Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/059543-69e4-48f6-a175-ac96f6aab494/1/7rNLaxHHifI2-GA9DYGacuUXprY.roa
File: 7rNLaxHHifI2-GA9DYGacuUXprY.roa (raw, json)
Hash identifier: qYibZSycI8hjozovliIkzjJhr7RIWyC1edO5KjxGX40=
Subject key identifier: EE:B3:4B:6B:11:C7:89:F2:36:F8:60:3D:0D:81:9A:72:E5:17:A6:B6
Certificate issuer: /CN=52bf21eeb36414b3280e6c33b0b57296b8f6b675
Certificate serial: 096339D7
Authority key identifier: 52:BF:21:EE:B3:64:14:B3:28:0E:6C:33:B0:B5:72:96:B8:F6:B6:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ur8h7rNkFLMoDmwzsLVylrj2tnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/059543-69e4-48f6-a175-ac96f6aab494/1/7rNLaxHHifI2-GA9DYGacuUXprY.roa
Signing time: Mon 04 Apr 2022 16:25:39 +0000
ROA not before: Mon 04 Apr 2022 16:25:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57954
IP address blocks: 194.1.159.0/24 maxlen: 24
192.162.19.0/24 maxlen: 24
193.105.210.0/24 maxlen: 24
2001:67c:13a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157497815 (0x96339d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52bf21eeb36414b3280e6c33b0b57296b8f6b675
Validity
Not Before: Apr 4 16:25:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeb34b6b11c789f236f8603d0d819a72e517a6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:65:bb:e5:3a:7a:a4:8f:e4:39:ac:d3:90:
b2:d9:31:08:20:93:e9:df:5a:84:79:de:24:94:b8:
02:2b:e5:f0:77:13:90:29:5c:2d:fc:26:28:b7:9f:
e8:23:a2:ce:ea:96:d1:14:43:f7:c5:30:48:f4:30:
ea:9b:c8:cd:a4:dd:59:11:08:76:30:de:9b:0f:98:
ac:d4:d1:a2:88:a2:86:f1:5b:20:22:3c:0a:1b:58:
55:6f:da:5c:a8:7f:5c:ef:bc:6f:9e:d1:0b:ba:29:
d3:10:64:67:03:90:80:1e:92:11:64:db:81:9f:c5:
66:45:3d:50:94:c0:8c:95:aa:b2:55:e7:20:87:01:
2d:19:fe:8c:2f:05:d7:21:4b:1d:4a:8e:ef:c9:58:
7b:ee:80:f2:a5:93:9e:2f:31:45:b4:e8:3b:5a:67:
9b:8b:b8:a5:6a:0b:ea:13:fd:f5:80:45:a4:e0:3f:
41:f3:72:7b:0a:af:9a:95:b2:e5:20:ec:86:fb:ab:
01:c5:0c:a8:fe:e6:75:89:1d:6c:08:1a:15:df:44:
a6:30:01:f0:82:ea:77:df:aa:e2:ef:d0:a6:cb:c5:
e5:4b:6a:2e:c0:c2:08:c8:9b:ef:78:ae:b8:62:38:
57:6a:14:ed:1b:3f:e5:9d:8a:cb:d6:15:ec:61:0f:
aa:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B3:4B:6B:11:C7:89:F2:36:F8:60:3D:0D:81:9A:72:E5:17:A6:B6
X509v3 Authority Key Identifier:
keyid:52:BF:21:EE:B3:64:14:B3:28:0E:6C:33:B0:B5:72:96:B8:F6:B6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ur8h7rNkFLMoDmwzsLVylrj2tnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/059543-69e4-48f6-a175-ac96f6aab494/1/7rNLaxHHifI2-GA9DYGacuUXprY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/059543-69e4-48f6-a175-ac96f6aab494/1/Ur8h7rNkFLMoDmwzsLVylrj2tnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.19.0/24
193.105.210.0/24
194.1.159.0/24
IPv6:
2001:67c:13a0::/48
Signature Algorithm: sha256WithRSAEncryption
02:56:ed:c3:25:f7:7d:8d:7d:66:1e:b9:8d:4d:97:3d:9c:4a:
d5:73:da:78:e9:75:cf:74:86:f4:e6:01:33:8a:3d:90:a3:92:
30:f7:27:e0:bf:75:54:f8:86:70:8c:39:d7:23:cf:f5:6f:ca:
31:f3:e0:e5:44:11:09:15:35:48:65:75:11:ad:26:ed:eb:ac:
0f:a8:d8:80:5e:ca:e4:a8:4d:cb:3c:19:2a:ad:dc:98:e1:8b:
00:52:06:48:08:68:82:14:dd:9c:31:5a:0f:27:95:be:3c:1f:
20:1f:d4:11:91:e0:df:47:73:88:c7:7f:db:ae:53:5f:4b:32:
1b:a9:c0:a9:c4:d9:09:43:9e:ce:00:bc:22:0e:59:9a:ff:83:
20:f2:8c:6c:88:22:1a:0e:a3:d2:74:63:82:85:55:e8:47:59:
06:1a:3b:1c:74:82:58:2f:ed:d5:96:10:04:9d:7f:e1:91:3a:
33:f8:b4:42:ad:07:90:3c:30:fa:80:41:be:7a:99:4c:1d:9f:
59:e7:20:58:2d:22:4f:14:0c:98:61:c1:b0:4c:a4:b5:3c:d8:
20:5c:bd:87:09:ae:01:4d:60:6b:b1:49:06:7f:58:e1:1d:d1:
c8:49:13:51:48:a1:87:3b:2f:9b:e8:ee:14:ef:17:96:c0:14:
a2:3f:ec:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:00:55 2025 by rpki-client