Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/Vw8bnDmLjyKbfarrhmSXBg2HNik.roa
File: Vw8bnDmLjyKbfarrhmSXBg2HNik.roa (raw, json)
Hash identifier: p2+fhhdQSTwjHHjaRSjzoR1IAOqdzN6uhkWFwoAy0CI=
Subject key identifier: 57:0F:1B:9C:39:8B:8F:22:9B:7D:AA:EB:86:64:97:06:0D:87:36:29
Certificate issuer: /CN=31921b6ff1ac449ba3e7f892cf0832d1ceb7d464
Certificate serial: 322C9B41
Authority key identifier: 31:92:1B:6F:F1:AC:44:9B:A3:E7:F8:92:CF:08:32:D1:CE:B7:D4:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZIbb_GsRJuj5_iSzwgy0c631GQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/Vw8bnDmLjyKbfarrhmSXBg2HNik.roa
Signing time: Mon 03 Jan 2022 07:56:12 +0000
ROA not before: Mon 03 Jan 2022 07:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57057
IP address blocks: 91.224.66.0/23 maxlen: 23
2a01:5741::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841784129 (0x322c9b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31921b6ff1ac449ba3e7f892cf0832d1ceb7d464
Validity
Not Before: Jan 3 07:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=570f1b9c398b8f229b7daaeb866497060d873629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:44:a7:e9:aa:ea:2b:ff:fe:8d:ea:f6:66:d0:
82:bb:f7:57:86:8c:7e:fd:38:c0:69:cd:6b:8f:8b:
63:f5:62:38:ac:e2:13:a5:b5:b9:75:f8:bd:70:f4:
d5:62:19:28:90:5c:8f:bc:ba:d7:a6:8f:2f:44:da:
c9:55:c6:51:99:1a:01:fe:04:4b:fb:c3:d9:00:4d:
b3:23:5e:e6:65:df:18:61:d8:5e:4d:12:68:5a:6c:
88:da:71:b3:4a:1d:82:0c:c1:25:33:da:4f:fc:f2:
a8:32:ea:2c:ab:7e:4e:ae:b6:7a:73:d9:05:5c:0e:
6e:1b:11:61:c0:62:f3:e8:af:c8:f4:d2:14:93:72:
f5:78:34:c8:7a:39:b4:f1:16:2b:a1:e6:97:61:05:
8c:54:b5:f4:f3:78:26:c2:1d:08:d8:ea:b7:d7:de:
80:05:5b:8e:62:1b:d0:db:02:5e:3e:e1:a9:18:64:
2a:cd:bf:8d:75:c7:e6:23:df:43:0e:0f:76:07:ea:
45:11:00:f5:ff:6d:f9:23:4b:b4:65:88:80:fd:a7:
34:c4:35:94:2d:67:95:4f:59:9a:ee:73:0c:b4:eb:
10:d8:0c:92:d7:21:b4:50:aa:e3:5c:95:ea:26:fe:
a6:95:28:c9:93:1d:a5:48:51:16:3f:a6:a3:c2:e0:
2c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0F:1B:9C:39:8B:8F:22:9B:7D:AA:EB:86:64:97:06:0D:87:36:29
X509v3 Authority Key Identifier:
keyid:31:92:1B:6F:F1:AC:44:9B:A3:E7:F8:92:CF:08:32:D1:CE:B7:D4:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZIbb_GsRJuj5_iSzwgy0c631GQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/Vw8bnDmLjyKbfarrhmSXBg2HNik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/MZIbb_GsRJuj5_iSzwgy0c631GQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.66.0/23
IPv6:
2a01:5741::/32
Signature Algorithm: sha256WithRSAEncryption
44:22:31:8e:6a:c5:cb:bd:d0:1a:76:10:d5:76:80:52:c2:05:
b2:ff:9a:71:f0:62:b3:d6:f0:17:e9:76:63:d8:72:8a:4c:9b:
ed:06:f0:cf:11:55:de:8b:58:45:86:c3:ce:08:3f:34:01:1d:
1f:d1:77:58:18:34:2e:72:2a:fc:57:f0:80:c4:88:5f:5f:6f:
32:15:29:d2:83:9c:2e:41:f1:4c:6e:b4:4b:4a:9f:39:e3:61:
2e:d4:f9:46:29:f0:26:2f:f6:d5:4f:30:98:cf:66:a7:d2:78:
83:40:b4:c2:68:e7:c8:2c:f8:ea:66:6f:a0:3e:4d:26:2a:ca:
89:33:fe:25:d6:e5:b6:22:62:b3:82:28:64:05:34:7c:05:f4:
bb:11:9c:e8:cc:99:39:30:45:c6:3f:2d:3a:3c:52:5d:a4:6d:
e5:f4:59:4e:fa:58:03:86:bd:50:af:20:7d:a9:e8:96:38:63:
8f:60:e2:74:dc:35:6b:f3:48:cd:6a:4d:e4:a7:7a:5d:d7:34:
62:e9:18:69:75:79:d9:c5:48:2d:db:51:4b:b2:f0:4f:23:77:
85:d6:a2:89:54:2f:87:a3:98:99:16:07:d7:70:96:f3:5f:8b:
54:bf:82:8c:08:72:53:59:55:ec:cf:d3:34:90:d6:35:91:45:
3b:eb:f1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:29 2025 by rpki-client