Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/7vSGez09AnNcy0ozLGXCdLP_0Iw.roa
File: 7vSGez09AnNcy0ozLGXCdLP_0Iw.roa (raw, json)
Hash identifier: pb+MDc3V9FbB0LpabbXxkWce0UQHta1ZjFPz/nuxWN4=
Subject key identifier: EE:F4:86:7B:3D:3D:02:73:5C:CB:4A:33:2C:65:C2:74:B3:FF:D0:8C
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 01831724FCBD018FE1E89A32E8A86549FE62
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/7vSGez09AnNcy0ozLGXCdLP_0Iw.roa
Signing time: Wed 07 Sep 2022 08:50:43 +0000
ROA not before: Wed 07 Sep 2022 08:50:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56368
IP address blocks: 91.198.196.0/24 maxlen: 24
2a0f:8840::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:17:24:fc:bd:01:8f:e1:e8:9a:32:e8:a8:65:49:fe:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Sep 7 08:50:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eef4867b3d3d02735ccb4a332c65c274b3ffd08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:09:d4:f4:02:d4:2e:5b:22:4a:97:78:ff:b1:
38:05:f3:37:3c:0b:b7:b6:ec:e0:48:e6:b0:49:0a:
4b:af:b3:2b:6f:be:f8:af:61:b1:95:dd:e7:74:1f:
4d:53:15:ac:71:54:d5:b4:01:f5:b4:2d:c4:4a:c4:
c2:4e:a0:2f:91:71:a4:25:c5:ff:6a:63:6d:c6:a3:
c4:1e:3d:6f:c6:3c:17:d3:f1:15:9d:2b:94:8d:10:
3e:5a:11:7e:5c:26:96:46:f1:05:71:09:af:ab:d0:
64:93:a0:9f:88:90:27:28:d1:d1:8f:01:6c:81:5d:
7a:53:fa:9c:22:81:7b:8a:86:80:50:d7:70:86:b9:
c5:d4:11:8e:70:09:65:da:8c:f9:53:d7:de:b1:9d:
1e:73:25:9f:50:f6:dd:3e:55:0a:ed:b9:5b:53:65:
7e:f6:de:bd:bb:8e:77:6b:e2:90:80:05:d3:0d:f6:
52:74:be:ef:d2:df:9b:fc:3d:b9:bf:3e:ed:94:03:
b7:bb:8e:ae:93:a0:7d:87:72:da:db:b1:27:95:8a:
3a:05:04:4c:53:3a:c3:1b:a6:9a:c3:74:88:f2:f8:
f5:31:ea:9c:6b:c3:08:ea:a4:16:58:18:27:a1:18:
1c:04:71:fd:fe:7d:96:99:7b:33:9d:1a:e4:d0:bd:
8a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F4:86:7B:3D:3D:02:73:5C:CB:4A:33:2C:65:C2:74:B3:FF:D0:8C
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/7vSGez09AnNcy0ozLGXCdLP_0Iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.196.0/24
IPv6:
2a0f:8840::/29
Signature Algorithm: sha256WithRSAEncryption
04:62:7f:90:ab:cf:2a:e2:21:e6:5d:85:2f:4a:20:ed:d4:da:
b2:47:80:7a:88:5c:28:42:0d:df:78:10:a3:7e:41:99:20:25:
0f:32:92:8d:46:98:45:e7:2f:c9:8d:52:5a:a0:7f:d6:ae:31:
f5:34:d5:40:c9:3d:1c:2c:0d:52:5d:27:61:ca:1d:84:56:08:
5b:7d:78:84:b1:da:07:b8:dd:23:cc:99:ed:bc:82:ee:b4:38:
6e:cb:b7:b1:55:0a:43:5e:0b:a6:ef:16:5c:25:86:f1:ff:a1:
18:3c:46:ea:8c:bd:9e:ca:79:79:16:35:05:8f:ad:2d:2f:18:
c3:5a:a8:9d:54:81:b0:6b:06:c9:ac:7a:c5:0d:47:5c:15:c3:
c7:39:ad:63:d5:7c:15:ce:28:36:70:be:63:93:4d:3e:b1:fe:
76:a5:75:f8:4a:d2:dc:a5:92:65:5e:20:2a:05:e0:7c:27:85:
b4:c2:e9:26:b0:ab:68:2b:49:64:b7:13:f0:d8:65:21:08:44:
6a:36:81:1e:35:f5:a5:c6:f6:39:43:a9:3c:d8:45:27:30:88:
1b:e8:9c:b5:bc:c5:e7:b6:b9:ab:07:e0:96:95:78:6f:f4:f4:
8f:a1:52:be:f8:75:72:4b:13:1b:01:93:97:9d:80:df:58:6f:
cc:79:7b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:21 2025 by rpki-client