Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/o1wdpC-UuVBZKOdtUAu1TQr4EB0.roa
File: o1wdpC-UuVBZKOdtUAu1TQr4EB0.roa (raw, json)
Hash identifier: v6Q0imxoXM10d1lm62lqjfqYU5yMFeg3Ovvym9NIE6s=
Subject key identifier: A3:5C:1D:A4:2F:94:B9:50:59:28:E7:6D:50:0B:B5:4D:0A:F8:10:1D
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 01856FA6EEB05CCBD90C1255C1AD82653734
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/o1wdpC-UuVBZKOdtUAu1TQr4EB0.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51246
IP address blocks: 178.175.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:ee:b0:5c:cb:d9:0c:12:55:c1:ad:82:65:37:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a35c1da42f94b9505928e76d500bb54d0af8101d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:66:c8:cb:94:3f:8c:0b:9d:bb:03:7a:8d:4a:
53:5f:d0:1e:02:e9:4c:44:4c:f9:38:f9:13:7b:23:
91:c3:c0:97:ce:46:ac:74:7f:e3:1c:08:0f:e7:cc:
3d:15:91:99:0a:d6:22:9d:cd:d1:b3:c3:88:a3:28:
81:95:10:ce:9a:57:7e:20:cf:87:3f:08:b8:b0:b5:
1b:16:80:19:58:70:fa:e7:ab:3e:d4:ae:b8:d8:75:
cc:de:ab:95:5d:d2:63:76:b5:b7:ee:cb:20:16:8e:
73:7d:7d:2d:b6:42:91:18:d8:29:17:e9:0a:ce:9c:
3c:fc:fc:52:99:ce:a1:99:18:0b:d1:52:c7:fb:c3:
70:e7:29:fb:9a:77:8f:ea:b1:5a:04:0c:f1:b5:bb:
73:86:67:1b:9a:a6:b3:1d:ac:f7:02:73:3b:49:1f:
b4:41:33:29:1a:db:a5:4b:76:fb:03:8a:01:21:46:
70:6e:a5:67:53:fa:b0:2c:ec:8c:18:7f:b1:11:d5:
5f:90:26:1b:6d:88:70:2e:b9:9a:56:60:74:f9:ef:
0a:16:f0:fe:6a:25:ba:05:e5:65:2c:ec:00:07:0a:
e3:65:99:a8:f1:bd:36:b4:48:9a:cf:68:b8:05:f5:
6e:51:d9:00:50:20:c9:eb:9c:8d:d2:44:00:f0:ed:
91:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5C:1D:A4:2F:94:B9:50:59:28:E7:6D:50:0B:B5:4D:0A:F8:10:1D
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/o1wdpC-UuVBZKOdtUAu1TQr4EB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:8a:fa:24:ac:86:47:fe:4a:cf:11:f2:9c:83:95:ca:82:cc:
8e:4f:e9:5a:f0:ac:4a:8f:d6:08:df:ac:d0:06:9d:c1:d5:85:
86:58:e2:bf:06:ea:87:ab:a1:47:ee:ce:af:8c:eb:66:d5:af:
66:75:6c:52:e2:8f:c7:c8:96:33:a7:2d:74:5e:15:ac:82:ac:
73:40:eb:72:7f:8a:c6:00:54:b7:73:9a:36:e0:28:fd:0c:64:
52:31:ef:35:b2:89:6e:6c:53:8d:f4:a2:74:a7:a2:2d:9f:01:
de:0e:c4:82:56:96:5d:7b:a6:5e:22:80:85:40:26:12:a3:c8:
e9:06:5c:4c:49:86:cc:c2:7f:da:b6:5d:7a:e8:ba:c2:32:b1:
f5:a2:a7:f4:ad:1f:d3:34:6a:9b:3c:ca:88:b9:4a:d4:89:ab:
76:b0:55:ee:9b:77:3c:c0:fc:24:63:89:2c:63:97:0e:e9:25:
2e:5c:c8:7d:0c:3a:fb:1d:b1:1e:9a:17:76:6c:35:1e:88:49:
8d:0b:7f:ec:22:bd:f9:0d:01:e2:f0:97:d1:c6:8b:90:21:9c:
f4:4b:9d:26:62:fb:15:bf:6c:c8:f9:4d:6d:54:f0:80:9d:30:
20:06:ce:c6:53:a6:6c:fb:cc:d9:56:ad:ec:9a:97:59:01:65:
cf:a8:d4:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:22 2025 by rpki-client