Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/6ypLsiSuJ-gs954zxSUhkeWSFpw.roa
File: 6ypLsiSuJ-gs954zxSUhkeWSFpw.roa (raw, json)
Hash identifier: 31aF1dP6Yhb1VG9d3LE5faPt6tQ52RWeBXTd5LmVUA0=
Subject key identifier: EB:2A:4B:B2:24:AE:27:E8:2C:F7:9E:33:C5:25:21:91:E5:92:16:9C
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 0182A82B2359995247D585FB6AA5B7F71D9D
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/6ypLsiSuJ-gs954zxSUhkeWSFpw.roa
Signing time: Tue 16 Aug 2022 19:39:35 +0000
ROA not before: Tue 16 Aug 2022 19:39:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211503
IP address blocks: 81.29.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a8:2b:23:59:99:52:47:d5:85:fb:6a:a5:b7:f7:1d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Aug 16 19:39:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb2a4bb224ae27e82cf79e33c5252191e592169c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cb:04:50:6e:a8:7b:f7:76:2a:a5:90:57:69:
21:ea:eb:68:53:57:b4:6e:a4:f3:db:7d:29:92:f1:
41:08:6e:14:91:ec:42:2c:a5:8d:27:f6:e3:89:2c:
f8:15:4f:c2:39:eb:ad:01:a1:e5:cd:5f:d4:c4:d2:
b0:0b:bf:54:3d:83:33:9a:10:1f:85:18:6d:7b:39:
7d:c5:53:a1:64:20:8b:d8:e6:fd:27:ba:af:8a:8c:
29:72:34:7f:18:55:b6:ed:30:71:b3:10:ff:78:a1:
9c:e8:6f:7f:3c:cf:05:38:72:0a:6d:61:01:9f:72:
14:54:20:d9:bb:6b:53:ea:59:92:9d:2e:b8:fa:13:
65:2b:74:f2:12:39:3a:55:a1:cd:61:96:fc:11:ad:
df:cb:ff:a3:26:e1:14:43:71:ac:02:f1:32:da:3c:
98:ed:1b:f6:62:a1:d7:6e:06:6d:34:8e:ad:10:4f:
a9:5f:9b:cb:94:72:fc:98:1d:70:15:f1:ff:62:e4:
3b:80:ed:15:24:af:24:5a:e2:89:ff:77:96:f6:35:
76:1a:1f:bb:57:56:7b:4a:a6:9c:50:4d:25:fb:db:
a8:e3:ce:d7:68:49:3c:40:56:32:45:f7:e6:da:c9:
2b:14:a7:a7:9c:e9:d5:1a:f8:ec:91:f8:86:c5:81:
f2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2A:4B:B2:24:AE:27:E8:2C:F7:9E:33:C5:25:21:91:E5:92:16:9C
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/6ypLsiSuJ-gs954zxSUhkeWSFpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ea:28:b1:3f:52:33:b2:94:d8:23:49:f8:5a:ee:5a:e3:d1:
40:5c:4a:ca:39:cb:7d:46:15:35:25:67:ba:66:ca:29:22:55:
ce:ba:79:14:4e:71:4f:9d:30:12:05:fb:8f:5d:39:90:4e:5f:
d2:b1:d2:64:a6:70:a1:68:2d:27:38:e4:2d:ca:60:c1:ab:7b:
64:11:de:39:bd:93:90:9f:4c:4e:73:35:6d:68:cd:62:3c:37:
0c:b8:dd:d3:f4:fc:d3:79:08:fc:cb:7d:a4:13:eb:bf:15:fd:
80:e3:e7:8c:98:0f:7e:da:af:04:cd:d5:82:ec:a7:f9:b3:07:
bc:be:45:d8:e8:02:21:ae:31:cc:34:10:dc:45:81:32:23:ba:
c7:1d:4f:13:98:06:f4:a2:88:c6:6b:95:70:ce:6e:ea:bf:a2:
35:6a:d2:79:42:13:d3:8d:31:d4:29:06:89:d7:72:0a:c2:e0:
f2:85:ef:93:84:33:28:8c:81:f7:03:0f:dc:e6:88:2f:d4:5e:
4c:7e:17:6f:3f:43:12:12:f4:7b:5b:11:44:51:bb:57:8d:11:
52:aa:ed:72:c1:e0:67:63:9a:11:8d:bd:25:4b:c5:b5:83:d2:
93:65:5d:1a:f3:1e:7c:76:35:02:3f:5e:af:dc:1d:fd:73:d6:
f4:11:42:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:58:28 2025 by rpki-client