Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/qRPzS8uQxRgRGD-YDy0Mex6muIo.roa
File: qRPzS8uQxRgRGD-YDy0Mex6muIo.roa (raw, json)
Hash identifier: BvRqg4oBRy90TbDvBpiDKtH1DxFV1riQB+siHtM0/6I=
Subject key identifier: A9:13:F3:4B:CB:90:C5:18:11:18:3F:98:0F:2D:0C:7B:1E:A6:B8:8A
Certificate issuer: /CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Certificate serial: 073C6638
Authority key identifier: 76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/qRPzS8uQxRgRGD-YDy0Mex6muIo.roa
Signing time: Sat 01 Jan 2022 07:00:49 +0000
ROA not before: Sat 01 Jan 2022 07:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50204
IP address blocks: 91.197.236.0/22 maxlen: 22
195.214.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121398840 (0x73c6638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Validity
Not Before: Jan 1 07:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a913f34bcb90c51811183f980f2d0c7b1ea6b88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:ca:9a:89:34:64:df:eb:ce:fa:7f:16:28:
0b:12:ca:50:33:02:99:65:1b:1e:2e:37:73:34:1d:
55:35:0f:3e:d9:a0:70:c1:76:9f:0c:9e:ff:bd:ef:
be:4a:c6:22:ee:ab:54:97:ae:7b:7c:dc:1c:b3:ce:
58:3f:84:62:25:2f:7c:a7:95:47:21:08:72:32:44:
3a:91:97:f8:63:61:ee:bb:03:56:6a:cc:34:45:24:
c1:93:67:4e:25:fb:cb:34:a0:1e:56:a0:39:7e:8d:
a0:b1:b0:a8:0f:e9:c6:59:75:eb:d1:08:3b:c4:20:
7a:bb:d4:6e:18:09:bd:33:31:64:b6:27:95:45:68:
72:50:53:53:07:e3:96:8d:d3:f3:99:f7:e2:9a:fa:
dc:94:b3:ff:4d:46:55:40:ec:ec:18:c1:b8:7e:78:
66:12:c4:2b:6f:e8:3d:3b:e3:68:d2:37:e8:ed:20:
34:27:c3:09:52:8d:6a:0c:ad:b2:64:92:ad:ee:20:
ca:be:fc:0e:f2:d3:08:1e:54:59:7f:b6:4b:70:fa:
2f:8b:59:69:d5:76:6b:5e:8d:8c:a8:6e:c2:3c:79:
39:b7:e3:08:38:a5:9d:15:0e:61:cf:f6:6f:bc:7a:
96:02:68:dc:78:18:93:4e:7f:b2:4f:0c:08:a2:ea:
89:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:13:F3:4B:CB:90:C5:18:11:18:3F:98:0F:2D:0C:7B:1E:A6:B8:8A
X509v3 Authority Key Identifier:
keyid:76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/qRPzS8uQxRgRGD-YDy0Mex6muIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/dkL9PzNs5u6Z5h-pdwSabGqSPko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.236.0/22
195.214.236.0/22
Signature Algorithm: sha256WithRSAEncryption
61:f3:3c:05:1f:a0:08:c4:b1:8c:4a:2a:9a:80:f1:14:41:91:
4c:d6:ab:6b:9b:9d:6d:f2:ca:1d:1a:7b:23:24:a3:c0:56:e5:
d6:76:46:e6:7b:e9:65:07:c2:78:37:97:a5:37:50:4e:7f:22:
ca:33:13:cf:c5:76:13:61:88:35:ee:fb:2a:12:21:4a:88:f1:
e3:22:07:88:ff:36:d8:33:84:54:ce:5b:88:e1:64:81:ec:1e:
2b:6d:91:d7:88:77:44:64:01:e5:0e:d2:eb:2d:26:d4:5c:78:
7a:34:4c:9a:94:c8:1d:9f:95:8b:05:7d:9c:38:30:5f:d0:c6:
44:0a:a3:3b:ab:45:94:1b:b8:5d:ab:fb:d3:5c:8b:34:5b:e3:
6d:ce:45:a5:bd:13:ac:9d:46:0a:5d:b4:71:7b:c3:5c:a2:a1:
37:90:bd:88:85:e3:03:b5:d9:18:e2:72:16:8c:14:a9:da:d1:
b4:c9:40:2f:e7:24:5d:78:57:5a:65:11:35:ac:ab:9e:2e:0f:
77:87:7d:8b:f8:52:fc:d4:08:70:82:23:c3:34:3f:eb:76:40:
7d:55:1c:25:21:d6:7d:9f:10:10:0d:01:9a:6c:02:f8:93:39:
1c:7a:26:22:2d:0b:74:1a:ba:db:02:9b:bd:fa:95:2a:d5:63:
03:71:50:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:14 2025 by rpki-client