Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/G9NdxdmKfK6JXn2UvgxxgusRGQ8.roa
File: G9NdxdmKfK6JXn2UvgxxgusRGQ8.roa (raw, json)
Hash identifier: /JwRSxCWMnIv+IypDDKhxzCmSCvtUJMOBtyxj894a/0=
Subject key identifier: 1B:D3:5D:C5:D9:8A:7C:AE:89:5E:7D:94:BE:0C:71:82:EB:11:19:0F
Certificate issuer: /CN=ec8ff96eae2d448ec7849d173b552f15f0f704c1
Certificate serial: 024C2458
Authority key identifier: EC:8F:F9:6E:AE:2D:44:8E:C7:84:9D:17:3B:55:2F:15:F0:F7:04:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7I_5bq4tRI7HhJ0XO1UvFfD3BME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/G9NdxdmKfK6JXn2UvgxxgusRGQ8.roa
Signing time: Sat 01 Jan 2022 08:53:52 +0000
ROA not before: Sat 01 Jan 2022 08:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57586
IP address blocks: 91.233.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38544472 (0x24c2458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec8ff96eae2d448ec7849d173b552f15f0f704c1
Validity
Not Before: Jan 1 08:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bd35dc5d98a7cae895e7d94be0c7182eb11190f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:17:1f:b5:9c:39:80:f7:9c:84:85:7e:5f:
f8:40:a9:c2:b2:77:fd:8c:3c:74:2e:c4:4a:4f:37:
c8:3f:95:2d:25:3f:dc:3f:5c:bf:0c:c3:43:d2:90:
55:b3:ca:63:d2:06:4a:ab:49:da:f9:a8:b2:0a:f7:
06:c0:fa:cc:f2:2b:15:53:2d:b4:db:05:09:f6:b6:
8b:a2:07:8a:f4:21:4c:47:31:82:fd:41:fc:2f:c0:
31:fd:74:d0:3c:93:3a:c5:c1:e8:5d:6e:5a:1d:90:
94:4c:c2:b2:89:aa:2e:bb:9c:36:4b:6c:b6:1d:8b:
68:cc:87:6c:00:66:35:04:85:df:40:7f:7f:6b:2c:
4a:4f:8a:1d:fa:e6:73:d6:f7:ad:58:ef:11:d4:9f:
df:af:2a:3d:1f:62:47:7e:e0:c2:1d:7b:68:c1:6c:
3e:4b:09:51:d3:4a:cb:d8:c5:cf:cc:35:7d:bf:68:
87:d5:5a:47:86:cc:b4:34:5b:3c:f0:6f:05:ad:77:
a9:d8:e7:45:c8:d5:ae:b7:b8:1d:56:18:8b:74:fd:
90:7a:42:ec:8b:e6:c6:c6:26:1b:6b:2a:80:81:a2:
84:4a:42:eb:13:ad:50:1e:05:b8:90:c0:85:65:dd:
31:de:50:00:ba:01:dd:a1:41:45:ac:fc:17:c0:80:
42:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:5D:C5:D9:8A:7C:AE:89:5E:7D:94:BE:0C:71:82:EB:11:19:0F
X509v3 Authority Key Identifier:
keyid:EC:8F:F9:6E:AE:2D:44:8E:C7:84:9D:17:3B:55:2F:15:F0:F7:04:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7I_5bq4tRI7HhJ0XO1UvFfD3BME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/G9NdxdmKfK6JXn2UvgxxgusRGQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/7I_5bq4tRI7HhJ0XO1UvFfD3BME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.62.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:0d:98:f8:e8:3c:04:59:6e:06:f1:ea:cf:27:51:14:78:75:
dd:ee:70:d2:0c:38:77:8d:6e:77:4b:e3:35:ae:31:05:c5:03:
32:5a:a1:a9:4f:f4:dd:6b:13:ce:83:93:54:ec:0c:c8:ca:6e:
d7:7b:da:68:fa:3e:54:c4:42:b9:cd:f0:7c:35:6d:36:35:19:
d1:6f:ac:5e:98:f6:bd:48:c1:4d:d5:d8:15:d7:c1:cb:06:d1:
e1:dc:43:ef:f5:0d:72:7d:c2:a2:c5:04:2d:69:23:fe:e3:e0:
2d:d0:5a:a1:a1:6f:1b:56:a4:c1:6a:00:3f:d5:dc:d9:0e:4f:
44:06:fb:de:4e:38:30:5d:bc:f8:91:d1:5d:48:55:b8:ae:64:
c5:47:b4:78:97:63:32:a9:d9:12:e8:08:18:21:7a:c5:a5:1a:
ac:15:3f:06:bc:95:ae:85:8d:5c:5d:c7:a6:11:f7:fb:44:87:
5b:b5:36:d2:d3:2b:14:58:c6:2c:2b:2f:4b:bf:d4:e0:5b:2e:
af:d1:9a:07:fc:5a:97:0b:bf:7b:9e:20:2f:46:7f:d6:f1:31:
ec:e1:51:9e:fe:2d:3d:db:bf:fd:bc:18:05:af:69:52:1a:f0:
45:96:24:f1:ac:ba:b3:05:ce:68:21:d7:f2:80:f3:12:48:fc:
5a:eb:a5:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:31 2025 by rpki-client