Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/0b0c1c-e5ea-4558-bbdd-199e056a6800/1/sHrM5PeEJibxSdik7FW8X6MbVy8.roa
File: sHrM5PeEJibxSdik7FW8X6MbVy8.roa (raw, json)
Hash identifier: v1FS9a4AXMGPtT2H5Jn4YMxA0MdHBveMxC2g0omZ8rs=
Subject key identifier: B0:7A:CC:E4:F7:84:26:26:F1:49:D8:A4:EC:55:BC:5F:A3:1B:57:2F
Certificate issuer: /CN=c67e9de8e826cdee0e65f622583434b81cf37bad
Certificate serial: 077D4C22
Authority key identifier: C6:7E:9D:E8:E8:26:CD:EE:0E:65:F6:22:58:34:34:B8:1C:F3:7B:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn6d6Ogmze4OZfYiWDQ0uBzze60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/0b0c1c-e5ea-4558-bbdd-199e056a6800/1/sHrM5PeEJibxSdik7FW8X6MbVy8.roa
Signing time: Sat 01 Jan 2022 08:53:26 +0000
ROA not before: Sat 01 Jan 2022 08:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 193.177.141.0/24 maxlen: 24
193.177.144.0/22 maxlen: 22
193.177.140.0/24 maxlen: 24
193.177.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125652002 (0x77d4c22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e9de8e826cdee0e65f622583434b81cf37bad
Validity
Not Before: Jan 1 08:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b07acce4f7842626f149d8a4ec55bc5fa31b572f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b1:7e:9a:0f:86:50:bd:0b:b5:bf:f2:d3:94:
52:b8:ed:4d:9f:7a:b2:9d:3d:3a:67:c9:f5:37:43:
39:97:d3:02:dd:f8:ec:77:85:67:4b:6b:fe:cd:ff:
93:f7:3c:a2:aa:ed:5a:9c:f2:22:1e:60:96:a6:bc:
7e:c4:80:8d:74:35:41:96:33:d3:89:be:8c:31:c4:
30:c3:49:e0:ed:9a:c3:e6:e4:77:98:88:7c:60:cf:
77:2f:f1:42:5b:51:d7:a1:11:5f:5b:eb:e0:23:ff:
f5:2a:70:b1:b2:9c:67:5d:5a:c4:6a:aa:40:b3:1e:
fc:c7:1e:d7:02:c0:52:f7:e1:08:4a:6c:2d:14:e0:
58:be:13:54:ff:36:c2:9c:aa:69:3a:01:05:79:3a:
9f:77:e3:fb:cd:e4:2c:98:42:c6:8d:9b:53:ab:d6:
fc:a4:5e:6c:13:29:be:17:4d:4e:39:27:b0:96:ac:
71:ac:69:7f:e4:06:fb:06:19:c4:19:21:d3:77:d5:
ba:a6:4b:8d:e8:e4:ec:1b:40:fb:14:d1:8c:d6:55:
7b:e9:4e:a5:89:9f:9e:29:f5:a2:5c:9d:a6:67:f4:
82:80:15:86:d5:bf:94:4f:cc:b3:d8:e5:2c:13:c4:
cc:be:7e:7a:7e:05:dc:b6:34:f7:ac:7a:a8:80:2c:
91:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:7A:CC:E4:F7:84:26:26:F1:49:D8:A4:EC:55:BC:5F:A3:1B:57:2F
X509v3 Authority Key Identifier:
keyid:C6:7E:9D:E8:E8:26:CD:EE:0E:65:F6:22:58:34:34:B8:1C:F3:7B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn6d6Ogmze4OZfYiWDQ0uBzze60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0b0c1c-e5ea-4558-bbdd-199e056a6800/1/sHrM5PeEJibxSdik7FW8X6MbVy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0b0c1c-e5ea-4558-bbdd-199e056a6800/1/xn6d6Ogmze4OZfYiWDQ0uBzze60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.140.0-193.177.147.255
Signature Algorithm: sha256WithRSAEncryption
61:0d:ba:33:98:12:fc:16:96:87:6f:c2:34:24:b0:bb:1c:7f:
f4:ff:33:ae:9f:99:b0:97:a0:cd:c4:94:d8:9c:5c:6f:5a:8a:
33:14:71:fb:a3:70:ee:10:79:d4:fa:ce:c1:af:e6:14:62:88:
71:f9:fb:21:14:22:2f:9a:47:e4:ab:8c:49:af:18:27:1c:9b:
51:4a:0d:7c:bd:e7:5f:1c:2e:47:28:a2:e5:2e:47:b1:31:7f:
cf:46:19:2f:58:3b:92:39:1a:be:a1:1c:7c:e9:9d:16:ae:5a:
cf:67:84:ff:be:86:a8:33:cb:25:fe:53:2f:17:ac:2b:e6:09:
6f:db:b7:29:e8:7e:ee:95:e7:96:f2:8a:27:86:eb:44:25:4f:
f5:4a:66:2c:43:23:5a:19:e4:d6:bc:24:3b:d7:84:93:35:6a:
61:6e:e1:63:f2:e3:eb:8f:72:28:42:a3:ae:50:35:5f:32:23:
63:ee:04:4c:ee:16:81:0a:9e:4b:76:2f:96:3d:20:6e:b1:f9:
c4:15:76:58:d5:7a:16:65:97:82:07:74:3e:e4:b9:0f:cb:a9:
2d:f1:61:af:a9:1f:68:db:4e:4e:66:51:7a:b4:8b:b2:0f:99:
69:30:45:bd:04:8b:a8:56:0b:28:2e:ac:15:1e:a4:00:d6:ae:
25:47:67:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 19:18:26 2025 by rpki-client