Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0e5711-2fd4-40ca-9136-6f4e6585b54b/1/HSdhdhMYAVdCAfpuB40AeBd6SVU.roa
File: HSdhdhMYAVdCAfpuB40AeBd6SVU.roa (raw, json)
Hash identifier: 7XeW8LaE1jZl6lO58WGXqe4LX09L84/rJE5wJjdYxbA=
Subject key identifier: 1D:27:61:76:13:18:01:57:42:01:FA:6E:07:8D:00:78:17:7A:49:55
Certificate issuer: /CN=110e56177308c20c42fbf42f310f4c0ef6b27890
Certificate serial: 018570CBF450A3C449893A622084E8E5C204
Authority key identifier: 11:0E:56:17:73:08:C2:0C:42:FB:F4:2F:31:0F:4C:0E:F6:B2:78:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EQ5WF3MIwgxC-_QvMQ9MDvayeJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0e5711-2fd4-40ca-9136-6f4e6585b54b/1/HSdhdhMYAVdCAfpuB40AeBd6SVU.roa
Signing time: Mon 02 Jan 2023 04:44:52 +0000
ROA not before: Mon 02 Jan 2023 04:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 91.206.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f4:50:a3:c4:49:89:3a:62:20:84:e8:e5:c2:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=110e56177308c20c42fbf42f310f4c0ef6b27890
Validity
Not Before: Jan 2 04:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d276176131801574201fa6e078d0078177a4955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b1:0a:f3:ad:6e:bd:fd:31:3f:b9:15:2d:f4:
80:45:37:be:c1:67:45:a4:bc:3f:74:ca:ee:16:76:
fa:34:a8:c2:b8:48:04:7e:46:8a:ce:8a:a2:24:13:
e4:32:37:b5:80:66:98:54:0a:78:4e:2d:a8:8e:27:
e3:14:37:e0:96:0a:c8:95:3a:b1:bf:a3:81:3b:f8:
56:51:45:a1:c1:b1:76:16:2f:22:1f:a9:54:76:07:
aa:e5:1b:38:7d:b9:40:61:62:ee:d2:b2:aa:47:50:
8e:b2:5c:d9:18:ee:be:3e:e8:ba:4e:bf:15:69:22:
e2:33:91:72:79:cd:81:7f:b8:29:34:b7:0a:3b:8f:
f7:40:b3:6a:c4:10:e6:c1:05:36:ca:93:9c:6c:c7:
1f:f0:0c:69:be:71:80:5f:6a:ee:92:7f:b2:75:b8:
20:7e:ea:c9:71:e9:5c:e5:6d:eb:3e:82:39:e7:50:
f9:43:0f:b5:4e:05:ed:8b:18:c9:66:70:97:49:79:
f0:4d:29:66:fd:e9:19:f8:98:df:8b:7f:4e:f3:16:
50:54:70:f1:f3:a4:9c:54:cf:4b:de:c4:b4:97:02:
59:34:1b:d4:cb:1d:b8:4c:32:2d:c3:4c:c4:8d:b3:
8b:7d:39:fa:13:71:bb:00:70:70:e4:61:63:82:68:
da:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:27:61:76:13:18:01:57:42:01:FA:6E:07:8D:00:78:17:7A:49:55
X509v3 Authority Key Identifier:
keyid:11:0E:56:17:73:08:C2:0C:42:FB:F4:2F:31:0F:4C:0E:F6:B2:78:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EQ5WF3MIwgxC-_QvMQ9MDvayeJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0e5711-2fd4-40ca-9136-6f4e6585b54b/1/HSdhdhMYAVdCAfpuB40AeBd6SVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0e5711-2fd4-40ca-9136-6f4e6585b54b/1/EQ5WF3MIwgxC-_QvMQ9MDvayeJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.64.0/24
Signature Algorithm: sha256WithRSAEncryption
56:fb:8f:b2:ab:53:cb:3a:02:9f:f4:dc:ee:6f:10:40:66:aa:
2e:6b:a7:30:54:be:7b:3d:d6:68:94:7c:5e:38:40:23:88:4b:
a6:8d:92:e4:3e:e9:4a:ac:db:3a:43:1e:66:79:8e:a9:e1:b0:
b2:da:8a:f2:2b:c9:4c:ec:40:2b:88:f2:79:bf:67:8b:14:50:
16:9b:45:4b:17:a3:aa:33:cd:1e:a8:e2:df:88:89:e6:00:55:
2e:b2:ab:d6:11:87:8f:36:35:32:8d:85:58:c2:61:6e:59:1f:
59:ba:db:fc:e8:8c:0b:70:fb:ac:df:3b:95:42:61:04:8a:e9:
19:fd:be:58:c9:f4:1d:fe:67:f2:3b:fa:75:03:86:ca:54:a1:
6b:c5:03:fc:d2:e1:14:28:f3:f6:d1:33:00:65:f1:09:88:c9:
0a:43:c6:37:87:09:31:c7:2e:0f:13:e0:bb:74:f5:69:c0:ab:
05:bf:22:da:1a:92:5a:7c:1b:4a:44:a1:c8:b1:07:e6:42:04:
6a:37:4a:c4:9e:93:47:00:fc:47:fe:ff:63:8a:ac:ec:fb:20:
a3:d2:cc:11:cb:c9:4a:70:41:53:a5:56:3d:84:f6:4c:10:91:
4a:11:25:fc:9c:6b:07:0a:10:fe:0d:ae:a8:bb:2a:d0:7d:2e:
28:6b:f6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:17 2025 by rpki-client