Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/b9cf3b-9572-4992-b247-01208d86ddcc/1/1H1xY-SNShA6ggYiWxBrdLNvFJ0.roa
File: 1H1xY-SNShA6ggYiWxBrdLNvFJ0.roa (raw, json)
Hash identifier: emRBtyvTeQB3SnizhUrroAxmT5fnOMlQkzdm0Ov0FBo=
Subject key identifier: D4:7D:71:63:E4:8D:4A:10:3A:82:06:22:5B:10:6B:74:B3:6F:14:9D
Certificate issuer: /CN=982a541d5ac8ff7bb0408c7434ac1012eff73cb5
Certificate serial: 103A84D2
Authority key identifier: 98:2A:54:1D:5A:C8:FF:7B:B0:40:8C:74:34:AC:10:12:EF:F7:3C:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCpUHVrI_3uwQIx0NKwQEu_3PLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/b9cf3b-9572-4992-b247-01208d86ddcc/1/1H1xY-SNShA6ggYiWxBrdLNvFJ0.roa
Signing time: Sat 01 Jan 2022 07:04:17 +0000
ROA not before: Sat 01 Jan 2022 07:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.28.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272270546 (0x103a84d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982a541d5ac8ff7bb0408c7434ac1012eff73cb5
Validity
Not Before: Jan 1 07:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d47d7163e48d4a103a8206225b106b74b36f149d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:87:27:ce:0c:64:6f:40:77:8a:c5:6a:45:d1:
9a:c3:d9:22:29:85:8d:62:a8:c7:d8:97:a4:de:05:
42:dc:d7:73:f8:59:17:a6:dc:93:8b:8a:2b:48:3e:
15:94:72:6e:75:8f:db:ea:92:81:c2:9f:cd:1f:ea:
09:74:99:d5:84:84:76:bb:97:09:10:b7:a8:8b:92:
a6:83:64:34:75:f1:54:a0:72:ef:62:b1:23:fe:03:
86:38:52:a6:11:d5:d0:ad:94:0f:72:49:0c:a8:a8:
9c:d6:46:71:d0:0f:00:df:b5:bc:a2:2f:b2:d3:38:
bc:1a:91:d4:f1:32:33:6e:c7:ba:94:52:c4:98:32:
ac:86:fa:de:a3:23:dc:25:0e:6f:1e:53:67:c8:73:
4d:3c:53:c2:86:0e:ba:ab:80:43:f2:dd:58:63:6f:
9a:fe:d2:ff:bc:52:45:11:42:54:3f:a2:29:49:9d:
f5:b5:cd:0c:84:ba:ad:d5:0d:f7:c6:6f:4e:35:27:
72:4d:d7:19:a6:da:0a:76:33:6d:02:34:f0:dc:6c:
34:bb:b6:e8:dc:af:08:94:26:ba:de:35:ef:cf:96:
3c:aa:18:91:15:c6:14:65:05:56:72:f1:5c:56:43:
7b:6e:0d:a0:a0:f5:66:53:8c:29:fb:39:52:51:60:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7D:71:63:E4:8D:4A:10:3A:82:06:22:5B:10:6B:74:B3:6F:14:9D
X509v3 Authority Key Identifier:
keyid:98:2A:54:1D:5A:C8:FF:7B:B0:40:8C:74:34:AC:10:12:EF:F7:3C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCpUHVrI_3uwQIx0NKwQEu_3PLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9cf3b-9572-4992-b247-01208d86ddcc/1/1H1xY-SNShA6ggYiWxBrdLNvFJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9cf3b-9572-4992-b247-01208d86ddcc/1/mCpUHVrI_3uwQIx0NKwQEu_3PLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.28.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9f:09:68:d9:76:27:d6:c6:ea:18:36:7c:ff:75:6b:f5:55:61:
f9:ba:e1:cc:7e:bf:5c:3a:2f:f6:46:42:d4:fe:d9:3b:f1:00:
db:cd:c3:35:5d:b4:ac:88:da:ed:79:9b:a2:b7:87:c2:b1:12:
4f:ba:06:2c:b9:f4:05:ed:8e:3c:e1:fb:db:b0:8d:9a:e8:3e:
62:cd:4a:ba:b0:28:46:93:dd:d6:3f:23:7a:bf:26:33:e8:4d:
23:00:ff:6a:d5:47:41:e4:16:a0:76:a9:fc:d4:b6:92:68:14:
c4:8c:b1:03:98:12:60:f8:2b:b8:7b:2a:8a:ad:d0:d1:01:24:
0c:43:fb:d3:74:ff:82:d1:72:63:82:dd:f3:b7:64:50:1f:c4:
aa:b0:a6:41:b5:bb:d3:82:a2:65:d9:95:f4:3c:f9:fb:eb:b9:
a7:07:d1:dd:61:d0:79:b2:49:39:4a:6b:5e:82:62:ad:d6:4f:
98:1f:85:16:4b:4a:49:64:40:78:7e:b5:ea:21:de:7b:4d:72:
34:c5:3c:ce:47:cd:43:6c:d5:1a:cf:bb:c6:70:40:ae:39:eb:
3d:38:52:0f:ed:20:aa:c4:e6:84:c1:b2:d1:05:2a:b6:21:27:
e8:94:a7:f5:39:81:40:d3:d3:76:9b:50:40:65:9f:5f:6f:3d:
9d:29:5f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:00 2025 by rpki-client