Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d07b15-2855-4388-bcb3-50e129c8a36c/1/fB0fRC30f1bsFo33Ea4aq-B-FV4.roa
File: fB0fRC30f1bsFo33Ea4aq-B-FV4.roa (raw, json)
Hash identifier: 3JpaCV/TZsi3J6hlA8FkqL1InD5JXE2JpKhS4CG3s2Y=
Subject key identifier: 7C:1D:1F:44:2D:F4:7F:56:EC:16:8D:F7:11:AE:1A:AB:E0:7E:15:5E
Certificate issuer: /CN=262f7322fbe9743eb471383a090b35b5296a2a8a
Certificate serial: 018571D7A198486CB2425842F7C19564AD95
Authority key identifier: 26:2F:73:22:FB:E9:74:3E:B4:71:38:3A:09:0B:35:B5:29:6A:2A:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ji9zIvvpdD60cTg6CQs1tSlqKoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d07b15-2855-4388-bcb3-50e129c8a36c/1/fB0fRC30f1bsFo33Ea4aq-B-FV4.roa
Signing time: Mon 02 Jan 2023 09:37:14 +0000
ROA not before: Mon 02 Jan 2023 09:37:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28985
IP address blocks: 91.216.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a1:98:48:6c:b2:42:58:42:f7:c1:95:64:ad:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=262f7322fbe9743eb471383a090b35b5296a2a8a
Validity
Not Before: Jan 2 09:37:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1d1f442df47f56ec168df711ae1aabe07e155e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9e:c2:df:1d:48:79:d1:09:cd:f1:60:e2:dd:
03:03:2c:5d:05:bc:ef:2c:5e:a4:02:35:1e:c1:a8:
74:34:d9:c4:7a:ec:21:7f:1c:04:fa:dd:58:4c:59:
b3:8f:a9:94:6c:32:a5:82:64:1f:30:b9:17:0a:df:
3e:16:6c:43:ac:5c:73:1f:aa:fc:cb:e3:c5:c5:0a:
cd:dd:81:b6:b6:2d:e1:c5:cb:76:c4:6b:ba:76:c9:
64:fe:c5:c1:1f:87:74:42:0b:23:4e:86:2e:f8:8f:
18:8a:ab:a3:de:b6:0a:33:31:92:6a:12:fe:d7:48:
34:52:da:04:53:7d:8b:b0:54:2c:f0:4b:bc:9c:76:
2a:20:c0:4f:03:0a:61:a7:f7:85:c7:74:5d:b5:9a:
25:44:8e:42:c0:bd:80:73:fc:70:d2:fe:6e:d3:05:
73:c3:c3:80:6d:81:02:15:34:00:6e:81:29:b3:22:
a3:24:c6:d5:33:eb:59:a4:61:ce:cd:66:e3:12:a9:
3c:76:8d:ef:01:bd:55:1e:6e:77:1b:3b:bb:4c:21:
02:1b:b2:40:0b:11:47:1d:1a:8a:b7:88:39:a1:64:
57:29:b1:92:05:c7:ec:e1:0e:1a:61:b6:7b:e3:7d:
86:ae:3d:a6:82:17:91:77:74:70:ef:c2:24:d5:36:
37:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1D:1F:44:2D:F4:7F:56:EC:16:8D:F7:11:AE:1A:AB:E0:7E:15:5E
X509v3 Authority Key Identifier:
keyid:26:2F:73:22:FB:E9:74:3E:B4:71:38:3A:09:0B:35:B5:29:6A:2A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ji9zIvvpdD60cTg6CQs1tSlqKoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d07b15-2855-4388-bcb3-50e129c8a36c/1/fB0fRC30f1bsFo33Ea4aq-B-FV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d07b15-2855-4388-bcb3-50e129c8a36c/1/Ji9zIvvpdD60cTg6CQs1tSlqKoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.109.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e6:79:4c:a2:50:e6:2c:27:b4:78:22:51:65:50:63:5d:f7:
17:35:2b:09:4a:a4:06:7f:89:dd:d2:6d:7b:07:9e:80:b0:61:
89:09:7e:48:33:2c:6a:e2:dc:1a:e4:10:7f:36:6a:23:97:38:
ce:28:1a:23:fd:d4:eb:b3:3f:f8:e5:0f:c7:f9:f9:13:c0:3f:
04:bf:94:ea:31:02:4b:2f:c2:25:4a:3e:28:02:be:98:e6:35:
ee:a9:cd:30:e2:50:a2:fd:b6:d6:16:49:94:69:50:ad:6e:ce:
4f:27:ad:65:2f:d8:36:1a:72:d6:1f:8c:fc:7b:7c:ad:fa:2c:
0c:eb:ae:47:32:cd:c5:6f:eb:45:fd:5d:8f:5d:89:04:b0:3f:
d6:aa:39:56:3f:7f:ff:b2:fa:ad:44:90:87:1f:ab:3a:8d:dd:
69:50:6f:0d:e1:b0:8b:3f:a1:a4:18:03:ba:34:03:43:49:a2:
be:01:c1:60:c9:ca:a9:22:2d:e4:78:53:1c:1f:c4:b1:ea:61:
6b:7a:d4:16:7a:e4:a8:ec:55:4c:2c:03:0c:1d:4b:e5:21:7b:
c2:99:bf:55:e8:84:c3:ef:97:a1:1a:92:9e:dc:cd:df:17:7a:
87:95:7d:f6:8a:48:a9:20:c1:f5:18:27:86:9e:ec:7e:cb:9a:
17:a0:9b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:54:12 2025 by rpki-client