Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/D7_eiO1JynDvNyW-TrI9OdKrGCo.roa
File: D7_eiO1JynDvNyW-TrI9OdKrGCo.roa (raw, json)
Hash identifier: JjNxrFJ5+FrU5Wv27dTi3jdynXPyVlKjSjmWK4eon0o=
Subject key identifier: 0F:BF:DE:88:ED:49:CA:70:EF:37:25:BE:4E:B2:3D:39:D2:AB:18:2A
Certificate issuer: /CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Certificate serial: 037588AE
Authority key identifier: 34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/D7_eiO1JynDvNyW-TrI9OdKrGCo.roa
Signing time: Sat 01 Jan 2022 06:52:25 +0000
ROA not before: Sat 01 Jan 2022 06:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29686
IP address blocks: 91.195.150.0/23 maxlen: 23
2001:678:2e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58034350 (0x37588ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Validity
Not Before: Jan 1 06:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fbfde88ed49ca70ef3725be4eb23d39d2ab182a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ee:ff:71:3d:48:fb:ba:2e:30:9a:e3:e5:95:
88:21:2e:90:a7:e3:f1:72:3f:1c:d2:d8:26:c2:29:
b3:90:5c:0f:3f:42:af:f5:25:23:30:6e:fb:74:3d:
7d:9c:00:a0:4c:98:ad:45:51:8e:03:37:b0:4c:e5:
63:a7:0c:6d:1b:5a:6e:74:2e:e3:eb:2f:b0:7c:48:
6e:0d:34:3c:a3:08:4a:c5:c7:23:cd:31:d7:d1:91:
79:89:39:01:03:50:c9:cd:2a:08:de:5b:ae:c6:4f:
05:64:70:13:a8:98:9b:90:b1:22:28:57:d9:34:d8:
a9:cd:ac:92:13:ab:5c:04:35:36:f9:ea:75:3c:e3:
bc:e8:bc:75:51:5e:95:9d:b8:07:04:ee:b1:cb:ec:
fe:dd:2f:9f:75:5a:d1:f8:17:e5:e8:c4:81:ae:32:
03:bb:fc:83:86:bb:21:d1:ba:94:93:8b:f8:52:40:
b9:09:0c:ab:61:2b:d2:bf:c7:97:65:b5:21:58:0b:
06:79:63:04:6e:cd:4c:ce:08:85:0a:eb:04:f4:44:
e4:14:c7:a3:df:db:92:2c:d3:7c:fc:02:cf:6b:0b:
61:75:51:a4:34:fe:50:c2:ad:84:0b:5a:ed:6f:45:
0e:4c:60:2b:d1:88:fb:68:19:3f:c6:e3:4a:92:04:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BF:DE:88:ED:49:CA:70:EF:37:25:BE:4E:B2:3D:39:D2:AB:18:2A
X509v3 Authority Key Identifier:
keyid:34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/D7_eiO1JynDvNyW-TrI9OdKrGCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.150.0/23
IPv6:
2001:678:2e0::/48
Signature Algorithm: sha256WithRSAEncryption
22:62:09:90:72:35:73:ff:9c:70:85:8f:90:22:64:bd:da:aa:
3e:4e:c7:b0:61:ae:f0:7f:6e:b5:9e:67:d8:58:66:37:d7:a6:
5b:8c:e0:f8:c2:d0:1a:ec:c9:2a:d1:fc:74:ee:7d:f2:5a:b3:
01:9a:38:c4:17:6c:b9:1f:5a:e0:e3:f6:d2:24:a6:fe:98:04:
19:e4:7d:4b:f4:e3:fe:af:59:88:6b:fc:b7:15:c1:59:b2:30:
f3:1d:14:d8:ec:54:46:f5:c4:7d:71:3f:52:37:d9:8b:4e:41:
42:b7:81:5d:50:ea:27:f2:9e:f6:7b:37:ad:1d:ca:8c:d6:d0:
1c:60:64:e7:49:26:bb:ac:b0:67:da:96:bd:1f:87:6b:a8:c9:
72:4c:da:37:c1:a5:b7:74:c9:05:4b:a6:82:4f:98:5f:96:e4:
d4:1e:99:06:52:04:02:77:66:e1:95:18:10:cb:2d:c6:82:a0:
8e:ad:e0:24:c3:d6:2e:17:bf:6a:fc:a7:4b:64:b7:88:aa:cc:
1a:61:67:7d:1d:e5:ea:a5:6f:2f:a7:c1:e0:85:ce:b8:b2:ad:
7c:72:f7:8f:2b:ce:62:34:dd:34:a6:1f:49:da:ee:02:d7:1a:
5d:ba:f5:f9:e3:cf:a3:81:0b:4b:f6:b3:d3:de:78:95:86:9a:
88:d7:07:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:23 2025 by rpki-client