Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WAj08lAiW3EtOzEUaHSUqGfbv68.roa
File: WAj08lAiW3EtOzEUaHSUqGfbv68.roa (raw, json)
Hash identifier: u3YQ4kIUbj523r587qWrtkC/ci+8CYQAD1t4J+Fnx60=
Subject key identifier: 58:08:F4:F2:50:22:5B:71:2D:3B:31:14:68:74:94:A8:67:DB:BF:AF
Certificate issuer: /CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Certificate serial: 01885D379963C8D4D41E1868C8CF2D263B93
Authority key identifier: 07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WAj08lAiW3EtOzEUaHSUqGfbv68.roa
Signing time: Sat 27 May 2023 12:38:24 +0000
ROA not before: Sat 27 May 2023 12:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 91.103.82.0/24 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5d:37:99:63:c8:d4:d4:1e:18:68:c8:cf:2d:26:3b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Validity
Not Before: May 27 12:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5808f4f250225b712d3b3114687494a867dbbfaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c2:33:f7:bc:a4:bf:b3:54:ad:60:00:44:fa:
53:8c:28:13:fe:8d:35:ee:06:02:81:fc:cd:35:74:
d0:9d:96:d5:9b:8b:47:c8:11:90:1b:c6:30:de:4c:
b2:3a:9d:b1:38:4a:59:a6:09:54:43:f3:7d:83:d9:
33:95:d0:63:fc:d1:ea:dc:bf:25:83:82:98:51:4a:
a8:7a:11:2e:2d:b4:59:6d:d0:eb:44:f5:7b:f2:97:
e7:4e:9e:15:3c:ac:61:f3:d5:97:7b:71:dc:d2:15:
59:7b:61:f2:fa:4e:c8:ff:ed:8b:6e:72:a3:75:c2:
9f:93:3c:8d:d0:e1:f9:0f:ad:38:91:66:0f:63:b7:
da:16:6d:f5:a1:65:da:f5:a0:a5:cf:82:29:ba:31:
52:41:6e:c3:82:32:81:2a:32:b9:97:f2:74:c7:3c:
24:11:0e:3d:4c:4b:f1:1f:c6:01:a2:cb:dc:b6:2f:
56:3c:af:ef:23:11:e1:07:9d:ef:f2:90:d2:a0:a9:
ba:e2:18:a6:30:ba:a9:bf:7c:e4:4f:14:2f:8f:92:
84:0c:00:4a:ea:7d:b3:85:fa:59:f2:30:34:99:c7:
b1:1a:07:22:c5:90:06:ba:99:1a:66:62:0b:28:4a:
e5:da:71:14:d8:ea:27:9d:e0:c0:b4:aa:bd:49:eb:
3f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:08:F4:F2:50:22:5B:71:2D:3B:31:14:68:74:94:A8:67:DB:BF:AF
X509v3 Authority Key Identifier:
keyid:07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/WAj08lAiW3EtOzEUaHSUqGfbv68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/B9dTNfd79CQJdid7HdDhm7I6jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.82.0/24
Signature Algorithm: sha256WithRSAEncryption
66:13:29:1d:e3:35:3e:d9:1c:47:52:9e:57:1a:80:4f:bf:f8:
39:8c:10:49:dd:af:4e:b0:4f:33:1f:9f:bd:7f:e4:d9:25:12:
82:db:62:fe:83:b3:bf:dd:17:00:66:c3:24:ac:b6:f0:20:a8:
8b:b8:c5:b1:a1:59:c8:1b:a8:a1:56:9f:11:c3:fb:c3:a0:74:
fe:61:06:4b:17:73:c6:b8:a1:d3:ce:5c:ea:9d:56:2e:f7:47:
f2:ef:4c:dc:e2:27:f5:2c:45:d5:09:58:03:47:41:ab:74:7e:
55:0d:c9:7c:c3:d6:d1:47:8c:c5:bc:5e:94:a5:2b:05:2c:fa:
10:e2:81:37:08:aa:fc:9c:1c:66:d3:e1:c6:f1:b9:54:79:bf:
2d:6c:32:6e:58:2f:c2:68:40:41:f3:cd:99:8b:f9:64:8a:0e:
07:2b:a0:8b:4c:e6:d7:4e:dd:89:ac:d6:49:00:92:f5:7a:b6:
96:c1:ae:41:ec:42:78:1b:8f:59:0e:49:a2:ae:16:64:cf:ad:
3b:7a:e6:92:63:f9:0f:18:86:37:c3:d3:0c:2e:47:35:67:15:
36:dd:7d:88:7f:b3:da:f0:87:4a:72:fc:9e:53:3e:78:3e:8a:
c3:4d:30:86:0f:93:fd:6d:f9:e5:18:24:4a:c7:3d:a7:2a:f3:
18:2c:f8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:19:51 2025 by rpki-client