Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/1DkxoFhTCwpSjNZE9BfneaIq_E4.roa
File: 1DkxoFhTCwpSjNZE9BfneaIq_E4.roa (raw, json)
Hash identifier: GCxcOel5I7AYKdQGrbxt48LrjJmOO3XjTp1o75ATX0g=
Subject key identifier: D4:39:31:A0:58:53:0B:0A:52:8C:D6:44:F4:17:E7:79:A2:2A:FC:4E
Certificate issuer: /CN=dc3f2639ffc78871ad64bfed71b7954bc90deab5
Certificate serial: 05559E01
Authority key identifier: DC:3F:26:39:FF:C7:88:71:AD:64:BF:ED:71:B7:95:4B:C9:0D:EA:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3D8mOf_HiHGtZL_tcbeVS8kN6rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/1DkxoFhTCwpSjNZE9BfneaIq_E4.roa
Signing time: Sat 01 Jan 2022 09:57:27 +0000
ROA not before: Sat 01 Jan 2022 09:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199141
IP address blocks: 91.245.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89497089 (0x5559e01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3f2639ffc78871ad64bfed71b7954bc90deab5
Validity
Not Before: Jan 1 09:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d43931a058530b0a528cd644f417e779a22afc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9c:9a:7d:9a:88:fe:bf:bb:55:5b:da:3d:de:
f6:fd:3a:e8:0e:78:ba:4f:f1:e5:1d:47:a1:45:52:
7d:73:e7:1d:a4:d1:e1:59:ab:fe:33:36:43:4a:c3:
cf:71:ea:cd:51:8a:ae:1d:18:c9:f2:f6:b6:d9:f6:
a5:3d:57:03:f7:37:8c:5c:7b:34:dc:67:32:b8:bd:
0b:1d:cc:14:4b:6d:87:f1:c3:a6:46:54:db:d1:1b:
b9:f8:07:e4:4b:6c:3f:4a:13:8a:74:e1:62:32:7c:
e3:8b:55:72:7f:b6:b3:4b:47:32:ba:75:01:c2:66:
a5:cf:b7:4e:dc:c3:51:e2:b7:07:8e:26:da:f0:1f:
bd:a7:9f:23:5d:ee:fa:40:f8:7a:89:84:bd:9c:f9:
e7:70:bd:b8:9f:9c:d1:8d:a5:63:e8:4e:9a:6e:0b:
0b:a1:8e:56:67:05:ae:60:52:db:60:53:58:5c:83:
9c:75:c6:09:e9:f5:9c:de:76:9e:4e:cf:b6:c0:15:
29:8e:c1:3c:17:8d:25:72:30:7d:2e:0c:80:7f:17:
b6:5a:63:ae:15:4b:86:fb:a7:64:00:a3:00:cf:53:
30:b2:6d:3b:50:7d:40:4a:06:b3:e3:c8:fd:30:94:
59:89:17:54:bd:27:dd:3b:82:87:84:34:15:89:6d:
a3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:39:31:A0:58:53:0B:0A:52:8C:D6:44:F4:17:E7:79:A2:2A:FC:4E
X509v3 Authority Key Identifier:
keyid:DC:3F:26:39:FF:C7:88:71:AD:64:BF:ED:71:B7:95:4B:C9:0D:EA:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3D8mOf_HiHGtZL_tcbeVS8kN6rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/1DkxoFhTCwpSjNZE9BfneaIq_E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/3D8mOf_HiHGtZL_tcbeVS8kN6rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.195.0/24
Signature Algorithm: sha256WithRSAEncryption
19:25:ed:37:ac:c1:39:05:52:de:44:f0:83:4e:3d:e6:21:61:
d1:e6:9b:f8:fd:0e:42:58:c9:32:68:4d:23:d0:89:01:df:40:
a3:70:75:f2:76:23:7f:ed:3b:7f:d3:a4:74:26:a6:50:22:f8:
88:6c:5b:26:7d:e9:ef:25:38:c0:45:90:a0:3d:54:e1:d9:d3:
03:43:02:85:bd:53:bc:ca:49:b8:20:13:7b:75:79:9b:80:45:
d9:f3:61:5e:61:52:df:21:39:1c:fa:f7:8b:88:44:f6:f2:de:
38:ee:a2:31:4a:27:d0:af:81:5f:30:4f:ce:67:fe:fd:c8:1d:
da:79:e1:1a:9e:2a:72:7d:2b:f3:79:5b:ba:5f:54:d2:e7:cb:
9d:ef:b9:d4:1a:94:6a:6f:00:f8:70:e3:b1:ce:73:79:b0:41:
38:ec:ca:7c:be:85:61:fa:c5:de:0b:f4:c8:f2:51:84:99:03:
1c:80:55:83:11:b0:00:2d:a1:10:f3:b2:a7:9a:f7:e6:58:1d:
38:1c:19:73:17:2e:a4:1d:9e:94:e9:0b:42:02:80:4a:bf:6b:
bf:e5:3d:c7:b3:ef:05:d8:d9:c7:e8:b2:b3:35:02:37:df:b4:
28:bf:73:74:10:5a:33:d7:5f:76:a2:dd:b9:73:5f:39:0a:0b:
34:82:0d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:46 2025 by rpki-client