Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/m2qtO4NuXIaMtT7UEY8TCyDOsec.roa
File: m2qtO4NuXIaMtT7UEY8TCyDOsec.roa (raw, json)
Hash identifier: KUFLNuihUj+yuqdtydJ3DciBPeRWgHB7nT0tJjOs18M=
Subject key identifier: 9B:6A:AD:3B:83:6E:5C:86:8C:B5:3E:D4:11:8F:13:0B:20:CE:B1:E7
Certificate issuer: /CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Certificate serial: 0511F8CD
Authority key identifier: 24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/m2qtO4NuXIaMtT7UEY8TCyDOsec.roa
Signing time: Sat 01 Jan 2022 13:01:33 +0000
ROA not before: Sat 01 Jan 2022 13:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28686
IP address blocks: 194.147.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85063885 (0x511f8cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Validity
Not Before: Jan 1 13:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b6aad3b836e5c868cb53ed4118f130b20ceb1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5b:b7:73:b2:9f:ec:5a:c3:6d:03:3c:ab:4b:
f0:42:6d:fd:28:ec:1e:1d:d2:16:40:eb:bb:86:24:
e4:ab:51:07:21:5c:af:20:5f:7b:c8:c1:0c:7f:39:
f2:09:c4:0a:ab:35:0d:1a:97:f9:50:77:91:26:01:
df:d2:31:00:53:1f:f2:19:44:01:47:50:18:1b:6e:
ae:0b:9c:1a:45:f7:5a:ec:e6:be:7c:63:41:d5:c9:
ad:40:df:97:d3:86:72:6e:2b:20:e9:d9:6d:f2:b7:
95:b3:dd:2a:fc:d7:f9:a0:bc:f6:0e:29:54:30:cc:
a9:60:31:c2:ec:45:71:17:c6:ea:a8:25:20:40:48:
3a:39:cc:51:e9:96:b1:09:4c:15:d8:14:e3:54:84:
8a:7c:55:57:47:1b:8f:76:32:aa:24:16:02:78:4e:
8d:ac:44:bf:35:93:c1:28:32:8e:0d:11:72:94:b3:
29:6c:42:6d:b7:05:9d:ea:e6:d7:56:0a:95:05:8a:
c5:88:34:72:e1:27:90:4f:11:5a:e1:f2:79:69:36:
b2:a7:e5:d0:27:ea:eb:c5:4b:a2:41:8b:41:ce:de:
8d:05:3a:fe:da:98:8a:10:38:59:a7:0f:fa:95:90:
0e:9a:93:b7:76:59:c8:f5:7f:8a:09:5c:f5:b1:89:
a7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:6A:AD:3B:83:6E:5C:86:8C:B5:3E:D4:11:8F:13:0B:20:CE:B1:E7
X509v3 Authority Key Identifier:
keyid:24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/m2qtO4NuXIaMtT7UEY8TCyDOsec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/JGdgNiMUO9G8eo_J2OedlVlhGGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.192.0/22
Signature Algorithm: sha256WithRSAEncryption
15:1a:f8:88:24:e1:48:0a:12:f3:b8:13:db:41:82:d7:93:be:
3c:6b:8b:c0:34:48:f9:62:9a:a1:83:8f:17:09:38:4c:50:c7:
bf:61:27:14:27:88:5e:a0:2c:b1:c6:1d:94:c0:32:fe:cd:55:
1f:a8:6f:1e:b1:f9:47:9b:6b:c6:cd:6e:a6:58:d7:c6:35:8b:
8d:e2:02:bd:15:12:34:e9:e3:4f:f5:71:fb:e7:28:92:87:a6:
b1:83:3a:fc:78:e0:59:22:54:c2:f2:d3:8f:94:81:b5:3a:2e:
06:3f:88:51:af:7d:52:98:55:88:eb:34:a3:da:54:7c:b7:9f:
38:8c:75:57:9c:20:68:62:88:52:b2:8a:db:d2:2a:41:44:c0:
a6:65:91:ea:f0:d6:5e:ce:cb:d3:ed:6a:4a:cb:c2:2e:6a:74:
3c:e9:82:17:fa:f9:83:a0:49:4c:6b:4b:11:b2:41:32:b9:ce:
61:a3:da:66:69:d5:d6:4b:d9:ac:02:1d:bb:90:ee:d5:15:2c:
a6:87:e8:9e:d7:dc:82:8b:e4:2a:ff:6e:eb:cc:4b:3e:e1:1f:
80:71:f4:9a:5c:70:c8:1f:89:ae:8b:1b:53:0f:65:10:d9:bf:
69:68:0c:76:31:65:8b:8a:fa:d6:c5:9b:a5:6e:58:76:ba:04:
59:b0:17:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:34 2025 by rpki-client