Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3gbxTXmQojsokocjx-bOn5jLzmI.roa
File: 3gbxTXmQojsokocjx-bOn5jLzmI.roa (raw, json)
Hash identifier: 5VYyP8ASJ6N6Cv3O9MUN0s6JdASyenzzKVt1N2lmkPM=
Subject key identifier: DE:06:F1:4D:79:90:A2:3B:28:92:87:23:C7:E6:CE:9F:98:CB:CE:62
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 07740F2D
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3gbxTXmQojsokocjx-bOn5jLzmI.roa
Signing time: Sat 01 Jan 2022 14:05:52 +0000
ROA not before: Sat 01 Jan 2022 14:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50585
IP address blocks: 194.110.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125046573 (0x7740f2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Jan 1 14:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de06f14d7990a23b28928723c7e6ce9f98cbce62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:35:f1:7c:82:e2:f4:ac:85:8f:8b:ca:a7:3c:
46:24:59:1b:98:90:43:e8:5c:5a:3d:d5:92:d9:64:
3f:9b:c9:0f:51:a8:04:6f:02:e2:5e:ca:67:f1:dd:
8f:5b:ce:11:0b:3c:95:01:65:7e:73:af:d1:a2:b3:
56:47:81:81:25:23:d6:1a:d2:31:0d:d2:cb:7c:3f:
82:97:d4:db:eb:1f:f9:21:3f:5e:a5:13:4f:d7:d2:
51:c5:65:da:67:eb:19:04:20:6e:92:24:e3:74:5f:
38:df:71:fc:b9:02:53:e9:e2:fe:5c:5f:26:c5:36:
b8:23:8d:ad:af:e2:f0:db:c7:09:a4:3a:c7:91:a8:
98:ea:ca:1f:8a:1d:1a:71:50:a5:50:cd:1b:bf:7c:
62:21:a0:33:21:7c:21:d3:80:ca:88:f4:05:92:1b:
2c:27:63:d9:46:d1:75:c8:9d:47:b8:45:3f:bf:ca:
df:a6:9d:f4:8e:c4:d7:09:3b:80:3c:96:a4:2b:53:
6b:73:50:c3:77:f1:de:ca:66:8d:43:9a:42:36:3a:
01:5d:56:a9:2c:15:3b:ad:25:1b:eb:74:13:c9:b9:
2d:7b:89:81:51:10:a5:76:8a:f0:cd:40:81:f8:83:
ab:dc:d8:aa:09:43:53:20:10:8b:fb:f8:00:27:52:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:06:F1:4D:79:90:A2:3B:28:92:87:23:C7:E6:CE:9F:98:CB:CE:62
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3gbxTXmQojsokocjx-bOn5jLzmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:d6:d8:f3:99:2c:60:fe:fd:ec:e8:39:95:db:fe:47:e4:20:
5b:4c:a1:21:56:1d:0a:76:01:79:e2:fb:8a:24:cc:ed:19:1d:
f4:c6:12:d3:f5:f1:39:7a:cc:4b:8a:81:20:fa:4b:a7:02:f9:
22:7a:a3:b2:ed:14:63:be:bf:34:24:1c:ad:2f:ac:06:97:c0:
65:59:9b:93:e1:69:e2:4e:df:b2:39:03:8e:06:ab:46:84:fc:
be:cb:6d:36:ab:fa:b5:82:f4:cd:f2:96:d1:4c:1b:fc:96:98:
df:b9:81:a1:06:98:7c:7a:57:9e:76:43:b4:16:e4:95:fa:c2:
8e:b9:4e:47:d6:07:24:c0:37:74:ed:d9:41:eb:e2:57:66:3a:
f5:bb:5f:b8:ed:e8:52:6c:a0:6a:10:e7:f3:16:9a:59:14:ab:
53:e0:16:23:a9:b6:25:ba:93:cb:79:bb:ac:5e:47:35:c9:bb:
70:aa:15:c4:e0:d1:ff:33:f5:03:dc:2e:3d:6e:bc:67:4d:b4:
69:30:9f:6c:a0:d8:ce:01:c2:0a:af:67:e3:66:d4:63:39:41:
48:6d:3f:fe:6a:de:e2:e2:e2:94:d5:00:38:03:58:17:d6:be:
39:be:a9:19:f0:d4:81:2c:e1:bd:fc:68:98:da:5a:d5:f2:1e:
70:78:86:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:48:52 2025 by rpki-client