Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/m50rzPBCRj66nce6YXEzuoLv7GU.roa
File: m50rzPBCRj66nce6YXEzuoLv7GU.roa (raw, json)
Hash identifier: Bn7cBhlzBPvG1CH9B1FcVMgP4giT+k1dlJ+gAFhdBCI=
Subject key identifier: 9B:9D:2B:CC:F0:42:46:3E:BA:9D:C7:BA:61:71:33:BA:82:EF:EC:65
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 39C30389
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/m50rzPBCRj66nce6YXEzuoLv7GU.roa
Signing time: Tue 21 Jun 2022 07:42:44 +0000
ROA not before: Tue 21 Jun 2022 07:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64453
IP address blocks: 178.175.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 969081737 (0x39c30389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jun 21 07:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b9d2bccf042463eba9dc7ba617133ba82efec65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cc:93:69:a0:92:6d:5c:86:37:8d:db:43:c3:
28:bb:70:a7:99:c7:61:00:ef:e2:7e:30:86:58:72:
9b:08:e0:18:8a:30:07:c5:96:06:b4:af:16:57:19:
1d:d8:28:71:4a:48:55:09:f4:d9:7d:fb:18:9b:d1:
32:38:65:75:05:fa:52:9b:10:59:67:bc:04:d6:f7:
3b:cf:7f:28:e4:46:d9:9c:2d:cd:76:ff:54:0c:b6:
69:16:ca:0b:cb:af:7f:00:95:4b:64:de:c5:df:72:
60:cc:c5:d8:de:95:8d:bf:47:53:8b:cf:08:a6:82:
b1:65:f6:a7:93:fc:d8:06:df:52:b4:c3:c7:2f:3f:
51:c9:9c:43:13:25:8c:be:b5:f5:75:d0:86:a1:df:
c6:fb:27:a6:4e:dc:97:80:15:d5:cf:5f:f1:5d:da:
1d:a0:83:f8:e6:cc:dc:75:36:96:bf:4a:99:58:7c:
50:ad:06:d5:a4:db:2c:32:1d:0a:02:67:4b:57:2e:
ea:ee:ed:92:53:d6:f9:34:08:53:ac:1e:c3:37:07:
50:11:a6:73:71:91:a4:49:0c:57:9c:7c:25:67:aa:
15:fa:eb:57:95:ee:4a:64:1b:e4:8f:ea:0a:96:14:
d8:c0:80:d8:3b:83:af:60:0f:4b:b7:cf:09:8e:25:
2e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9D:2B:CC:F0:42:46:3E:BA:9D:C7:BA:61:71:33:BA:82:EF:EC:65
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/m50rzPBCRj66nce6YXEzuoLv7GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.158.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:19:a8:92:42:7f:ed:38:71:43:30:b5:a0:e7:40:ca:f6:9d:
b9:b1:d4:69:b9:0a:29:d6:32:09:be:21:93:96:51:9e:e7:b2:
3f:66:e8:27:3c:62:f2:16:36:c1:7f:87:1a:36:9e:88:58:ee:
0e:e9:4c:fb:7f:e1:63:e2:4c:b5:fa:a8:a8:1b:09:da:17:a6:
b1:36:6b:c5:d1:cf:69:96:89:99:b9:af:08:f4:8f:b1:2a:e3:
6b:41:8b:e2:c7:57:b0:22:1d:23:c8:6b:cd:49:b7:af:4e:cb:
69:c1:05:53:db:1f:ed:76:a4:92:4d:07:60:8f:2d:4e:62:10:
84:7a:54:0a:d9:2f:35:bb:6c:8b:a0:fb:b9:11:04:63:0a:96:
e2:dd:cf:cd:bf:f3:94:71:9e:c2:3f:69:f9:59:36:40:2c:56:
02:c4:ce:bb:32:97:1a:3d:0b:f6:b6:30:2c:32:12:d9:11:ae:
1a:9d:3d:ae:7f:01:85:23:76:64:c9:70:dd:d9:d2:85:1b:3c:
3d:94:c8:5a:2b:f6:be:b5:ae:42:01:a5:28:4b:f4:40:f3:b0:
87:ae:4a:95:b0:21:80:a0:6a:f9:82:d9:c4:8d:87:4e:46:cd:
34:b8:f4:3a:cf:c5:ec:88:37:07:aa:46:be:97:24:77:d1:5f:
ee:93:db:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:45:02 2025 by rpki-client