Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/A3gbfGkwOXjUanVlh8guFPyCm2U.roa
File: A3gbfGkwOXjUanVlh8guFPyCm2U.roa (raw, json)
Hash identifier: VP0pYLPE2vx4gY57ieBTuLtSC2Dn1wnDryzV3KpjiCc=
Subject key identifier: 03:78:1B:7C:69:30:39:78:D4:6A:75:65:87:C8:2E:14:FC:82:9B:65
Certificate issuer: /CN=780de16eee947b0a8c75714fc5da6a0259ca1b90
Certificate serial: 185E5F4F
Authority key identifier: 78:0D:E1:6E:EE:94:7B:0A:8C:75:71:4F:C5:DA:6A:02:59:CA:1B:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eA3hbu6UewqMdXFPxdpqAlnKG5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/A3gbfGkwOXjUanVlh8guFPyCm2U.roa
Signing time: Sat 01 Jan 2022 10:58:12 +0000
ROA not before: Sat 01 Jan 2022 10:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8455
IP address blocks: 91.208.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408837967 (0x185e5f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=780de16eee947b0a8c75714fc5da6a0259ca1b90
Validity
Not Before: Jan 1 10:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03781b7c69303978d46a756587c82e14fc829b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:93:75:0f:1f:69:84:d9:e3:38:ff:dd:ba:fa:
b2:18:e1:93:4e:e9:f3:ec:b4:73:7b:d5:b8:98:01:
5b:be:8b:89:af:67:8b:75:98:1e:e3:8f:0a:97:fb:
0a:ff:87:f6:d1:f8:82:98:fb:b4:bc:c2:bf:f6:a5:
b9:63:1a:59:da:1d:02:37:b5:82:2a:20:e6:32:4e:
9f:8c:fc:86:e8:ed:84:bc:70:52:44:96:7f:8a:b3:
8e:0a:04:bf:14:3f:01:08:50:40:ba:4e:7a:b0:ca:
99:cb:da:7c:c4:59:fc:d4:cc:c1:cc:f6:8a:d9:0c:
9e:ab:e6:c0:8a:d6:ba:bb:36:e1:68:7f:98:42:40:
e0:43:7c:0a:3d:b2:a2:86:0e:77:11:76:e8:26:02:
aa:0b:65:c0:c4:8b:29:99:3d:20:2f:18:b3:db:fb:
03:67:6e:43:11:da:0c:30:de:c9:f6:04:9c:d9:8e:
df:98:cb:93:d7:0a:f2:e0:a0:7c:66:79:70:02:16:
21:56:f6:ec:cb:1b:25:df:a0:2a:43:b9:66:60:7f:
14:55:17:db:21:fd:19:a3:3a:49:15:73:1a:d2:c9:
fc:da:24:50:5b:56:b4:80:f6:40:1b:4f:53:c3:e9:
2c:29:fd:7c:d2:9e:c0:05:06:0d:64:06:63:5b:6c:
8a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:78:1B:7C:69:30:39:78:D4:6A:75:65:87:C8:2E:14:FC:82:9B:65
X509v3 Authority Key Identifier:
keyid:78:0D:E1:6E:EE:94:7B:0A:8C:75:71:4F:C5:DA:6A:02:59:CA:1B:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eA3hbu6UewqMdXFPxdpqAlnKG5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/A3gbfGkwOXjUanVlh8guFPyCm2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/eA3hbu6UewqMdXFPxdpqAlnKG5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:0c:a2:ee:ca:66:ae:20:76:ba:9b:02:c2:86:d9:55:8a:b8:
b1:10:f7:f2:f9:8b:8e:5c:1d:5c:d5:fe:82:a7:2d:97:bc:42:
ea:a7:89:8a:5c:0b:89:2b:29:b9:3d:1d:66:66:60:90:58:9e:
ae:53:be:aa:0c:ce:ab:0e:45:66:69:35:9e:d2:79:1e:2a:f5:
d0:6c:89:4b:e7:45:af:12:7d:e8:25:54:48:ac:4b:40:cb:81:
42:47:eb:fb:49:2e:02:f8:e0:06:0b:26:90:87:28:47:2d:56:
e5:62:df:76:c6:9c:b7:eb:66:85:e5:bf:83:22:6a:c5:c4:d6:
4f:21:af:37:19:86:a3:3e:04:d2:40:ab:bd:c3:58:8b:52:18:
cd:ca:dc:28:c1:36:65:7d:74:59:2c:a8:fd:b8:cf:42:aa:17:
0d:cb:c8:f5:ee:3f:a6:8c:8d:ca:5b:8a:f1:a5:64:bc:32:91:
26:e5:71:4b:a8:3b:fe:e1:82:09:a2:eb:e8:42:85:da:48:07:
1b:c1:1e:ca:1d:67:ce:b3:e6:d4:53:2f:f5:d2:cc:62:0b:1a:
fb:3d:e7:60:bf:1b:50:74:4a:86:99:7c:23:a0:1e:2d:14:08:
73:89:25:8c:5b:0e:20:72:00:d4:c9:53:97:87:63:9b:ca:ac:
48:c6:8c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:08:12 2025 by rpki-client