79:62:28:2e:33:
d5:a2:25:69:ae:3b:78:ff:90:7d:e7:be:46:74:c0:63:10:65:
80:1f:14:f9:f9:3f:de:56:90:82:17:0e:96:91:d9:3a:04:49:
ce:f1:26:e7:a5:07:32:03:c6:4b:d4:b9:96:7d:61:5b:a4:43:
db:24:1a:1c:6f:16:0c:e1:e3:d8:80:0b:ec:9c:1b:0e:a0:0a:
5f:f9:98:11:52:8b:97:d8:03:4f:c4:31:8d:e7:19:22:7c:60:
56:d4:c4:23:7a:81:54:c4:53:6a:d5:1a:8f:38:03:34:50:93:
89:6f:4a:77:49:69:0d:7d:9e:e8:35:68:40:8f:76:8d:f2:58:
82:68:3b:80:2d:5b:d5:14:63:28:58:0d:43:c6:41:df:07:07:
52:2b:54:de:bc:ba:52:f6:99:37:c6:6e:f6:c0:1d:a9:5e:de:
7c:d6:1a:63:a5:3d:34:91:d2:d0:82:4e:a8:4c:77:3a:2c:4b:
39:2d:68:2f:b1:ec:37:0f:b6:2e:d1:bb:85:66:1d:56:12:1c:
00:fc:30:a3:6a:0b:8c:1b:e2:6a:99:97:60:ae:31:f3:f4:01:
e3:0e:6f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:18 2025 by rpki-client