Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/5db5a3-a5e6-46c8-aa8e-251f5dce7e4d/1/fES0CcAosGGCdQiqP1LXeV4l0aI.roa
File: fES0CcAosGGCdQiqP1LXeV4l0aI.roa (raw, json)
Hash identifier: x0s3iOOGQoEUQHm6lL4EQm6tWu1H/7ZudpWoJhtumc4=
Subject key identifier: 7C:44:B4:09:C0:28:B0:61:82:75:08:AA:3F:52:D7:79:5E:25:D1:A2
Certificate issuer: /CN=76aa51f2014fa0fd7117069d88a679f1670c32a4
Certificate serial: 0B123A49
Authority key identifier: 76:AA:51:F2:01:4F:A0:FD:71:17:06:9D:88:A6:79:F1:67:0C:32:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqpR8gFPoP1xFwadiKZ58WcMMqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/5db5a3-a5e6-46c8-aa8e-251f5dce7e4d/1/fES0CcAosGGCdQiqP1LXeV4l0aI.roa
Signing time: Sat 01 Jan 2022 14:06:56 +0000
ROA not before: Sat 01 Jan 2022 14:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20559
IP address blocks: 91.234.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185743945 (0xb123a49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76aa51f2014fa0fd7117069d88a679f1670c32a4
Validity
Not Before: Jan 1 14:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c44b409c028b061827508aa3f52d7795e25d1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:85:59:a0:7e:11:5a:34:5d:9f:71:7c:17:68:
46:20:d3:97:88:75:87:7d:49:6f:fe:ab:ec:f5:20:
a1:a4:11:b6:cb:9a:d5:7c:64:15:6b:af:8a:e3:42:
44:34:1c:d8:80:98:49:38:04:b9:ab:8c:d6:a0:d7:
ce:61:c6:b1:85:57:3c:f2:e7:2f:27:54:9b:2a:9e:
14:64:a9:54:39:5f:93:d9:8e:ec:f3:64:ce:7f:77:
09:aa:10:7a:8e:67:0f:2b:0d:bd:a9:8a:91:0a:3e:
19:8d:ad:23:a3:91:86:65:c2:4a:20:b5:d7:6e:a0:
a7:47:d1:59:e3:36:22:8c:9c:8f:b8:9c:57:2c:ad:
c9:a6:3b:33:f3:a5:6b:37:e9:63:ad:b3:90:3a:08:
c2:3f:77:80:ab:70:9e:a3:0b:cf:ac:60:47:24:8e:
d2:3e:67:d0:2e:26:d7:39:50:17:fd:4e:e3:47:88:
78:4f:e2:2e:f0:5a:2a:1f:d4:fc:94:14:d8:53:48:
53:9f:1b:5f:55:a9:12:02:1f:42:5c:25:f0:64:e1:
0a:5e:89:a7:c2:01:d0:ae:89:40:69:ef:61:23:dc:
64:66:8b:24:82:a8:dc:72:c6:81:ab:f7:c2:dc:35:
7a:f1:42:d6:18:47:67:b2:68:d7:d1:4a:0c:49:f2:
0b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:44:B4:09:C0:28:B0:61:82:75:08:AA:3F:52:D7:79:5E:25:D1:A2
X509v3 Authority Key Identifier:
keyid:76:AA:51:F2:01:4F:A0:FD:71:17:06:9D:88:A6:79:F1:67:0C:32:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqpR8gFPoP1xFwadiKZ58WcMMqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5db5a3-a5e6-46c8-aa8e-251f5dce7e4d/1/fES0CcAosGGCdQiqP1LXeV4l0aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5db5a3-a5e6-46c8-aa8e-251f5dce7e4d/1/dqpR8gFPoP1xFwadiKZ58WcMMqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.193.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:50:c2:07:e2:01:24:d9:60:8b:83:f9:37:67:c5:7b:89:71:
5b:e7:af:01:74:38:17:ad:81:9f:e2:90:5a:45:1d:c0:5e:98:
a7:ae:82:cc:7a:2e:a2:31:c9:27:05:5b:37:f0:42:07:fc:49:
cc:a3:9d:8f:8c:35:eb:e5:e9:b5:a5:b1:ed:25:33:31:bc:e7:
ee:85:9b:54:9c:c4:aa:c5:e1:a0:36:d1:1b:a2:be:82:e4:58:
4b:58:24:fc:c3:46:d7:33:8b:59:de:68:9a:6d:2a:a2:73:c6:
48:92:af:ec:eb:e0:7f:35:4b:e2:83:b8:ce:94:54:45:74:cd:
a0:52:f2:d1:df:51:49:49:1c:99:cb:c9:e7:09:d6:b5:1c:46:
3a:b6:e2:5c:8b:f6:bf:5b:0a:2d:56:14:fe:2e:e0:34:ad:9a:
50:d1:10:95:4d:90:5c:c5:54:30:6a:b6:ce:89:7d:10:87:25:
9c:05:2b:da:36:ee:3c:74:a3:0f:73:b7:6b:ff:0e:75:25:b1:
4b:ce:bb:14:ae:6d:ab:39:35:97:37:03:a3:81:1a:6e:22:91:
89:b8:11:8f:ac:68:c9:7b:e7:e9:6e:09:d8:e0:c6:90:34:05:
ca:ec:f6:29:01:72:f3:da:d9:8a:ad:3b:e9:3f:cf:f8:71:a0:
26:e3:86:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:30:26 2025 by rpki-client