Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ud760PMkYQwd8tW7w23nGgP2fKM.roa
File: ud760PMkYQwd8tW7w23nGgP2fKM.roa (raw, json)
Hash identifier: 4dEnzfwkHO/+A+RARzz1Ldt9Q/9ZwgZeZrOQRJma/So=
Subject key identifier: B9:DE:FA:D0:F3:24:61:0C:1D:F2:D5:BB:C3:6D:E7:1A:03:F6:7C:A3
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018C554E8DEFCB77EEFC0792EF8BB9E2AAC0
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ud760PMkYQwd8tW7w23nGgP2fKM.roa
Signing time: Sun 10 Dec 2023 19:57:40 +0000
ROA not before: Sun 10 Dec 2023 19:57:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.145.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:55:4e:8d:ef:cb:77:ee:fc:07:92:ef:8b:b9:e2:aa:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Dec 10 19:57:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9defad0f324610c1df2d5bbc36de71a03f67ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:d0:8e:33:e5:7d:7f:4a:81:cb:e4:fa:24:
bb:72:9e:c4:d5:97:75:20:c9:de:50:80:5f:66:2a:
1c:b2:c7:30:68:dd:8e:c5:c1:19:da:7f:41:97:76:
e4:2c:70:90:8a:b1:ab:f5:be:ba:cc:45:e0:87:d9:
ee:78:5b:e3:4a:4a:bd:41:95:98:a7:b6:af:b9:6b:
ec:7f:c8:e1:1e:fb:6a:8e:aa:9a:6c:c9:1d:fd:3c:
ff:21:80:4b:d7:ef:ef:87:68:54:5b:48:03:a8:e9:
f7:e2:24:91:32:a5:4b:6d:7f:dc:e2:e9:ef:6f:44:
ce:d9:69:87:d5:ff:f1:89:8b:2c:9f:18:11:46:30:
5f:34:d8:63:0a:ef:4f:1d:b4:21:0f:fb:d4:2f:49:
a9:6f:0b:7f:c7:f4:e7:4f:36:a5:ab:58:4f:37:bd:
24:f1:49:fd:c0:87:d4:1e:b0:3c:27:f8:d5:8b:ce:
98:2b:46:9f:3c:de:18:79:a5:90:17:58:50:ac:ff:
48:4b:a4:14:d1:24:73:36:9f:12:37:92:c5:1c:17:
ee:e2:e8:09:e4:5a:42:4e:c2:d8:f4:fd:61:a3:6e:
94:59:8b:8c:5b:c1:e1:61:12:d7:d1:24:4a:6d:25:
40:4e:53:a3:1a:67:3e:55:20:77:c2:f7:37:41:34:
10:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:DE:FA:D0:F3:24:61:0C:1D:F2:D5:BB:C3:6D:E7:1A:03:F6:7C:A3
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ud760PMkYQwd8tW7w23nGgP2fKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.146.0/24
37.49.151.0/24
94.74.168.0/24
94.74.173.0/24
109.203.164.0/24
109.203.166.0/24
176.46.145.0/24
176.46.147.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:82:f3:de:d7:bd:fb:1e:bb:2e:93:94:eb:86:93:0b:e3:72:
cc:0a:9b:ad:01:ba:35:5d:14:49:2a:90:63:b7:b9:85:ce:23:
d7:e2:67:39:f4:3e:cd:df:21:2a:f5:c0:e3:0f:1c:51:3b:91:
bf:35:cc:37:77:39:e2:3a:a2:c5:2d:c0:a4:a1:ed:6a:13:29:
ec:05:bc:69:02:c2:db:88:ab:0e:d5:a4:51:4b:e9:87:fc:45:
a6:d6:d7:51:9c:f9:14:2e:c3:f7:59:7c:3f:df:23:99:1a:58:
1c:28:3c:54:45:43:59:e4:0f:61:a7:db:e7:6f:f1:9d:cf:df:
03:a3:fc:fa:c3:d6:76:08:eb:5b:59:c6:81:83:86:e0:2e:c6:
87:e6:9b:d4:59:91:3a:a3:38:cb:e8:67:05:2d:86:52:4c:bd:
6a:84:f2:48:8a:e3:45:28:10:68:95:51:3b:e8:5e:b7:9e:ef:
01:d5:ac:bc:21:43:be:ed:0d:e7:23:a9:7b:b8:ae:97:90:08:
b4:91:da:59:49:e9:d5:ce:65:fc:d7:d0:5d:f8:a1:0e:1b:32:
54:26:4d:0e:58:9e:49:d9:1d:27:06:26:ba:8d:fc:ea:70:2b:
3a:66:ae:34:11:d8:08:5e:61:86:03:55:2b:cc:e8:f8:dd:ef:
60:99:1e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:42 2025 by rpki-client