Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c15cf7-422d-4a8a-8f4c-2d54e582b5e0/1/E9-xlHN4mrAtcTjp2T0BHi6Sfwg.roa
File: E9-xlHN4mrAtcTjp2T0BHi6Sfwg.roa (raw, json)
Hash identifier: VxD2TKmvcy+ggMtGWhfib9G6vRtN7OKqi6wTgmwf9p0=
Subject key identifier: 13:DF:B1:94:73:78:9A:B0:2D:71:38:E9:D9:3D:01:1E:2E:92:7F:08
Certificate issuer: /CN=874fc0fba1b836c23ff6df468c8abf7d3a8216ce
Certificate serial: 03BF0C2F
Authority key identifier: 87:4F:C0:FB:A1:B8:36:C2:3F:F6:DF:46:8C:8A:BF:7D:3A:82:16:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0_A-6G4NsI_9t9GjIq_fTqCFs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c15cf7-422d-4a8a-8f4c-2d54e582b5e0/1/E9-xlHN4mrAtcTjp2T0BHi6Sfwg.roa
Signing time: Sat 01 Jan 2022 06:03:54 +0000
ROA not before: Sat 01 Jan 2022 06:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49589
IP address blocks: 91.214.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62852143 (0x3bf0c2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874fc0fba1b836c23ff6df468c8abf7d3a8216ce
Validity
Not Before: Jan 1 06:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13dfb19473789ab02d7138e9d93d011e2e927f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:6e:a5:1a:48:1f:f6:b0:96:2d:56:ff:d8:
fa:89:a4:16:61:8c:10:a8:51:2a:07:8e:f5:48:2c:
98:57:76:8e:61:c5:e7:57:fe:0c:ee:f2:27:67:dc:
09:7c:50:f6:38:00:96:55:5e:3e:47:64:3c:8c:5a:
78:bd:2a:79:c7:0e:a5:4f:f7:f2:23:77:61:86:0b:
74:0e:24:e6:10:3b:1c:32:69:81:3d:12:72:6b:09:
af:67:f3:9a:89:10:da:bc:86:02:23:22:48:fb:68:
ec:eb:bb:e1:6b:f7:59:07:8a:cc:d2:77:cc:ea:49:
d1:a3:c6:81:3c:e7:cd:0d:f2:a2:83:6d:69:11:c0:
d3:33:0f:5a:3a:12:cc:44:5c:3c:20:95:f5:54:e6:
b8:a8:88:17:c1:b2:82:5c:ea:e6:48:94:4c:c1:c3:
ea:4f:27:4d:32:a0:a0:ca:3f:ca:d8:d9:68:15:fc:
8f:0c:7c:c4:69:40:b0:73:21:ec:f0:a7:76:34:b9:
ed:d2:fa:2d:3d:58:a2:0e:ad:cc:ff:91:6b:c4:c9:
10:e2:76:1d:38:1c:fb:bd:66:2d:32:d6:01:40:cf:
3f:50:76:e1:1a:88:18:7f:f8:96:68:ac:a5:09:4b:
4e:11:83:0f:d1:c6:24:16:e3:e6:f9:33:5d:c9:ca:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DF:B1:94:73:78:9A:B0:2D:71:38:E9:D9:3D:01:1E:2E:92:7F:08
X509v3 Authority Key Identifier:
keyid:87:4F:C0:FB:A1:B8:36:C2:3F:F6:DF:46:8C:8A:BF:7D:3A:82:16:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0_A-6G4NsI_9t9GjIq_fTqCFs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c15cf7-422d-4a8a-8f4c-2d54e582b5e0/1/E9-xlHN4mrAtcTjp2T0BHi6Sfwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c15cf7-422d-4a8a-8f4c-2d54e582b5e0/1/h0_A-6G4NsI_9t9GjIq_fTqCFs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.244.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:96:69:94:6b:e0:2c:ef:3b:e1:20:a6:54:2a:cb:24:45:66:
34:58:9b:64:22:6d:b7:27:d7:35:40:0e:a4:f1:6c:85:85:52:
a8:e5:0d:d7:ec:6a:3b:e7:b1:9c:82:de:43:b3:2d:11:8f:1a:
17:0d:2c:8b:13:b6:82:83:7a:36:e5:77:ba:32:d4:e0:03:c5:
60:43:74:32:58:05:88:95:ea:5b:c8:78:0e:34:af:98:59:47:
d4:f2:1d:51:73:de:dd:9f:19:40:55:f2:80:4e:97:fc:db:16:
f5:a4:72:72:e5:b4:02:ce:70:7c:e3:1f:55:c5:7e:6b:2a:a1:
20:7b:07:ab:a3:90:bf:40:34:a4:08:ee:62:31:d9:6c:3b:b4:
e9:1e:f9:27:54:82:7a:64:65:3d:12:52:7d:3f:b8:34:b9:5d:
d7:3d:04:ec:68:0d:f2:bb:98:3a:f8:f4:46:62:38:06:88:7b:
46:f4:cc:4f:32:1c:3f:8c:af:43:cc:0b:10:fc:a7:5d:86:44:
ba:ba:a1:67:ad:91:0a:57:75:b1:ee:75:9d:07:1a:1e:05:93:
87:01:c5:30:82:a9:71:e2:f4:bd:2e:9d:50:9e:d0:dc:83:90:
a4:b9:9d:14:c1:3f:52:b1:81:51:16:ce:b0:b9:ce:6a:a3:c8:
7c:4c:9e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:30:39 2025 by rpki-client