Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/721e70-f442-4252-aea0-ca12f53d7b34/1/7NsddcCTnrKUzmX59kTHqq1pA2Y.roa
File: 7NsddcCTnrKUzmX59kTHqq1pA2Y.roa (raw, json)
Hash identifier: +cJCYEfpb38Df3twXibfwD4Odtw1xqcvfiYg3YeYO98=
Subject key identifier: EC:DB:1D:75:C0:93:9E:B2:94:CE:65:F9:F6:44:C7:AA:AD:69:03:66
Certificate issuer: /CN=7b0af9738c9f799b56f4b9017bf821b4fca135b8
Certificate serial: 054E2CA0
Authority key identifier: 7B:0A:F9:73:8C:9F:79:9B:56:F4:B9:01:7B:F8:21:B4:FC:A1:35:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewr5c4yfeZtW9LkBe_ghtPyhNbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/721e70-f442-4252-aea0-ca12f53d7b34/1/7NsddcCTnrKUzmX59kTHqq1pA2Y.roa
Signing time: Sat 01 Jan 2022 02:01:17 +0000
ROA not before: Sat 01 Jan 2022 02:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62385
IP address blocks: 193.104.151.0/24 maxlen: 24
2a10:7c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89009312 (0x54e2ca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0af9738c9f799b56f4b9017bf821b4fca135b8
Validity
Not Before: Jan 1 02:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecdb1d75c0939eb294ce65f9f644c7aaad690366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:41:6a:31:f2:31:fe:f1:e6:6e:9b:2c:29:
c4:72:3f:16:53:b3:f3:56:72:3c:d1:ab:7c:1e:8a:
1e:5d:33:af:02:d6:2f:88:51:e4:01:27:11:90:b5:
c7:cd:5d:4e:6c:82:2c:63:58:db:45:2c:94:02:6c:
e5:b2:a6:44:d9:fa:9c:c4:d0:3d:16:a5:3a:f9:b2:
3a:14:bb:70:76:3d:68:fe:89:e0:82:76:e2:1a:a1:
5b:e9:b0:e8:f6:18:88:06:b8:a9:38:ff:bb:a4:40:
c6:56:e6:1a:77:13:89:a2:9d:5e:49:dd:52:b2:9d:
b2:3f:33:e9:96:b1:bb:75:50:6e:08:ac:04:cd:bd:
0e:52:b3:e7:12:98:00:32:6b:e1:26:58:19:c7:1a:
5e:a0:6b:15:35:98:c8:d1:0a:62:76:7e:a3:91:fc:
c1:40:e0:05:05:a6:bf:d0:e5:20:04:25:a7:15:90:
af:51:d1:b1:2f:4b:89:30:58:5f:84:f6:3f:aa:42:
d0:a2:60:8e:de:68:22:19:92:7e:68:c8:70:98:79:
74:3f:45:56:36:51:c9:de:40:40:c9:7a:99:4c:d5:
e5:8a:d3:6f:cc:20:6b:95:7c:50:be:b6:56:4d:4c:
49:c0:54:d9:40:10:9d:ab:a0:0c:aa:ef:c3:8b:c1:
66:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DB:1D:75:C0:93:9E:B2:94:CE:65:F9:F6:44:C7:AA:AD:69:03:66
X509v3 Authority Key Identifier:
keyid:7B:0A:F9:73:8C:9F:79:9B:56:F4:B9:01:7B:F8:21:B4:FC:A1:35:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewr5c4yfeZtW9LkBe_ghtPyhNbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/721e70-f442-4252-aea0-ca12f53d7b34/1/7NsddcCTnrKUzmX59kTHqq1pA2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/721e70-f442-4252-aea0-ca12f53d7b34/1/ewr5c4yfeZtW9LkBe_ghtPyhNbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.151.0/24
IPv6:
2a10:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
34:08:50:51:dc:c7:9c:0a:35:5b:3c:c5:da:1a:a6:b7:5f:01:
73:c0:0d:b9:86:23:b0:65:bc:0c:5f:39:48:2d:85:f9:e4:73:
89:18:80:84:54:d6:3e:79:8e:32:51:b4:6f:b1:ee:4e:42:c2:
2c:1a:89:2c:ea:ba:54:39:8d:dc:d8:23:f3:b7:84:23:88:96:
25:fa:51:7a:4d:7f:92:6a:a7:71:2b:63:14:56:c1:2a:b0:f5:
4d:93:55:79:38:a9:42:4f:fe:82:8c:bf:e9:1e:64:f7:18:e9:
50:59:27:40:8d:78:be:61:ff:99:51:13:1a:71:24:db:1a:48:
7e:6e:35:6d:58:cd:b9:7e:51:1a:46:32:d6:f8:d9:d2:60:21:
4e:52:cd:1c:50:7f:d7:46:45:b0:c2:79:52:a4:eb:a0:e3:2b:
b7:10:80:97:ba:e6:49:df:e8:8f:72:ff:53:0f:3f:7d:65:f6:
6f:63:23:41:23:c8:25:94:17:27:01:40:3b:e9:f8:77:73:40:
50:3f:3c:72:51:95:7e:49:59:5b:f5:40:05:db:85:ab:aa:a8:
e6:a2:12:2a:df:90:5f:23:d1:e1:5f:6d:5e:f5:67:33:09:03:
ca:3e:08:08:2b:e3:3d:86:6c:25:0f:88:d4:ab:ef:bb:46:60:
37:a9:c5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:12:51 2025 by rpki-client