Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/MWeqf1OuC9flwXV--z8VKzt6pq4.roa
File: MWeqf1OuC9flwXV--z8VKzt6pq4.roa (raw, json)
Hash identifier: wQFqSCqttRsbiopZ3+rNbPf6h8edr/So/zBwcMSYJrw=
Subject key identifier: 31:67:AA:7F:53:AE:0B:D7:E5:C1:75:7E:FB:3F:15:2B:3B:7A:A6:AE
Certificate issuer: /CN=8b6e65b82fe4007e82fd2db134cf42c6aec4e0bc
Certificate serial: 0F347A58
Authority key identifier: 8B:6E:65:B8:2F:E4:00:7E:82:FD:2D:B1:34:CF:42:C6:AE:C4:E0:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i25luC_kAH6C_S2xNM9Cxq7E4Lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/MWeqf1OuC9flwXV--z8VKzt6pq4.roa
Signing time: Sat 01 Jan 2022 01:52:37 +0000
ROA not before: Sat 01 Jan 2022 01:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43135
IP address blocks: 91.225.55.0/24 maxlen: 24
91.225.54.0/24 maxlen: 24
91.225.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255097432 (0xf347a58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6e65b82fe4007e82fd2db134cf42c6aec4e0bc
Validity
Not Before: Jan 1 01:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3167aa7f53ae0bd7e5c1757efb3f152b3b7aa6ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:00:53:fa:c7:40:88:d9:b7:e8:c5:cb:fa:
3d:73:2d:bc:ca:8b:25:67:a4:7c:ab:13:53:3f:f4:
e9:29:c2:88:d1:fe:bb:7c:32:ae:03:aa:d3:42:d7:
01:dc:3a:d2:18:9b:3d:f5:53:d2:7a:7c:40:31:a3:
06:0b:36:e0:ad:ad:9e:44:d6:96:47:99:43:80:0b:
8f:87:ca:53:f1:02:17:c9:85:92:5e:a5:82:01:20:
df:d7:39:e7:23:2e:14:5a:c6:23:cd:ab:6b:16:1f:
54:99:e4:f2:67:34:2f:ac:12:76:c9:2d:6e:78:2d:
1c:57:f7:90:c6:56:81:ce:eb:44:ad:c5:6a:ee:1b:
03:c5:06:6b:0c:ee:31:ba:21:7e:ac:7f:b4:e7:ea:
dd:d7:73:36:d6:a9:e9:b1:82:93:68:9f:53:9f:63:
80:e1:f8:2b:1d:eb:60:fc:8f:d4:ef:47:1b:c8:57:
b5:71:fd:68:ee:42:18:f4:d6:fd:28:ac:4e:19:49:
7d:6b:89:0f:96:a7:f5:25:94:1f:e1:dd:70:d5:17:
ae:2d:64:5f:8f:3c:6f:07:d0:47:4a:d4:d5:5c:0c:
e4:44:9e:38:bd:ce:ab:f1:4e:cd:1b:e9:4b:4f:8d:
06:e6:04:a5:b9:69:cb:4c:54:f4:be:89:b0:f8:85:
46:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:67:AA:7F:53:AE:0B:D7:E5:C1:75:7E:FB:3F:15:2B:3B:7A:A6:AE
X509v3 Authority Key Identifier:
keyid:8B:6E:65:B8:2F:E4:00:7E:82:FD:2D:B1:34:CF:42:C6:AE:C4:E0:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i25luC_kAH6C_S2xNM9Cxq7E4Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/MWeqf1OuC9flwXV--z8VKzt6pq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/i25luC_kAH6C_S2xNM9Cxq7E4Lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.53.0-91.225.55.255
Signature Algorithm: sha256WithRSAEncryption
8c:0c:8a:b8:b4:ee:c5:27:16:71:8d:42:5d:a8:ef:80:92:13:
7f:a2:c9:63:2d:1f:1f:34:cc:f7:12:40:f2:61:e3:3f:fd:b0:
ba:45:58:77:5f:b1:1a:eb:b5:2a:f8:1e:74:e6:93:29:91:78:
f2:60:99:7e:d5:fd:b9:e1:1b:5d:c7:db:50:67:a7:7f:ba:e6:
27:56:2c:e3:c8:80:65:25:d6:b1:47:be:4e:27:33:ac:95:a6:
7e:0e:36:0a:12:00:c4:f1:47:ac:c2:ce:99:67:cc:d9:c0:2a:
43:f9:ac:b2:6e:08:9e:e5:fc:5d:68:28:0f:c8:d6:3d:a1:ec:
ae:a2:fa:bf:2d:1c:84:cd:b8:0b:15:c9:1d:07:9d:f5:ec:58:
7e:6f:57:e6:1e:8d:36:14:d4:16:3c:44:f2:38:d1:8f:dc:f2:
5b:f3:ce:7f:c4:71:28:65:82:19:db:39:a5:ba:35:2f:4e:5b:
24:8b:31:6c:c7:e0:c9:b1:bb:9f:77:74:14:20:3f:be:70:33:
7b:d1:13:2e:19:9c:4c:ca:22:c6:04:4f:a1:02:7f:52:fa:bd:
8a:a9:b5:1a:87:50:f0:3b:d8:f7:6f:cd:2f:c3:bc:ff:7b:fd:
e9:3a:e0:59:9e:e1:45:0b:ad:58:07:04:85:bb:d9:95:ab:13:
39:97:61:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:49 2025 by rpki-client