Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/hBakV59ssdtG1sc0TlTFN2ZkuFg.roa
File: hBakV59ssdtG1sc0TlTFN2ZkuFg.roa (raw, json)
Hash identifier: DjSuag3rriAIk0qVjfzfC6eFGi/TsPH7dNFGd0vW17I=
Subject key identifier: 84:16:A4:57:9F:6C:B1:DB:46:D6:C7:34:4E:54:C5:37:66:64:B8:58
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 055B1E48
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/hBakV59ssdtG1sc0TlTFN2ZkuFg.roa
Signing time: Sat 01 Jan 2022 11:55:47 +0000
ROA not before: Sat 01 Jan 2022 11:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48394
IP address blocks: 94.247.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89857608 (0x55b1e48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Jan 1 11:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8416a4579f6cb1db46d6c7344e54c5376664b858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:5c:67:21:d1:d0:3b:60:ba:45:eb:c2:35:
a8:ce:45:85:01:e5:f7:50:a6:50:9d:ba:ff:05:06:
9d:4d:9a:76:15:cd:d8:ea:50:7f:1c:1a:eb:ce:2e:
f8:70:5c:1b:4e:94:dc:be:ce:06:b6:38:d5:33:6f:
54:f7:33:1b:b7:dd:7f:10:da:15:2d:aa:86:22:bf:
11:10:dd:ab:c5:bb:c0:40:3d:73:b2:67:1f:a2:8a:
a2:b4:55:23:ed:de:9f:f4:b8:02:70:e7:e5:00:a8:
7f:82:80:1f:24:88:7a:4f:15:be:00:90:79:55:a3:
94:87:b8:98:d4:e3:0e:33:00:c0:ec:83:23:96:fe:
3e:e0:c6:2a:4e:af:6f:d1:97:39:e5:b8:e9:d3:6a:
c8:25:6f:db:91:a2:4f:0e:78:95:30:f6:c0:32:3c:
64:5f:75:ff:4c:9b:bd:47:29:eb:6e:af:d4:5d:f4:
7e:03:04:18:90:f1:96:14:61:3a:df:cc:7f:57:01:
bf:73:89:f5:22:b6:99:ff:a1:9d:b1:88:2b:37:2b:
f5:ab:50:51:12:9c:65:21:66:3f:6c:c8:8a:0e:e4:
00:53:38:51:dc:88:04:a3:56:ea:64:77:4c:97:ab:
fa:27:86:6c:e1:ab:3d:a6:36:f0:1c:00:21:f0:a6:
0b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:16:A4:57:9F:6C:B1:DB:46:D6:C7:34:4E:54:C5:37:66:64:B8:58
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/hBakV59ssdtG1sc0TlTFN2ZkuFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.8.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:3f:ad:98:03:a2:e3:2c:cd:eb:b3:49:f5:07:3c:6f:04:6d:
c5:7c:ed:79:7a:ee:d1:18:a9:ba:61:3f:5f:a8:83:b8:4f:7c:
8e:ff:90:e3:9b:2c:f4:58:18:b2:08:b4:71:32:b2:7b:c8:48:
8d:a6:39:f0:6f:f2:8f:cd:5f:99:0d:53:c5:67:cf:dc:5d:e2:
e2:30:c5:7d:ce:1d:2b:36:f7:b1:4e:d1:0b:db:3e:9c:7b:85:
f0:eb:bb:02:1c:e6:11:87:c4:38:69:45:a4:6b:d5:eb:b9:30:
6e:68:86:64:23:5b:f8:41:c2:7f:f3:9a:7b:71:91:3f:45:78:
72:c8:1a:17:c1:7d:d5:42:43:55:9a:c3:24:01:c1:d4:2a:8c:
ba:50:1c:0f:5c:bc:66:90:ee:ab:1d:71:50:ab:87:54:46:20:
36:07:8b:0f:2a:e6:23:3e:06:88:a8:89:c8:ac:1b:7d:58:cf:
b8:2a:a2:14:bf:ef:6d:42:d3:c7:e4:d2:67:4e:7c:95:54:03:
db:df:40:85:93:5a:15:d6:db:83:09:57:2a:15:b1:82:00:9a:
a1:54:c4:ed:28:1b:9b:4b:8e:57:ed:e0:75:80:9c:2d:a2:8f:
bd:25:39:69:3f:18:96:74:9f:03:f8:78:b6:d8:e8:cd:d9:63:
d0:89:e4:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 18:57:28 2025 by rpki-client