Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e3b6fc-ef63-4c06-a304-f3b5e80250dd/1/uRL2-QpZ_y3BNEXUKc5W4IZYS1U.roa
File: uRL2-QpZ_y3BNEXUKc5W4IZYS1U.roa (raw, json)
Hash identifier: +yGb9FRG9uRxekkF7SLaEYaEC3wmh6fUrjMc7pYiSD4=
Subject key identifier: B9:12:F6:F9:0A:59:FF:2D:C1:34:45:D4:29:CE:56:E0:86:58:4B:55
Certificate issuer: /CN=7c590b733c56e14ebac69f7b44d4bc954e9370e3
Certificate serial: 038F290E
Authority key identifier: 7C:59:0B:73:3C:56:E1:4E:BA:C6:9F:7B:44:D4:BC:95:4E:93:70:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fFkLczxW4U66xp97RNS8lU6TcOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e3b6fc-ef63-4c06-a304-f3b5e80250dd/1/uRL2-QpZ_y3BNEXUKc5W4IZYS1U.roa
Signing time: Sat 01 Jan 2022 16:02:13 +0000
ROA not before: Sat 01 Jan 2022 16:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197602
IP address blocks: 91.224.178.0/24 maxlen: 24
91.224.179.0/24 maxlen: 24
2001:678:f58::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59713806 (0x38f290e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c590b733c56e14ebac69f7b44d4bc954e9370e3
Validity
Not Before: Jan 1 16:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b912f6f90a59ff2dc13445d429ce56e086584b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fa:d3:a1:e3:54:cd:82:01:22:b4:ee:2a:8d:
21:30:82:65:81:8b:7f:50:f4:8b:c6:3a:98:46:7c:
da:e1:9b:e2:ee:d4:4a:84:83:3d:8e:7d:a1:20:32:
6c:20:20:09:da:69:1c:3f:c1:33:e7:86:d9:74:b7:
a2:4d:c4:53:f8:3a:8e:78:0c:64:60:e4:67:de:77:
2c:2a:b9:f4:81:33:53:da:c7:32:ce:72:a8:83:f7:
c5:65:3f:d6:8c:e4:4f:c5:6a:53:a4:4b:e2:61:84:
ba:78:74:6c:c8:75:27:42:7d:bb:bd:98:44:e8:6d:
d9:d9:c3:fc:36:bd:b0:36:57:54:a4:e5:ca:95:af:
92:2f:dc:ce:45:92:e7:e7:a1:41:31:8e:f2:18:e5:
bb:88:a5:ac:30:d5:bb:f0:97:ae:cc:5b:f9:c5:2a:
d9:dd:6b:a9:52:d5:6d:3d:f8:82:84:d5:1a:17:ac:
04:21:23:c8:52:8a:a0:06:c7:fe:4d:d1:f6:e2:a1:
34:2b:69:68:5a:c6:0c:35:6c:05:27:56:ea:9b:60:
9e:2e:d6:f9:50:d7:8e:d0:fd:96:27:ea:cc:c4:8e:
dd:55:e0:d7:c2:ce:c3:72:40:91:3c:74:e3:cd:b9:
9f:52:ef:cd:39:94:9b:72:0f:28:29:2a:fa:ec:43:
0c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:12:F6:F9:0A:59:FF:2D:C1:34:45:D4:29:CE:56:E0:86:58:4B:55
X509v3 Authority Key Identifier:
keyid:7C:59:0B:73:3C:56:E1:4E:BA:C6:9F:7B:44:D4:BC:95:4E:93:70:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fFkLczxW4U66xp97RNS8lU6TcOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e3b6fc-ef63-4c06-a304-f3b5e80250dd/1/uRL2-QpZ_y3BNEXUKc5W4IZYS1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e3b6fc-ef63-4c06-a304-f3b5e80250dd/1/fFkLczxW4U66xp97RNS8lU6TcOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.178.0/23
IPv6:
2001:678:f58::/48
Signature Algorithm: sha256WithRSAEncryption
55:84:50:d9:61:18:da:67:69:80:d5:16:cd:f4:87:12:6c:da:
05:5b:88:e4:0c:0a:93:2c:2d:7f:bd:12:cb:96:bd:37:d6:a1:
8c:1e:33:f0:8a:7d:62:1d:3d:6f:29:18:76:73:52:01:81:10:
86:e2:19:50:4e:df:b5:a8:90:4f:7d:ff:1c:f2:8e:b5:a7:82:
fa:dd:b2:be:91:0b:c6:0c:36:9e:b5:7f:c1:6a:ff:ef:89:03:
29:72:3c:72:7f:d4:a3:41:f7:70:e5:f1:5c:98:65:13:1a:55:
14:fd:25:e4:f3:0a:1b:33:1a:07:d1:91:76:76:fe:24:7a:f4:
77:c0:41:74:87:b3:c0:c2:bc:7f:89:c8:13:05:36:d1:e9:48:
a8:91:66:7d:eb:65:a8:58:55:8d:45:16:fd:f2:87:b8:8b:46:
06:ea:f0:c3:bd:55:bd:bc:af:46:1d:27:7b:23:3f:17:f7:8f:
1f:6e:cc:47:5e:ef:ae:86:08:f6:27:7e:43:ac:88:5c:17:02:
88:c5:4c:77:6c:51:1f:3d:b9:3b:b7:f9:8c:90:04:61:87:10:
fc:88:f5:42:f4:df:02:c6:87:c6:e2:85:97:4a:00:22:6d:99:
46:c9:51:d5:62:67:29:16:60:52:68:75:f5:5c:ad:fd:52:7d:
93:99:a6:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:40 2025 by rpki-client