Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/5LCXCgCa4Qj0B8xdTN0sWzwsA7s.roa
File: 5LCXCgCa4Qj0B8xdTN0sWzwsA7s.roa (raw, json)
Hash identifier: ZuM5ZepcMmmuT13CulGWodHqJVIVTvrwWyJd+N21s5Y=
Subject key identifier: E4:B0:97:0A:00:9A:E1:08:F4:07:CC:5D:4C:DD:2C:5B:3C:2C:03:BB
Certificate issuer: /CN=8d892f4ded92257e67ba74f1762c8bc914ebd61c
Certificate serial: 08E50430
Authority key identifier: 8D:89:2F:4D:ED:92:25:7E:67:BA:74:F1:76:2C:8B:C9:14:EB:D6:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkvTe2SJX5nunTxdiyLyRTr1hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/5LCXCgCa4Qj0B8xdTN0sWzwsA7s.roa
Signing time: Sat 01 Jan 2022 12:55:28 +0000
ROA not before: Sat 01 Jan 2022 12:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199121
IP address blocks: 91.244.180.0/24 maxlen: 24
2001:67c:7a4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149226544 (0x8e50430)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d892f4ded92257e67ba74f1762c8bc914ebd61c
Validity
Not Before: Jan 1 12:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4b0970a009ae108f407cc5d4cdd2c5b3c2c03bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:c1:4e:54:a8:90:18:c4:d2:97:3a:87:ab:
af:6b:0a:e8:7e:a5:74:55:41:65:34:e9:59:44:f3:
a7:b9:75:c3:e8:ea:80:d8:93:5e:32:9e:57:00:54:
ce:6f:d5:cc:3e:60:ef:ea:4d:d4:dc:b6:34:d4:d5:
95:59:2d:33:9d:bc:2a:41:18:06:52:32:f8:95:49:
4a:f2:2f:b9:f6:72:61:3a:4c:ac:4c:3f:df:57:20:
e4:a1:9e:f3:5b:0d:bc:e7:3b:6d:3e:bf:ca:6e:92:
25:16:65:5a:e9:4a:cf:60:57:83:88:41:ce:c5:1f:
94:90:7b:10:9e:2b:c2:01:17:da:f0:3e:24:c3:4e:
46:8b:ec:f6:55:ba:ba:3f:19:f6:4d:62:37:0f:47:
e1:d4:c6:aa:d9:f4:11:01:94:ce:31:80:7e:9f:c0:
74:e5:b5:28:d7:c2:19:f6:35:72:d6:ca:d3:3c:e2:
90:71:11:7c:4f:92:c4:4b:b9:a4:de:0d:41:2b:7c:
e2:53:06:fc:ea:89:df:a4:4d:bb:2f:6e:81:e3:4f:
77:2b:84:8a:09:10:dc:49:b5:e2:99:d5:c9:a4:26:
68:dd:22:e4:07:46:02:13:e1:de:ff:fa:27:a4:81:
20:fd:fd:5b:9d:5d:8a:7a:f0:2f:4a:e9:d0:6e:91:
1e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B0:97:0A:00:9A:E1:08:F4:07:CC:5D:4C:DD:2C:5B:3C:2C:03:BB
X509v3 Authority Key Identifier:
keyid:8D:89:2F:4D:ED:92:25:7E:67:BA:74:F1:76:2C:8B:C9:14:EB:D6:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkvTe2SJX5nunTxdiyLyRTr1hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/5LCXCgCa4Qj0B8xdTN0sWzwsA7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/jYkvTe2SJX5nunTxdiyLyRTr1hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.180.0/24
IPv6:
2001:67c:7a4::/48
Signature Algorithm: sha256WithRSAEncryption
ab:de:a9:cd:23:a1:95:a1:68:ab:7f:37:ba:49:f6:91:ae:63:
eb:dd:21:4c:29:61:c4:ec:d9:f6:ff:fe:dd:dc:14:ba:10:84:
b7:2b:27:01:37:42:43:cc:cf:fd:89:ea:54:34:09:36:06:79:
be:10:89:1f:bc:42:ed:11:9f:4c:b8:cd:8b:68:06:62:e1:8b:
69:19:38:5f:e4:fb:61:9d:07:40:19:c7:e6:26:8e:87:86:b9:
94:a5:e0:ef:d9:bc:69:92:a8:64:35:dd:03:87:43:85:99:07:
50:ee:34:60:ce:9d:b9:a8:fc:61:af:94:7f:04:d2:fb:a9:ac:
23:dc:1f:95:d3:88:3b:c8:dc:10:7e:23:de:56:0f:68:3e:b5:
d9:48:f4:00:d4:17:c5:75:ba:5b:e3:71:ec:b9:c3:90:d2:24:
9c:75:19:ea:4a:db:c6:63:9e:15:cd:2e:49:95:63:0f:a6:44:
09:56:5c:5a:75:7c:eb:f6:f5:19:19:a4:36:31:8a:e8:ce:80:
94:f5:67:ba:e3:61:69:24:56:2f:cd:48:72:b5:cf:a5:38:30:
e3:21:f7:e3:a1:a0:99:65:07:11:ee:fc:97:b1:67:31:80:ea:
8a:2d:eb:7c:6e:d6:00:4b:ee:6a:90:44:b9:72:83:ae:34:71:
50:80:cc:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:02 2025 by rpki-client