Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/aa7d87-4dce-44a3-aa54-f85e33dd8946/1/RMWv8O0Bh7Guh4SJYYNTnkPH9YM.roa
File: RMWv8O0Bh7Guh4SJYYNTnkPH9YM.roa (raw, json)
Hash identifier: bwSznVlfLOOD8aP7B8QsnBahhofxZv2ZTQPVWfS2IvY=
Subject key identifier: 44:C5:AF:F0:ED:01:87:B1:AE:87:84:89:61:83:53:9E:43:C7:F5:83
Certificate issuer: /CN=6896d9c14a8ab5d8b0b408187ece15a0d23cee1c
Certificate serial: 0282F9A1
Authority key identifier: 68:96:D9:C1:4A:8A:B5:D8:B0:B4:08:18:7E:CE:15:A0:D2:3C:EE:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbZwUqKtdiwtAgYfs4VoNI87hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/aa7d87-4dce-44a3-aa54-f85e33dd8946/1/RMWv8O0Bh7Guh4SJYYNTnkPH9YM.roa
Signing time: Mon 28 Mar 2022 15:54:48 +0000
ROA not before: Mon 28 Mar 2022 15:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13045
IP address blocks: 192.109.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42138017 (0x282f9a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896d9c14a8ab5d8b0b408187ece15a0d23cee1c
Validity
Not Before: Mar 28 15:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44c5aff0ed0187b1ae8784896183539e43c7f583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:eb:57:35:8c:01:47:a0:8d:08:ee:85:e8:63:
f0:d7:fc:3c:be:1f:cc:75:48:25:c8:2d:1c:14:4d:
bd:30:d1:ef:d8:e1:c5:69:16:a1:b5:24:38:ca:9a:
ec:cd:5b:a8:ae:70:44:af:3f:de:f7:9d:c8:14:55:
d3:bb:1b:dd:21:d9:0b:6e:59:30:28:a8:32:89:15:
d8:6b:c7:d4:0d:44:a1:4c:4f:c6:92:4d:ee:61:c9:
ee:48:85:27:f6:06:89:31:78:6e:9f:f6:02:2d:ad:
1d:aa:c6:be:da:d0:43:f9:be:f7:31:10:2f:0d:75:
a8:4f:43:8f:24:19:bc:20:ed:16:70:21:45:a3:01:
b8:48:f6:34:e0:9f:29:b8:82:66:23:34:94:42:03:
58:97:38:72:02:3c:0b:ce:c1:86:5e:fc:7e:03:37:
b0:50:9e:d6:fc:3b:d4:9f:ef:4e:c5:5e:fc:7e:8b:
39:d8:cd:ff:eb:3a:34:aa:0d:e9:c8:de:17:0b:85:
80:c5:7f:65:e7:b0:d8:c9:bf:fa:ac:15:7c:3c:56:
3e:dd:93:a3:2a:c4:0e:8a:19:98:d3:59:19:9e:27:
eb:9d:bc:ea:36:c2:9c:39:97:ea:0f:88:b0:6f:5f:
3a:5f:19:b2:83:3e:4a:4d:fa:48:00:61:61:a8:0b:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C5:AF:F0:ED:01:87:B1:AE:87:84:89:61:83:53:9E:43:C7:F5:83
X509v3 Authority Key Identifier:
keyid:68:96:D9:C1:4A:8A:B5:D8:B0:B4:08:18:7E:CE:15:A0:D2:3C:EE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbZwUqKtdiwtAgYfs4VoNI87hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/aa7d87-4dce-44a3-aa54-f85e33dd8946/1/RMWv8O0Bh7Guh4SJYYNTnkPH9YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/aa7d87-4dce-44a3-aa54-f85e33dd8946/1/aJbZwUqKtdiwtAgYfs4VoNI87hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.36.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ba:80:a6:61:5a:0a:cf:14:c8:9e:24:8c:df:2f:0d:12:c4:
d4:60:64:33:c9:f9:8f:0e:6b:7f:fa:02:8e:62:a5:06:2f:72:
cd:e1:c6:e4:5b:8b:c3:d0:a2:c8:d3:f2:17:6b:0b:9e:43:12:
ec:d5:f5:e1:ef:30:8a:71:ba:77:95:46:90:c1:29:eb:5c:0f:
10:f2:50:cd:3e:a0:ae:4c:40:3a:5f:ee:b0:1b:d7:43:cb:28:
b5:d9:fb:db:59:a0:18:8d:64:a3:7b:fd:d4:0d:cb:18:df:c7:
48:4d:b8:c9:88:41:dc:cb:37:de:c1:15:36:52:f9:c7:24:58:
03:15:59:c6:bd:f3:62:08:14:21:62:16:1e:f6:7e:b5:0b:87:
f3:25:18:26:7a:d3:de:dd:0b:94:ec:9d:98:29:0f:b5:6d:46:
27:e8:6a:97:25:53:c6:f4:26:60:3f:a6:0f:e3:d3:02:58:c5:
4d:c2:53:07:13:5c:58:c4:a5:bf:54:02:9a:f7:77:a9:6d:f2:
9d:8e:b9:f3:bf:45:49:25:79:8e:08:71:78:a0:4c:22:89:af:
f2:02:ca:cf:96:8f:77:91:7f:8c:03:08:ef:4c:12:d4:ca:f3:
a9:47:aa:f6:6a:f3:41:25:c6:65:31:8d:93:73:4b:5e:5c:79:
7c:de:1c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:41 2025 by rpki-client