Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/8wBNIe9FdGsGaehi3k1dBymfnic.roa
File: 8wBNIe9FdGsGaehi3k1dBymfnic.roa (raw, json)
Hash identifier: VSUprqtHFi4S9l4TALecdNWV8fdsvlCqmCyyb63I3Tk=
Subject key identifier: F3:00:4D:21:EF:45:74:6B:06:69:E8:62:DE:4D:5D:07:29:9F:9E:27
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 0C8C9EB1
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/8wBNIe9FdGsGaehi3k1dBymfnic.roa
Signing time: Sat 01 Jan 2022 09:57:32 +0000
ROA not before: Sat 01 Jan 2022 09:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47973
IP address blocks: 51.163.160.0/19 maxlen: 24
51.163.192.0/18 maxlen: 24
185.174.124.0/22 maxlen: 24
2a0b:9f00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210542257 (0xc8c9eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Jan 1 09:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3004d21ef45746b0669e862de4d5d07299f9e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:31:a8:84:31:ef:eb:93:59:aa:eb:37:ed:fc:
a5:c7:77:bf:af:0e:93:09:d9:24:64:3b:c3:77:30:
61:42:70:e9:bd:f7:b3:0b:ca:e7:ff:cd:fb:6e:bd:
4d:22:0e:19:18:81:11:42:f2:16:25:11:d1:90:45:
05:c0:8e:15:1b:23:f0:bf:1c:55:cb:9a:b5:fb:b6:
7d:62:34:bb:b8:9c:73:02:39:eb:27:3a:c4:a6:4d:
88:db:61:d7:cc:16:d9:fe:bd:2c:cb:91:71:86:47:
46:c6:ac:fd:ce:fb:47:66:8d:3c:6b:fb:da:32:e4:
0a:42:94:8c:7f:99:21:18:d9:66:4a:d4:0c:04:6c:
3e:da:86:44:e9:58:1e:16:b8:68:ba:59:44:9a:e8:
25:3c:c0:06:eb:b0:9a:76:37:50:04:9e:86:8b:8f:
11:31:24:ce:13:0d:e1:50:28:e6:01:2b:0e:a0:10:
32:31:2a:37:56:84:92:87:1c:36:8a:6e:08:da:d5:
fd:b4:56:45:5c:44:f9:d6:a9:2b:fc:ac:5b:00:d1:
e2:80:48:70:70:22:4c:0a:9b:8e:89:ee:e8:9d:e8:
ba:54:83:96:3f:a5:b5:86:8b:1b:33:68:94:62:ac:
71:d7:d5:7a:06:bf:00:71:66:47:b4:02:ab:8f:6e:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:00:4D:21:EF:45:74:6B:06:69:E8:62:DE:4D:5D:07:29:9F:9E:27
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/8wBNIe9FdGsGaehi3k1dBymfnic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.163.160.0-51.163.255.255
185.174.124.0/22
IPv6:
2a0b:9f00::/29
Signature Algorithm: sha256WithRSAEncryption
08:d1:0f:a1:0d:f3:dd:b1:23:97:69:fb:0e:6f:37:35:d6:10:
1b:bf:01:8a:6d:75:38:82:55:85:ba:80:56:ab:e7:4a:c6:83:
e5:77:c7:7e:45:9a:2d:fc:57:56:14:03:8f:77:dc:3e:ae:89:
5f:82:81:d4:53:13:a8:cb:38:d6:46:20:ad:cd:be:7a:53:9c:
5f:8a:78:ab:7e:d7:44:bc:a2:6d:34:8e:af:3a:d4:53:f3:52:
03:ae:11:2e:ab:51:ba:c5:96:84:82:9b:40:a7:39:6e:c4:d9:
24:12:7c:1f:38:07:44:22:6c:7f:98:3c:1a:16:11:19:e2:00:
e2:f5:c5:c1:84:4f:de:d3:3f:b3:e9:68:52:6f:11:2c:43:43:
18:ea:58:b4:ce:2e:51:59:d2:94:2c:5a:a5:a0:a4:76:b1:67:
36:87:32:c6:a4:2b:c1:89:06:03:8a:c3:0d:8f:e0:3b:e8:6d:
4f:80:1d:74:19:94:01:11:31:bf:62:d5:0e:77:cf:f1:5b:0d:
63:fe:9f:99:34:c1:b9:79:ce:dc:89:52:35:79:b7:97:19:a5:
54:ad:f8:41:86:39:44:01:15:68:f1:da:11:b3:16:cb:58:de:
dd:a9:c5:0b:a9:c1:c1:a0:79:a4:d7:07:bf:37:8c:3d:76:c3:
95:2e:19:09
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:11 2025 by rpki-client