Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/bVjiYpznEWivM5yl_-dHjNEPol0.roa
File: bVjiYpznEWivM5yl_-dHjNEPol0.roa (raw, json)
Hash identifier: rGF/hJK/PHlL2fYZADDinX7JNYNVdjtmGv2KwutOhl8=
Subject key identifier: 6D:58:E2:62:9C:E7:11:68:AF:33:9C:A5:FF:E7:47:8C:D1:0F:A2:5D
Certificate issuer: /CN=c97dc6d8df5d084e923063488d37d3ae0114777b
Certificate serial: 0852CA7E
Authority key identifier: C9:7D:C6:D8:DF:5D:08:4E:92:30:63:48:8D:37:D3:AE:01:14:77:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yX3G2N9dCE6SMGNIjTfTrgEUd3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/bVjiYpznEWivM5yl_-dHjNEPol0.roa
Signing time: Mon 20 Jun 2022 07:53:44 +0000
ROA not before: Mon 20 Jun 2022 07:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57591
IP address blocks: 91.229.130.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139643518 (0x852ca7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c97dc6d8df5d084e923063488d37d3ae0114777b
Validity
Not Before: Jun 20 07:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d58e2629ce71168af339ca5ffe7478cd10fa25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d2:ce:80:68:a7:6d:74:8f:bb:63:60:73:f8:
68:a2:1b:b5:ab:25:9c:87:48:7c:88:5b:b7:90:59:
fd:df:c3:4f:12:de:d4:5e:bd:cd:a0:13:fd:8b:b4:
b9:a1:84:91:a1:95:fb:6f:72:31:6d:bf:8c:b8:ea:
f8:25:f9:f5:ad:35:98:fd:b6:26:fa:d6:f2:7c:34:
42:33:23:2a:aa:10:20:f0:c2:59:98:84:64:c6:6c:
ef:e5:a2:bd:91:8e:71:34:06:c2:75:1b:c5:df:9f:
5d:f2:87:9a:10:3e:2f:f7:02:a8:f3:fe:2a:45:88:
a7:40:29:a4:ea:50:5f:81:98:68:c8:5c:c8:5d:ab:
45:4c:f0:2f:b3:d1:a6:5a:cb:31:f7:b1:d6:42:64:
c7:cb:84:45:a4:49:05:39:39:74:cd:ca:d8:f6:13:
07:66:62:e8:1d:9d:04:d4:02:8d:d5:12:e0:95:c3:
d2:88:16:02:7e:4f:d3:7b:f8:ce:60:fe:8e:43:37:
68:b3:80:b6:28:8d:98:46:af:c8:55:a2:b0:a8:f3:
3f:ad:ba:95:92:1b:5c:71:27:9f:b3:a3:5f:86:b7:
5a:73:a6:e3:32:74:34:59:d2:50:fe:19:82:4f:c3:
25:ea:84:88:2f:5a:35:0c:88:cf:cb:f9:53:06:d7:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:58:E2:62:9C:E7:11:68:AF:33:9C:A5:FF:E7:47:8C:D1:0F:A2:5D
X509v3 Authority Key Identifier:
keyid:C9:7D:C6:D8:DF:5D:08:4E:92:30:63:48:8D:37:D3:AE:01:14:77:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yX3G2N9dCE6SMGNIjTfTrgEUd3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/bVjiYpznEWivM5yl_-dHjNEPol0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/yX3G2N9dCE6SMGNIjTfTrgEUd3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.130.0/23
Signature Algorithm: sha256WithRSAEncryption
00:ba:cb:55:1e:4b:45:0e:50:c3:5a:1b:80:ed:e3:c0:57:38:
57:8d:7c:15:e4:95:7a:85:8d:60:35:1e:37:46:00:f0:7a:42:
da:f5:93:9f:0d:e7:7d:cc:0f:f5:59:a8:e0:41:85:5f:a0:3f:
83:0b:50:40:46:32:5d:d0:a5:01:b3:4b:27:7b:81:b3:d0:a4:
fa:1e:65:c4:c5:f3:0f:73:78:9b:32:3c:fa:24:21:c8:c7:ed:
fc:5c:3e:9e:c5:ce:84:e4:c3:46:2c:11:d1:0d:9a:3e:b4:c8:
79:ed:33:22:3f:59:60:9a:1f:06:a5:19:f5:07:6b:f1:ba:e4:
cd:9f:b9:2a:cc:86:db:42:ed:5b:85:26:cd:c1:fd:9e:c9:51:
5e:ad:fd:f4:2b:da:b2:60:da:d1:12:fa:10:f3:ca:49:15:05:
8b:4d:b3:78:58:a1:05:91:ef:68:e1:35:1a:22:8e:06:7c:3d:
b8:9a:88:4d:d0:5f:49:c4:88:03:29:1c:9c:62:a0:c4:72:94:
69:23:57:4b:70:2b:67:ed:44:b0:de:c4:18:48:90:c1:e4:71:
b4:1b:39:a6:b9:88:c1:73:19:92:24:c6:78:37:f2:2a:54:13:
5d:c8:b3:88:2d:81:1a:8c:1a:ae:51:6b:94:af:ae:df:79:e9:
25:d2:93:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:28:39 2025 by rpki-client