Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/oSlpldWou1CKG2Q5Kld6b7VQPVE.roa
File: oSlpldWou1CKG2Q5Kld6b7VQPVE.roa (raw, json)
Hash identifier: M/8v+b2l7KuIi+X/Ek6KJSCLSeBEoeWqQZ25LWjQw9k=
Subject key identifier: A1:29:69:95:D5:A8:BB:50:8A:1B:64:39:2A:57:7A:6F:B5:50:3D:51
Certificate issuer: /CN=d634007414cff16cdcf3a3aa22a96677f8be2b68
Certificate serial: CEC0
Authority key identifier: D6:34:00:74:14:CF:F1:6C:DC:F3:A3:AA:22:A9:66:77:F8:BE:2B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jQAdBTP8Wzc86OqIqlmd_i-K2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/oSlpldWou1CKG2Q5Kld6b7VQPVE.roa
Signing time: Thu 24 Mar 2022 15:43:21 +0000
ROA not before: Thu 24 Mar 2022 15:43:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28731
IP address blocks: 217.14.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52928 (0xcec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d634007414cff16cdcf3a3aa22a96677f8be2b68
Validity
Not Before: Mar 24 15:43:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1296995d5a8bb508a1b64392a577a6fb5503d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:02:c2:2b:c5:09:f6:64:1d:e2:38:7d:ce:
31:d2:b3:f7:e5:57:86:c6:51:76:1f:fe:a0:ca:e0:
e8:f9:40:2d:a7:d6:b6:4c:79:62:da:af:f8:7a:59:
d4:42:b8:07:08:fa:32:82:bc:1f:5e:0e:d5:09:a3:
eb:73:99:a6:0f:a4:81:c4:f8:3b:3a:74:68:41:fe:
b5:23:1b:bd:42:e9:4f:19:50:4d:d4:d0:3e:39:c4:
6c:d3:74:63:76:6e:59:7e:61:fc:30:68:71:2d:ba:
39:13:b1:4a:b8:d0:17:52:d0:1e:8b:fa:97:ee:b3:
45:ad:63:35:46:5c:93:ca:bf:b1:6b:21:8e:e0:c0:
d7:19:93:de:f1:6c:12:36:68:8a:55:50:74:a5:54:
9f:17:e2:10:ed:6e:80:65:92:ad:6e:7f:7e:18:0b:
58:61:01:18:b7:99:12:c2:ff:e5:fa:f1:50:c2:45:
44:fc:a4:81:80:28:dd:58:bb:af:9d:a1:a9:28:3b:
a4:62:26:40:ed:06:bb:54:dc:1a:d3:1b:c2:ee:18:
43:ee:e7:19:45:43:5a:fd:f5:c9:9d:0c:ca:0e:82:
16:50:2a:0c:ef:17:69:77:34:c6:0f:bf:cd:1c:fa:
ff:ad:14:e1:96:5e:94:39:f8:15:b0:d7:43:8e:c7:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:29:69:95:D5:A8:BB:50:8A:1B:64:39:2A:57:7A:6F:B5:50:3D:51
X509v3 Authority Key Identifier:
keyid:D6:34:00:74:14:CF:F1:6C:DC:F3:A3:AA:22:A9:66:77:F8:BE:2B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jQAdBTP8Wzc86OqIqlmd_i-K2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/oSlpldWou1CKG2Q5Kld6b7VQPVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/1jQAdBTP8Wzc86OqIqlmd_i-K2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.14.144.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:95:c4:85:be:1a:e4:fd:85:b8:78:f4:c2:81:f0:09:ee:88:
6a:58:26:27:99:81:3d:d0:bf:f0:b4:67:83:f5:e5:42:0f:01:
9a:6c:6d:3d:65:93:14:71:5b:40:ef:58:a8:20:1b:e4:92:5e:
68:34:51:e8:03:4a:3b:5b:dd:20:f3:1b:6e:5d:ad:26:1e:9f:
8c:c1:1e:07:d0:db:f6:75:f7:e7:5d:c1:e5:89:5c:87:45:f8:
5d:0a:9e:2a:f6:52:37:d3:d6:17:ff:31:f2:c5:2b:1a:2f:8b:
1e:a9:e7:0f:65:86:56:30:37:f9:42:bb:76:dc:53:dc:69:04:
26:a7:7e:1b:40:22:23:63:bf:6d:2e:e2:81:24:69:89:b3:d3:
ee:64:69:2d:a4:31:e2:d5:04:62:23:2f:44:43:f6:9e:13:83:
cc:be:f7:18:98:dd:60:79:28:12:9c:17:ce:e6:cc:d0:cd:63:
b6:58:8e:55:dc:ff:65:ef:26:2e:0a:78:47:22:ba:0b:54:e4:
e8:a2:47:8e:5e:67:3a:9a:49:01:91:bf:11:0f:97:9d:66:46:
20:6a:ef:98:5c:fd:3c:99:64:30:7a:3f:31:cf:bc:5e:fb:37:
83:91:ad:e0:eb:83:ca:91:c7:b7:70:4b:61:82:55:f8:d7:d6:
f5:36:a1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:48 2025 by rpki-client