Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/gG27sXcM8bxy8WWGuTriuleWY2M.roa
File: gG27sXcM8bxy8WWGuTriuleWY2M.roa (raw, json)
Hash identifier: +yAxnMBbQeQT+Xe5RL/XvuszbbMHwh/SSyc0wywL+RM=
Subject key identifier: 80:6D:BB:B1:77:0C:F1:BC:72:F1:65:86:B9:3A:E2:BA:57:96:63:63
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 37D91331
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/gG27sXcM8bxy8WWGuTriuleWY2M.roa
Signing time: Sat 01 Jan 2022 15:57:12 +0000
ROA not before: Sat 01 Jan 2022 15:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20845
IP address blocks: 89.107.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936973105 (0x37d91331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 15:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=806dbbb1770cf1bc72f16586b93ae2ba57966363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:d4:99:e4:5c:fb:79:be:60:95:30:ff:fc:
de:de:35:11:a3:b4:c3:ab:11:06:fc:cd:c8:b8:cc:
2d:21:f2:e9:28:d9:db:e5:41:03:73:c2:3c:51:48:
d6:47:d9:ac:ee:ec:32:e8:eb:7e:3d:5f:df:b6:c3:
3c:41:87:0d:fc:85:51:02:68:51:ba:11:19:3b:b3:
6c:76:5b:f6:02:5c:43:3a:2a:b3:d4:ce:51:d7:c4:
b5:0f:a7:a7:61:4d:a2:86:8b:04:72:81:71:c2:b5:
8d:fc:1f:fd:08:8b:95:7f:b6:0d:c4:6a:5b:9a:d0:
b6:7c:74:19:b6:99:36:51:fa:89:a3:c0:df:a7:e1:
c4:ba:c8:cc:c1:b3:84:fe:af:0d:e9:b6:04:89:b1:
1f:1b:4e:ba:2b:c4:24:05:d2:cf:0f:b5:ac:62:52:
66:6c:67:0c:3c:23:21:9f:bb:11:4e:b0:b1:f4:75:
fc:3a:41:bb:4a:4f:fa:d7:e8:e9:5c:7a:4d:13:59:
3e:7d:0c:fd:33:f6:10:b5:75:26:92:70:bf:69:98:
4b:ab:ab:c5:cd:8c:a0:ac:0c:53:15:6f:bf:85:d4:
90:25:c0:69:3e:24:fc:c8:12:ea:be:0d:2d:16:9b:
fe:d4:3b:78:9d:d7:88:72:e1:70:72:db:c8:48:d2:
14:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6D:BB:B1:77:0C:F1:BC:72:F1:65:86:B9:3A:E2:BA:57:96:63:63
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/gG27sXcM8bxy8WWGuTriuleWY2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.248.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f7:17:41:ab:91:6b:87:ed:4a:09:e6:b7:8a:9a:fa:32:d5:
55:0d:8e:41:f2:1f:fd:47:3a:0e:bb:49:2c:6e:47:ce:b8:41:
e8:01:4f:ef:55:ce:a0:6f:82:40:b5:3f:e7:37:05:f0:cd:a2:
b2:40:d1:93:c6:5f:1e:2a:ce:b4:2a:d3:4d:3e:08:5e:a1:3a:
59:1a:de:14:ce:09:48:e0:dc:49:97:1d:cb:aa:2a:e0:b1:ad:
43:82:34:7c:07:7c:44:21:80:f4:a7:e4:83:af:9d:8f:5e:c0:
36:bb:4c:4e:0f:3f:72:18:89:ce:e7:14:1e:a0:13:b8:06:f6:
d0:0a:97:31:f1:1a:21:59:9a:fa:91:2c:6f:c8:b2:a6:d6:d7:
25:ea:ee:2a:81:39:ee:e6:82:92:b7:33:a0:30:31:d9:c7:d8:
59:0a:e1:73:bf:82:8b:14:b9:b8:3f:74:9a:d8:8b:7a:22:47:
e7:e2:b3:31:5c:ce:86:65:46:a2:99:c2:27:a2:8b:ef:7f:5f:
79:97:84:d2:0e:d0:1f:9a:4b:19:96:97:6d:dd:1e:c6:3a:9f:
a1:4f:76:bc:95:83:2b:dc:f6:dd:c6:e5:74:ba:e7:b1:31:36:
e6:09:67:cc:60:2d:df:88:24:cd:71:a5:ac:f7:fe:23:1b:aa:
cc:69:30:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:06 2025 by rpki-client