Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/XMuZjSRqbXr-4tZBy8CwpJj7-Tk.roa
File: XMuZjSRqbXr-4tZBy8CwpJj7-Tk.roa (raw, json)
Hash identifier: yoKTTMp4tuxnRl8RbWw7LuvTdNV8tQXsnIya76lgIxo=
Subject key identifier: 5C:CB:99:8D:24:6A:6D:7A:FE:E2:D6:41:CB:C0:B0:A4:98:FB:F9:39
Certificate issuer: /CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Certificate serial: 01856D6F472545868832448B7C2089C1440F
Authority key identifier: E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/XMuZjSRqbXr-4tZBy8CwpJj7-Tk.roa
Signing time: Sun 01 Jan 2023 13:04:47 +0000
ROA not before: Sun 01 Jan 2023 13:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207544
IP address blocks: 212.6.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:47:25:45:86:88:32:44:8b:7c:20:89:c1:44:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Validity
Not Before: Jan 1 13:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ccb998d246a6d7afee2d641cbc0b0a498fbf939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:16:98:eb:3e:03:43:75:21:f0:4d:8e:13:da:
84:59:94:1e:d8:cd:37:16:d8:c9:dd:a4:66:41:f7:
f0:7a:82:fb:9b:03:21:f0:e5:a2:30:2f:ad:05:7c:
23:74:f1:d3:f4:95:e3:80:78:17:93:7f:bd:2b:fc:
33:db:de:89:e3:a5:9a:9c:25:e6:af:15:a0:da:ec:
87:7d:9d:c0:41:9f:b2:6f:7a:88:e1:1c:c0:42:79:
ba:1c:da:43:07:86:14:f9:c9:a6:7e:49:6a:27:da:
69:ae:25:47:61:81:b9:32:02:f3:53:71:57:9a:df:
bd:a3:d5:db:b4:eb:82:60:67:1e:be:e0:81:c8:a8:
48:6b:01:1a:55:8c:66:71:8c:18:ab:97:fb:49:c9:
b8:29:a2:c4:88:82:5c:c3:7a:12:a3:3a:79:c5:69:
85:23:d5:25:03:95:52:a4:01:5f:01:38:cc:e5:b6:
6e:fc:26:3c:60:e2:d5:9c:2b:c1:2b:8f:f6:e7:b4:
2e:9d:52:99:54:9c:09:61:3f:16:64:ba:25:d7:ca:
a4:2e:f0:78:bf:2a:69:be:e4:73:7d:b7:42:8c:36:
b2:a1:d7:b1:95:1a:b6:53:62:fe:0c:1e:94:b4:5b:
71:cb:6f:bc:92:e5:2d:72:ad:11:dd:e2:d6:47:4e:
43:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CB:99:8D:24:6A:6D:7A:FE:E2:D6:41:CB:C0:B0:A4:98:FB:F9:39
X509v3 Authority Key Identifier:
keyid:E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/XMuZjSRqbXr-4tZBy8CwpJj7-Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/4fR8EaOjyuBqGShgqWxQU-wEtdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:8f:de:04:27:75:d7:c4:7c:e0:0b:b0:f0:52:36:c3:e3:0e:
c7:2b:c0:0d:f3:18:c5:4f:b9:05:d8:ec:85:8d:26:36:8c:4a:
6f:05:a9:48:f8:93:0c:9e:4d:b6:b1:87:ee:e5:73:8c:77:2a:
aa:c7:05:64:e6:07:5d:fd:a1:3a:13:3d:e6:47:4b:b4:ae:65:
6b:f5:7b:d4:1e:98:8c:09:1f:57:f9:1a:41:6b:14:c6:c5:74:
83:59:3e:ee:93:6d:d9:60:f8:eb:ee:2f:9f:82:5b:65:4f:8a:
0f:6d:27:71:be:1b:9b:08:a9:4d:ba:d0:cc:9a:21:e0:dc:8a:
f9:9e:08:82:aa:be:00:e7:05:1a:56:2a:0b:9b:cd:ed:6a:f1:
1a:15:60:ce:90:93:c7:b1:b7:5c:3d:79:3b:55:e7:94:aa:dd:
21:30:15:46:a7:3f:ff:f3:90:34:f3:97:e0:36:9d:04:ac:e6:
7c:97:3e:ca:b9:5a:f5:7a:61:76:69:d2:22:2b:28:72:7c:06:
1d:4d:7e:e6:42:85:d1:df:6a:a1:4d:89:4e:55:73:d5:0f:45:
8a:13:71:2f:4b:90:29:38:07:6d:a3:42:e4:96:94:bb:03:cb:
37:fc:74:ed:7c:08:40:c7:6c:48:e9:51:ca:b0:27:db:2b:7d:
3e:32:14:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:48:41 2025 by rpki-client