Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bf1283-8d1b-4b1a-b9d9-0e195ec65b72/1/KUixm3Q4Hpe0ZyBWS0zb6RWbe_A.roa
File: KUixm3Q4Hpe0ZyBWS0zb6RWbe_A.roa (raw, json)
Hash identifier: RJAlF1baQMUt9U2EQcVLIBRqvMZ7OYHGrbQT7cTQcO4=
Subject key identifier: 29:48:B1:9B:74:38:1E:97:B4:67:20:56:4B:4C:DB:E9:15:9B:7B:F0
Certificate issuer: /CN=b415beef9ea1dd4772c2ee952761d655d9865026
Certificate serial: 0187BD435304FFAB2C44F984FECC4723CE54
Authority key identifier: B4:15:BE:EF:9E:A1:DD:47:72:C2:EE:95:27:61:D6:55:D9:86:50:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBW-756h3Udywu6VJ2HWVdmGUCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bf1283-8d1b-4b1a-b9d9-0e195ec65b72/1/KUixm3Q4Hpe0ZyBWS0zb6RWbe_A.roa
Signing time: Wed 26 Apr 2023 11:11:58 +0000
ROA not before: Wed 26 Apr 2023 11:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202546
IP address blocks: 185.127.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:43:53:04:ff:ab:2c:44:f9:84:fe:cc:47:23:ce:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b415beef9ea1dd4772c2ee952761d655d9865026
Validity
Not Before: Apr 26 11:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2948b19b74381e97b46720564b4cdbe9159b7bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:dd:42:89:0f:fe:aa:b3:d8:e6:9a:cd:f7:0f:
61:76:7d:26:b5:2f:32:f8:39:0f:57:5f:c5:87:c7:
b9:0c:c9:d4:25:d5:c1:d6:36:76:6b:dd:f4:2b:fb:
3e:60:07:4c:fe:ff:80:2c:bd:97:00:5b:1c:87:db:
08:59:24:8d:9d:56:ed:0d:bd:ae:80:1b:39:6f:bd:
7e:71:78:77:20:3b:2c:f7:df:1a:d9:df:e6:26:88:
43:9c:b3:be:65:52:68:cc:26:92:8d:70:33:f0:5c:
51:e4:de:ce:04:01:30:87:f9:44:50:b1:e4:ff:e9:
57:27:2c:9b:f8:53:ac:c8:d5:0c:09:bf:01:6d:2d:
fd:8a:d3:49:31:a5:c1:c6:95:f3:aa:33:26:2f:2b:
8b:af:2c:93:b6:ba:40:73:47:5b:a1:58:de:3a:56:
33:23:b5:c4:be:ba:0f:da:7f:83:34:b8:21:d4:08:
66:c5:e8:37:86:47:d5:fa:f3:f8:2b:78:5f:a7:43:
1b:db:10:49:86:d1:fd:ad:dd:75:af:a4:92:db:73:
44:2d:52:f6:60:b1:0d:aa:dd:9c:a4:de:6f:0f:0b:
36:3b:0e:12:a7:45:bf:0c:71:2a:ea:69:b0:c4:e8:
6b:55:63:c1:94:40:5f:d9:de:04:cf:2b:d1:12:af:
59:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:48:B1:9B:74:38:1E:97:B4:67:20:56:4B:4C:DB:E9:15:9B:7B:F0
X509v3 Authority Key Identifier:
keyid:B4:15:BE:EF:9E:A1:DD:47:72:C2:EE:95:27:61:D6:55:D9:86:50:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBW-756h3Udywu6VJ2HWVdmGUCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bf1283-8d1b-4b1a-b9d9-0e195ec65b72/1/KUixm3Q4Hpe0ZyBWS0zb6RWbe_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bf1283-8d1b-4b1a-b9d9-0e195ec65b72/1/tBW-756h3Udywu6VJ2HWVdmGUCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:5c:4b:3a:50:2f:47:7b:db:0e:d9:39:40:f9:86:3c:c9:2b:
23:83:1e:a4:5c:df:60:9c:c3:2d:5b:a3:76:b4:4e:4e:ad:7c:
6b:c8:33:a2:8a:20:69:96:43:64:0e:9c:ab:4c:d5:1c:85:6e:
fe:73:19:32:57:5d:16:4f:d6:b8:a8:43:ca:bb:62:cd:67:a6:
6d:af:c5:74:60:f4:d2:18:fb:e5:ac:a3:3b:96:2e:03:f7:a6:
9f:ad:9c:fe:f9:ff:90:61:c1:18:06:18:07:15:87:af:2b:4c:
47:26:8a:de:a5:ec:8e:d3:c1:9e:b8:f8:57:b1:81:fb:e0:21:
64:45:81:dd:0f:ca:76:74:6c:61:a1:a4:be:38:48:47:07:1b:
42:67:97:e7:0b:f7:bf:a8:8e:15:c8:60:c4:a9:17:ae:c3:64:
b6:a8:13:ff:96:fb:19:69:20:0e:08:97:4d:a3:9d:9e:0c:59:
be:09:0d:c0:93:f1:06:8b:42:bb:99:95:34:f2:6c:99:a1:bb:
5f:68:a2:e6:42:7f:56:85:4d:c8:ba:d8:4b:f6:60:1f:80:32:
ed:c6:ed:4e:d5:2f:1c:d9:4e:4e:93:20:b0:5a:cc:d0:57:f9:
f9:45:62:84:38:dd:c3:8c:ab:45:30:87:f3:6a:fe:65:30:39:
f6:bc:26:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:01:21 2025 by rpki-client