Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/IU7bxfugxI8L_ks1TF7YvJ8B0ZE.roa
File: IU7bxfugxI8L_ks1TF7YvJ8B0ZE.roa (raw, json)
Hash identifier: SjQpaYDF/J0dijV/fMKFF18bYja4KWUoy53UYphE9EY=
Subject key identifier: 21:4E:DB:C5:FB:A0:C4:8F:0B:FE:4B:35:4C:5E:D8:BC:9F:01:D1:91
Certificate issuer: /CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Certificate serial: 01856D6F467AB3DE7592F7933B750385939A
Authority key identifier: E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/IU7bxfugxI8L_ks1TF7YvJ8B0ZE.roa
Signing time: Sun 01 Jan 2023 13:04:47 +0000
ROA not before: Sun 01 Jan 2023 13:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50880
IP address blocks: 212.6.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:46:7a:b3:de:75:92:f7:93:3b:75:03:85:93:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Validity
Not Before: Jan 1 13:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=214edbc5fba0c48f0bfe4b354c5ed8bc9f01d191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:57:00:bb:c9:3a:28:ff:61:e8:b2:3a:e6:06:
db:de:9e:56:10:e0:b9:d6:b6:12:c4:23:88:a8:7f:
73:d6:8e:6b:37:2e:29:0c:07:c6:4e:9a:17:70:44:
f8:0d:b0:c4:f9:e5:ee:6e:e1:0c:0e:73:00:4c:78:
67:90:ef:f1:c1:4f:c4:e1:33:48:d2:8d:8c:5b:c5:
e9:93:b4:37:21:55:92:9d:a7:6d:03:d4:3c:12:f7:
5a:0a:3b:a7:55:ae:78:30:23:90:8c:48:04:01:0d:
ab:dd:78:b6:9e:f7:be:f8:b1:ae:4f:17:2e:ee:fc:
ca:20:66:cd:be:9b:75:16:99:08:6f:93:2d:77:33:
96:e7:6f:26:66:7e:be:43:27:e8:c0:66:5f:11:77:
fc:0a:c9:46:e8:28:6a:76:10:91:9b:62:eb:78:bc:
84:f7:42:78:97:ba:fb:8a:12:88:4f:b6:c4:30:5c:
32:d4:6f:0f:f4:fa:d9:ac:40:99:2e:5b:1c:f2:de:
18:84:42:b4:4f:84:d6:d9:40:d7:99:39:56:8e:a6:
d4:21:9b:b3:25:3f:ea:24:97:23:97:fa:fd:bc:00:
f9:c8:7d:ac:a1:e2:24:1a:6b:76:38:40:2c:33:06:
b6:60:34:d6:9a:13:37:08:5a:3f:16:d1:7c:37:d1:
7a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4E:DB:C5:FB:A0:C4:8F:0B:FE:4B:35:4C:5E:D8:BC:9F:01:D1:91
X509v3 Authority Key Identifier:
keyid:E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/IU7bxfugxI8L_ks1TF7YvJ8B0ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/4fR8EaOjyuBqGShgqWxQU-wEtdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.61.0/24
Signature Algorithm: sha256WithRSAEncryption
63:56:f9:b9:eb:9e:6c:e9:8d:eb:4d:1d:b5:0d:04:0f:d1:02:
18:64:c8:0c:01:ae:b2:1c:99:94:49:72:db:ab:82:20:3a:17:
4a:85:84:95:74:15:12:22:a3:3e:80:25:d2:33:f3:12:39:ed:
0c:71:29:bd:53:d6:3d:7d:50:ac:5b:66:2e:5f:f6:e4:85:3d:
99:48:74:c2:c6:da:0e:f8:a6:fe:09:94:b8:e6:4a:46:1b:15:
8e:e0:da:11:30:c7:46:03:6b:65:1b:70:00:68:66:a6:c8:df:
f6:d0:d6:af:e1:73:fd:48:70:52:7e:a1:e5:4b:95:a2:7f:6b:
15:54:a5:4f:9a:3b:fd:53:5d:8b:4c:8a:59:90:b1:bb:6b:35:
4d:c5:94:be:c1:ec:18:a3:80:f4:b6:7e:da:5a:b5:a0:e2:28:
3b:6c:76:17:96:0a:89:45:78:37:1a:50:07:98:eb:c1:91:b9:
6c:31:07:2f:f7:3f:47:d5:03:bb:06:a0:1b:c8:df:c4:92:ae:
88:24:6f:a4:97:0e:15:a9:8c:65:3f:b7:00:42:d9:ab:0e:f2:
09:44:03:31:d4:32:c5:4e:d2:0e:5f:25:2b:0a:c3:f0:0a:95:
6a:5f:da:e9:2f:97:52:68:b4:c0:d8:3b:fb:ba:0a:16:32:b8:
22:5b:11:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:55:51 2025 by rpki-client