Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/CXhN6ISX62xAmw-FhccxJRY9eCI.roa
File: CXhN6ISX62xAmw-FhccxJRY9eCI.roa (raw, json)
Hash identifier: xJOSMJuDz+TOdrYbUqdF1PCz7Qavre+Mt6620MLLRoI=
Subject key identifier: 09:78:4D:E8:84:97:EB:6C:40:9B:0F:85:85:C7:31:25:16:3D:78:22
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018571279351BF8E5F41AB191543A5BE58AD
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/CXhN6ISX62xAmw-FhccxJRY9eCI.roa
Signing time: Mon 02 Jan 2023 06:24:57 +0000
ROA not before: Mon 02 Jan 2023 06:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212423
IP address blocks: 188.93.247.128/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:93:51:bf:8e:5f:41:ab:19:15:43:a5:be:58:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 06:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09784de88497eb6c409b0f8585c73125163d7822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:39:0e:e7:db:9a:38:27:8e:ca:56:ae:68:9f:
eb:01:ef:91:77:98:57:3b:f4:29:43:a4:b9:4e:6f:
cd:ac:02:5c:e6:2c:0d:f3:6e:c8:8c:2e:17:07:bf:
d8:05:87:8e:a8:6f:46:94:50:99:5c:05:d8:81:7d:
3f:84:d2:18:53:b2:e1:bb:fe:ff:9a:18:ea:e5:cd:
2a:bc:0d:c1:30:21:13:67:27:e2:ff:ac:cd:e7:2a:
c9:7c:77:41:df:af:0f:69:9b:13:11:ae:bc:63:79:
87:9b:a9:ba:47:ed:c0:3b:17:b6:92:40:ab:48:5a:
61:64:2e:30:cc:e4:21:9b:5a:d2:4c:ea:54:05:29:
16:3d:05:0b:51:e7:59:fb:23:c8:ce:71:2d:55:2b:
ec:e3:7f:7b:56:64:08:f5:3e:84:ec:01:69:73:08:
3c:87:06:ca:d2:80:72:43:0f:78:f7:06:f2:17:ce:
6d:f6:ae:bb:fb:9c:e8:5d:4a:16:5f:68:13:ff:e8:
d2:91:02:0c:0d:eb:bc:01:ae:de:58:40:b9:a8:cc:
36:88:59:a4:28:65:52:5d:29:d2:94:68:f0:f6:db:
70:00:4c:0f:bd:86:1c:82:a5:99:cc:48:c5:a2:a7:
cd:96:1e:c2:a9:f1:80:79:37:7c:a9:59:66:05:85:
d9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:4D:E8:84:97:EB:6C:40:9B:0F:85:85:C7:31:25:16:3D:78:22
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/CXhN6ISX62xAmw-FhccxJRY9eCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.247.128/28
Signature Algorithm: sha256WithRSAEncryption
53:b4:32:2d:16:40:8b:6a:13:f8:5e:65:1d:b1:07:d5:b8:b9:
f1:c0:42:27:e3:e3:c6:7a:96:27:6e:bb:32:4d:35:58:75:fd:
3d:8d:5d:35:45:34:3c:9d:3e:ab:3c:d2:9a:5b:f0:8f:a3:1f:
a2:c5:1f:3f:c0:48:7d:ae:fa:58:89:9a:b4:aa:15:62:26:73:
1e:fa:89:6e:db:cc:22:51:10:b9:02:14:83:2b:17:50:0d:4c:
6a:73:bc:66:6e:33:da:eb:e1:a1:8c:bf:8f:ab:0f:18:69:b7:
dd:32:6f:f7:16:37:f3:c5:cc:46:80:39:b0:a8:01:a8:b6:6b:
ec:70:62:d3:c1:97:ad:2b:23:c9:c9:89:23:84:2b:de:e0:74:
4a:d3:77:a7:a0:44:fb:4e:1d:1a:2c:7c:5f:c2:6d:9b:93:2f:
0f:d9:80:17:db:99:cd:74:18:8d:72:b0:f2:3d:87:2a:77:04:
cb:26:e4:98:e9:da:7a:7b:44:07:22:12:f1:20:50:32:88:57:
cc:01:69:fa:b7:8b:55:c7:0e:a4:3a:7b:ce:2d:51:09:f1:db:
d7:34:a7:03:4b:46:74:6b:56:46:a0:fa:da:e0:b3:4b:a7:69:
38:dd:6a:da:4c:f5:41:6b:e0:bb:62:91:bf:68:db:71:f8:27:
0f:b3:6d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:57:14 2025 by rpki-client