Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/g6oNZIuKOelawj1uxHhkNVfep3I.roa
File: g6oNZIuKOelawj1uxHhkNVfep3I.roa (raw, json)
Hash identifier: Z6GfEEAYyfeZMmj2v+J3j11ILJyn5Qf2yAIst3htIhA=
Subject key identifier: 83:AA:0D:64:8B:8A:39:E9:5A:C2:3D:6E:C4:78:64:35:57:DE:A7:72
Certificate issuer: /CN=b55d4e6317c62a1a69dac31f4f143e3bc280ba62
Certificate serial: 07FA7EA7
Authority key identifier: B5:5D:4E:63:17:C6:2A:1A:69:DA:C3:1F:4F:14:3E:3B:C2:80:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tV1OYxfGKhpp2sMfTxQ-O8KAumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/g6oNZIuKOelawj1uxHhkNVfep3I.roa
Signing time: Thu 10 Mar 2022 03:00:11 +0000
ROA not before: Thu 10 Mar 2022 03:00:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44050
IP address blocks: 91.196.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133856935 (0x7fa7ea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55d4e6317c62a1a69dac31f4f143e3bc280ba62
Validity
Not Before: Mar 10 03:00:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83aa0d648b8a39e95ac23d6ec478643557dea772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:ae:6e:96:f7:66:d8:94:0e:d2:ee:ba:31:
77:8b:dd:11:ce:dc:21:a7:d1:af:56:77:c3:f2:90:
49:a5:16:3a:24:b7:e2:5b:71:73:0e:38:8a:b9:37:
d9:17:17:89:ac:c6:6c:84:ed:91:78:b9:0b:fb:a1:
73:7a:24:27:8a:0c:95:c7:f4:31:b6:e1:b9:45:a0:
88:6a:e9:68:f0:cb:08:f6:03:b5:1f:f1:9b:d7:c2:
3c:ee:88:7d:2f:c0:d6:e8:4a:22:8c:83:c3:ab:bb:
f8:97:a4:b1:41:5e:98:ca:d7:4c:4f:19:0e:76:9c:
6c:7c:33:6c:67:06:92:0a:8d:87:c3:e8:57:ea:4b:
bf:89:48:41:18:0e:94:14:f3:c3:4d:d8:0c:36:be:
fc:3c:14:5b:d1:a2:67:0e:68:f2:76:14:e7:c0:e8:
59:c1:90:4a:63:c7:c7:5b:67:43:16:3d:6c:ad:dd:
44:d3:ed:02:aa:a1:a1:6c:4a:68:16:a0:87:6f:bc:
43:7c:a8:80:44:60:5c:1f:c5:46:62:1a:7e:dd:46:
23:d3:c4:d1:11:0a:14:84:42:4c:d9:6e:51:14:8e:
48:59:65:c0:0f:38:ac:c0:63:fb:3a:8c:7a:4d:1c:
96:9f:1b:dc:69:c5:99:30:1f:21:9e:59:74:f7:89:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AA:0D:64:8B:8A:39:E9:5A:C2:3D:6E:C4:78:64:35:57:DE:A7:72
X509v3 Authority Key Identifier:
keyid:B5:5D:4E:63:17:C6:2A:1A:69:DA:C3:1F:4F:14:3E:3B:C2:80:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tV1OYxfGKhpp2sMfTxQ-O8KAumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/g6oNZIuKOelawj1uxHhkNVfep3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/tV1OYxfGKhpp2sMfTxQ-O8KAumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.255.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ff:03:3a:e6:3e:81:13:dc:5a:df:5c:8e:3f:df:c9:03:2a:
d1:92:11:8d:b6:69:79:93:39:a1:aa:e5:ac:87:ad:98:0a:d3:
11:56:84:35:e6:91:29:8c:bc:20:99:da:3e:58:56:0b:5b:e2:
b0:99:e1:c6:d1:bc:ef:24:00:63:de:3d:df:2b:8f:ce:4d:52:
26:04:ed:16:e0:c1:16:c3:f1:c5:29:f4:6e:79:13:ee:78:5e:
5c:c9:bd:37:6e:50:12:59:c9:58:ea:22:12:28:3b:2d:64:95:
8a:11:d5:8a:05:d6:38:c3:e0:21:06:f8:a0:3b:22:11:e7:5d:
ed:07:9a:37:f8:b4:80:c5:1e:65:7e:0f:66:12:fe:13:96:5e:
0a:82:a8:bb:a2:58:d7:b8:eb:47:10:ca:03:69:b0:05:59:ed:
0f:d5:2f:7e:0c:fe:15:e1:10:65:c2:9c:7a:06:ae:39:e6:95:
bf:04:95:e5:17:17:ab:d4:76:60:2b:79:16:19:67:79:9d:3e:
d3:1c:3e:55:1a:80:07:e8:fb:44:54:a7:44:05:62:0c:16:24:
2e:e4:a5:b0:8d:53:46:64:e7:ef:93:b9:bb:8b:cf:71:08:4a:
84:22:96:78:7e:41:c5:15:63:8b:65:01:d5:34:cb:1c:86:45:
b6:f0:b6:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:26 2025 by rpki-client