Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/5tACIw-cfmBdi7xY8krMBiR5fMg.roa
File: 5tACIw-cfmBdi7xY8krMBiR5fMg.roa (raw, json)
Hash identifier: 6fgTwyawzo/7x1q2XlHKy0ZI2n6CkJj3n3hQYjzBNkk=
Subject key identifier: E6:D0:02:23:0F:9C:7E:60:5D:8B:BC:58:F2:4A:CC:06:24:79:7C:C8
Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Certificate serial: 444DE3
Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/5tACIw-cfmBdi7xY8krMBiR5fMg.roa
Signing time: Thu 03 Mar 2022 09:03:30 +0000
ROA not before: Thu 03 Mar 2022 09:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62254
IP address blocks: 91.233.141.0/24 maxlen: 24
2a0e:e180::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4476387 (0x444de3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Validity
Not Before: Mar 3 09:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6d002230f9c7e605d8bbc58f24acc0624797cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a8:6d:f1:32:3c:00:48:59:3d:61:a4:8c:55:
1e:2c:d7:fa:92:35:0e:78:13:9b:1b:01:3f:fc:70:
68:15:c6:6d:f0:ca:3d:bf:f8:ce:c9:38:c5:b4:e7:
80:48:03:c9:e0:58:db:3e:0f:97:cc:ac:db:c2:c7:
69:37:0f:c8:44:50:9d:48:49:8d:8b:55:76:f9:3b:
d2:71:a6:56:bf:cb:f1:ef:79:ca:bb:96:49:d4:f2:
06:3c:7e:68:15:b0:55:52:a0:36:aa:6a:53:50:18:
bb:b3:34:90:aa:0f:fb:63:59:7e:ef:09:fe:86:14:
cd:3f:51:23:46:ca:3d:8a:73:4e:70:eb:d4:a5:f5:
6c:15:a3:4f:60:be:fb:91:66:50:4a:49:27:23:72:
0e:1b:7c:5b:3f:ff:f2:51:16:19:07:05:3c:ba:76:
ff:33:fe:15:56:15:35:31:24:d6:d2:cb:2c:c5:18:
7b:54:f6:a7:24:df:1a:4b:f8:ac:38:b7:7d:4a:27:
4e:7d:6f:3e:ec:76:bf:bc:71:b3:26:87:0a:f9:cf:
68:8c:cc:a3:51:62:fc:bc:45:4c:34:fb:6e:36:17:
be:3e:68:ab:e6:d8:38:06:ec:29:cb:b8:3c:33:85:
da:0f:25:63:02:db:20:b0:a1:b8:5a:8e:08:9b:9e:
2a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D0:02:23:0F:9C:7E:60:5D:8B:BC:58:F2:4A:CC:06:24:79:7C:C8
X509v3 Authority Key Identifier:
keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/5tACIw-cfmBdi7xY8krMBiR5fMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.141.0/24
IPv6:
2a0e:e180::/29
Signature Algorithm: sha256WithRSAEncryption
4b:82:d2:b3:0f:37:82:e8:29:58:13:4d:a0:86:df:97:39:34:
b5:d6:b6:03:b8:ac:fc:10:bd:56:18:6f:87:ad:97:83:24:6e:
cd:a4:6a:1d:71:ee:9a:8e:74:1b:ba:50:0b:12:48:e5:a6:6d:
c9:22:29:da:e8:96:6e:28:cc:89:45:9f:17:54:14:9b:1e:20:
b0:f3:d7:cc:f6:d4:55:b3:72:fe:6f:90:42:ef:08:24:5f:1f:
eb:9c:41:3c:04:d0:b9:7c:20:47:a8:d2:97:29:40:e5:55:a1:
11:8e:7b:8a:b4:5c:03:a8:92:ac:b4:ad:69:8f:b6:26:81:b4:
8e:4e:e2:f5:85:0a:c4:b9:5e:0e:08:d8:0e:93:b2:b5:05:68:
56:45:44:91:b1:37:11:87:67:96:1b:a6:1a:d9:26:a8:2b:ac:
ba:a1:60:91:c9:47:fc:e5:c8:15:dd:b5:e4:32:e9:13:46:af:
70:3f:b9:6d:5e:f5:cc:a7:f7:2b:b8:c4:17:b9:50:d3:17:88:
f8:d6:51:eb:9c:d4:36:5a:e2:e2:70:59:41:37:85:d8:87:87:
18:fe:ec:29:0d:b4:8a:20:23:ff:61:4d:c1:0b:8a:9b:97:83:
ae:bb:36:24:18:dc:42:ab:4d:24:29:22:ff:c3:87:ed:9f:9e:
06:61:66:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:26 2025 by rpki-client