Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/eIiW_V0VXIRCWEQgr_-NdTKkYto.roa
File: eIiW_V0VXIRCWEQgr_-NdTKkYto.roa (raw, json)
Hash identifier: jrvoUGvzJufzaRYgYqVM31CqwPpOhHbF09P2z125Ax4=
Subject key identifier: 78:88:96:FD:5D:15:5C:84:42:58:44:20:AF:FF:8D:75:32:A4:62:DA
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0186C5511F5A048044BD19EEB1A24C95866D
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/eIiW_V0VXIRCWEQgr_-NdTKkYto.roa
Signing time: Thu 09 Mar 2023 07:41:13 +0000
ROA not before: Thu 09 Mar 2023 07:41:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49704
IP address blocks: 82.119.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:51:1f:5a:04:80:44:bd:19:ee:b1:a2:4c:95:86:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Mar 9 07:41:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=788896fd5d155c8442584420afff8d7532a462da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3b:85:0a:37:3b:70:38:22:e8:01:ac:b3:46:
d7:74:34:12:b6:68:80:5a:a5:4c:af:d3:39:b6:ac:
4d:4b:1a:46:ec:21:f6:6f:4e:3a:97:4c:4e:3f:cc:
08:74:da:05:c9:23:55:1b:8d:43:4e:93:ed:d0:f1:
ff:c8:df:01:97:2a:2e:ad:1b:9d:c8:66:48:84:77:
b0:e0:ba:6c:dc:f6:94:cf:71:e6:ca:86:bb:bf:a7:
69:95:6a:9f:0c:75:d3:61:b4:f0:df:96:3a:34:93:
26:16:46:11:50:4a:61:e1:e0:45:83:1f:15:73:6e:
1a:33:12:cd:20:05:ba:b5:c3:46:03:f0:80:0a:66:
8e:a9:87:1a:b6:3a:d7:6a:d7:31:6f:c1:6e:bb:63:
51:7a:d6:26:e6:8a:4a:65:01:1f:87:00:9b:fc:66:
85:aa:c0:45:41:04:2d:61:ba:07:3e:b7:12:37:93:
e8:8b:ce:a1:d2:f8:04:ef:81:c7:8c:94:7e:d3:ba:
6c:c7:6d:39:34:6d:75:38:f2:2c:cf:c4:d5:b6:42:
7f:1b:89:1f:6d:ef:37:8a:db:8e:d6:e5:98:c0:b0:
6a:1a:54:1f:52:28:1f:a3:5b:dd:bd:f8:b2:c2:08:
6e:80:b6:0a:56:23:aa:51:73:58:73:95:b9:d5:49:
9d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:88:96:FD:5D:15:5C:84:42:58:44:20:AF:FF:8D:75:32:A4:62:DA
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/eIiW_V0VXIRCWEQgr_-NdTKkYto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.91.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:23:12:57:a8:29:26:9e:9d:ec:59:8f:70:f0:65:c5:ad:86:
6e:12:fc:ee:56:24:61:64:37:61:04:1c:2f:ae:4b:d6:fa:b2:
05:48:5a:91:34:a2:51:08:33:75:1a:2f:d7:e1:69:0f:68:e5:
d3:23:b6:fd:5c:06:7e:c1:78:a9:b2:65:b6:f6:26:e5:ba:35:
06:6a:bb:5f:6e:64:7d:b3:98:22:39:01:c4:fd:40:00:d9:95:
5e:cb:5a:1f:1f:12:77:60:be:e8:89:42:d3:6d:2d:44:0b:5c:
cc:02:aa:ce:cd:bf:94:28:50:10:6d:4b:64:f9:f2:97:7e:49:
33:4b:cb:7d:bd:4e:1d:74:8e:ce:f1:e9:7b:67:f7:71:8d:6f:
91:ac:9e:42:7a:36:41:7b:7e:58:08:4b:76:3c:81:2d:13:9e:
44:d2:53:4e:6e:a3:ad:9f:d0:59:cb:17:d0:49:08:7c:c0:50:
77:d8:99:ba:9b:86:0e:b2:5e:65:df:cf:1a:4b:18:11:7f:c4:
c5:c5:01:c0:e9:74:bc:2e:b3:29:9f:36:0d:dd:05:bb:33:79:
af:7f:22:6b:f1:65:60:5d:cf:aa:02:67:ef:46:8e:91:8a:6a:
c7:94:85:d2:89:55:5f:26:27:6f:57:b4:6b:f3:61:b3:82:24:
45:3b:3f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:30 2025 by rpki-client