Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/9c091b-f879-43f7-9020-f5b94959c9f7/1/m6dp-k3vC2FWAK2RFOAEMIouoxU.roa
File: m6dp-k3vC2FWAK2RFOAEMIouoxU.roa (raw, json)
Hash identifier: BU3pdzOVfrqlHWfklU0hGrJvpHpSAuq9JctYdujNq2g=
Subject key identifier: 9B:A7:69:FA:4D:EF:0B:61:56:00:AD:91:14:E0:04:30:8A:2E:A3:15
Certificate issuer: /CN=d2b11159b72d4015ed867b42b784381e5d955a8f
Certificate serial: 0BF87F39
Authority key identifier: D2:B1:11:59:B7:2D:40:15:ED:86:7B:42:B7:84:38:1E:5D:95:5A:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rERWbctQBXthntCt4Q4Hl2VWo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/9c091b-f879-43f7-9020-f5b94959c9f7/1/m6dp-k3vC2FWAK2RFOAEMIouoxU.roa
Signing time: Sat 01 Jan 2022 14:08:12 +0000
ROA not before: Sat 01 Jan 2022 14:08:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60396
IP address blocks: 91.209.0.0/24 maxlen: 24
2001:67c:2e74::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200834873 (0xbf87f39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b11159b72d4015ed867b42b784381e5d955a8f
Validity
Not Before: Jan 1 14:08:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ba769fa4def0b615600ad9114e004308a2ea315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:75:fa:c1:2f:eb:2d:5b:01:67:9a:c8:42:ba:
32:53:d8:8c:ee:22:80:c3:51:ba:bb:58:ad:c2:9a:
7e:be:67:8c:a3:8d:23:93:bd:90:8f:7f:85:87:00:
ea:07:cd:55:ff:63:78:14:cd:98:c9:32:ee:23:a6:
7c:64:60:62:26:0d:93:14:0d:ff:07:37:6d:05:ca:
1c:9a:61:cc:dc:f9:d6:23:5e:fd:bf:56:10:75:55:
8b:e5:ef:a8:08:6e:c7:ab:21:d9:ee:f9:7f:75:9a:
12:47:31:b9:c8:52:fc:3c:60:c0:fb:6b:1c:39:0c:
19:1c:b4:5b:7f:2f:3a:02:63:a0:f3:7b:58:d4:54:
c7:02:db:10:01:54:17:d7:d9:0d:b6:78:23:4e:6c:
49:39:2a:04:45:f7:89:53:1a:b9:6d:bb:96:14:02:
81:03:8b:b8:02:a7:6b:9f:a8:a0:3d:31:19:6a:40:
96:c6:8e:b3:a2:78:64:e3:d3:bf:fc:ef:41:34:58:
cf:f2:ba:12:c1:31:b6:5d:51:e3:b2:c6:db:bf:17:
6c:bc:70:64:f2:70:07:a8:e6:87:5a:49:bb:62:6f:
6c:a2:13:d8:2e:6f:ca:9e:7f:c1:88:bd:e2:b7:b7:
fe:fe:fc:92:58:8f:ef:03:01:72:2a:6e:33:08:63:
8c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A7:69:FA:4D:EF:0B:61:56:00:AD:91:14:E0:04:30:8A:2E:A3:15
X509v3 Authority Key Identifier:
keyid:D2:B1:11:59:B7:2D:40:15:ED:86:7B:42:B7:84:38:1E:5D:95:5A:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rERWbctQBXthntCt4Q4Hl2VWo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c091b-f879-43f7-9020-f5b94959c9f7/1/m6dp-k3vC2FWAK2RFOAEMIouoxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c091b-f879-43f7-9020-f5b94959c9f7/1/0rERWbctQBXthntCt4Q4Hl2VWo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.0.0/24
IPv6:
2001:67c:2e74::/48
Signature Algorithm: sha256WithRSAEncryption
6f:90:47:7c:19:2f:94:7a:34:00:d3:31:0b:a2:7e:9f:08:36:
eb:b7:38:5e:e0:03:a9:47:a6:c5:ac:27:3d:41:2c:44:d1:c6:
3d:29:07:3c:fe:c7:50:b5:f0:5b:cc:ca:8d:dc:98:40:44:44:
8d:85:0b:26:29:38:29:a4:d9:82:7e:39:66:1d:22:a8:b4:23:
97:1b:1b:07:e0:5c:9e:21:98:df:31:10:e4:17:7b:35:1b:28:
68:68:f5:1d:a1:31:30:78:0f:f7:91:a6:34:8a:2a:a5:a0:be:
5f:42:a8:71:5d:87:0a:76:9c:a4:54:ea:65:34:a7:00:d1:2d:
0b:e9:a8:0b:de:8e:c7:7c:64:fb:f3:4a:11:f0:e0:1c:85:e5:
20:4d:24:a8:83:3c:f5:73:11:1a:2c:98:00:4b:81:a8:04:14:
ad:34:2d:55:f7:71:ec:f3:0a:e0:44:a1:07:3c:70:99:b3:a9:
7b:33:5b:80:df:11:f8:71:a0:e3:13:b9:dd:92:d1:5a:69:a2:
95:3b:ec:0d:45:0a:2a:34:fb:2c:a7:92:78:2a:1e:ce:09:8b:
ce:c2:a2:be:5e:86:bf:d6:61:ad:83:b5:a7:0a:f9:eb:aa:e2:
85:53:2e:84:78:22:d0:78:7c:9a:43:0f:a8:b9:bf:fb:43:5a:
fc:3d:23:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:58 2025 by rpki-client