Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3493f6-9636-4fa3-be56-db8030879f51/1/eLFK03txBtDUZeX8Q7DK-coGhto.roa
File: eLFK03txBtDUZeX8Q7DK-coGhto.roa (raw, json)
Hash identifier: 3WToCCVdh6f6SQw/nA76TmGJ6k8z89dQ7+FwC4lowmY=
Subject key identifier: 78:B1:4A:D3:7B:71:06:D0:D4:65:E5:FC:43:B0:CA:F9:CA:06:86:DA
Certificate issuer: /CN=bf7ae3669f847fa27a69b14bb87f8c7bfd799ee0
Certificate serial: 0D42BB
Authority key identifier: BF:7A:E3:66:9F:84:7F:A2:7A:69:B1:4B:B8:7F:8C:7B:FD:79:9E:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v3rjZp-Ef6J6abFLuH-Me_15nuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3493f6-9636-4fa3-be56-db8030879f51/1/eLFK03txBtDUZeX8Q7DK-coGhto.roa
Signing time: Mon 14 Mar 2022 19:19:29 +0000
ROA not before: Mon 14 Mar 2022 19:19:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208309
IP address blocks: 91.231.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869051 (0xd42bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf7ae3669f847fa27a69b14bb87f8c7bfd799ee0
Validity
Not Before: Mar 14 19:19:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78b14ad37b7106d0d465e5fc43b0caf9ca0686da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cd:dc:b1:55:0c:d5:95:1b:1b:5d:01:de:be:
fa:f7:46:69:98:bb:1d:5d:92:7d:5a:c0:6b:80:a9:
8b:ce:b8:ce:9f:2e:77:df:ce:86:14:18:9e:c8:9b:
dd:32:03:fa:be:38:9b:eb:ad:bf:19:43:56:87:37:
54:52:ca:27:39:2f:1d:e9:3d:51:51:ea:53:85:61:
2e:35:1e:9a:69:29:f8:b3:76:b8:9c:2f:0a:77:39:
3a:dd:c7:b9:73:22:b0:03:18:3f:57:4f:33:2f:a2:
58:9b:10:64:c7:65:19:95:69:6a:9d:a6:15:07:2a:
7c:61:2b:8d:d9:5d:94:5e:86:81:e0:7c:bb:5f:ca:
f4:c9:4b:37:0b:a0:82:c3:67:70:02:21:11:a6:58:
cb:be:00:6c:bb:e1:51:0a:73:eb:68:bf:81:ca:ce:
0f:27:47:7f:f0:87:0f:ea:c7:ee:5c:9c:25:6b:2d:
34:e6:a9:3e:8b:75:88:69:75:08:15:da:de:ed:e8:
b8:fd:d7:a6:03:c6:38:98:4a:1c:3e:3b:0e:b1:31:
7c:08:b0:0f:13:a1:d4:82:18:55:6b:95:64:e6:08:
45:20:a1:71:73:01:8a:6a:e9:1b:10:2a:02:48:32:
e1:1a:80:c8:9e:a0:74:7f:81:2b:24:b6:8d:eb:3a:
55:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B1:4A:D3:7B:71:06:D0:D4:65:E5:FC:43:B0:CA:F9:CA:06:86:DA
X509v3 Authority Key Identifier:
keyid:BF:7A:E3:66:9F:84:7F:A2:7A:69:B1:4B:B8:7F:8C:7B:FD:79:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v3rjZp-Ef6J6abFLuH-Me_15nuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3493f6-9636-4fa3-be56-db8030879f51/1/eLFK03txBtDUZeX8Q7DK-coGhto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3493f6-9636-4fa3-be56-db8030879f51/1/v3rjZp-Ef6J6abFLuH-Me_15nuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.34.0/24
Signature Algorithm: sha256WithRSAEncryption
01:83:01:07:67:43:83:6e:02:3e:bc:e0:62:a0:71:de:67:9a:
61:83:95:c7:fc:5a:30:3d:36:e4:9f:c0:59:fc:6d:7d:35:da:
d4:f2:1c:61:3a:9d:55:1f:76:98:5e:89:eb:65:07:ac:e6:c7:
02:9a:9d:8d:0d:9f:77:09:01:12:e7:d6:ba:56:a0:53:7c:ff:
89:03:14:4a:85:d2:37:73:0c:1d:ea:86:89:d2:06:98:10:6a:
87:4a:87:40:c9:29:f1:07:91:27:d5:9f:66:05:55:f2:56:fc:
5e:7d:34:2e:fa:93:b9:d0:b0:19:a2:20:9d:48:43:05:3d:30:
c5:3a:a8:57:b6:09:9e:e5:c3:b4:53:fe:96:ed:9a:c4:c5:44:
ad:44:68:3e:cf:d8:84:71:6c:cc:c2:de:ce:5c:02:bc:7c:28:
9e:50:0c:00:9e:80:ca:d3:f4:d9:f5:37:12:04:0f:26:27:53:
51:d7:78:02:16:43:38:c2:4a:61:31:52:57:73:fa:06:3d:f2:
95:cb:2d:82:9b:8d:4e:a8:f2:cf:4d:f3:8e:aa:8d:ed:d6:11:
99:63:42:fb:c7:7d:e3:f6:95:47:20:98:eb:86:ed:7f:e4:36:
fa:db:cc:d5:4a:83:d3:e6:00:25:c5:5c:e5:25:04:23:e6:b8:
98:38:26:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:26 2025 by rpki-client