Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/m9786I__b5mnJEJvACRHMcQq75Q.roa
File: m9786I__b5mnJEJvACRHMcQq75Q.roa (raw, json)
Hash identifier: f5EvAJQEMsBHtH6GKrqRZ+o6MpsO7gbDVQ2pAhdjfPE=
Subject key identifier: 9B:DE:FC:E8:8F:FF:6F:99:A7:24:42:6F:00:24:47:31:C4:2A:EF:94
Certificate issuer: /CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Certificate serial: 08119580
Authority key identifier: B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/m9786I__b5mnJEJvACRHMcQq75Q.roa
Signing time: Sat 01 Jan 2022 10:03:41 +0000
ROA not before: Sat 01 Jan 2022 10:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210250
IP address blocks: 194.1.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135370112 (0x8119580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Validity
Not Before: Jan 1 10:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bdefce88fff6f99a724426f00244731c42aef94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f8:db:1e:eb:02:0a:22:c2:9c:be:4e:b7:61:
b0:0d:ad:5a:0e:1a:c0:78:72:f3:76:26:40:a4:de:
79:6d:a9:93:bc:0e:e9:98:af:a9:c0:d9:d8:87:bc:
a2:e9:79:97:8e:91:7f:25:75:91:fd:f6:d8:e8:a7:
9a:12:4d:67:b3:46:a9:7d:02:51:fa:37:dd:cd:7c:
72:ad:b4:a2:a4:e4:3c:07:71:e6:d7:b5:2e:99:1d:
50:aa:5e:77:91:ee:91:a0:bb:f3:7a:76:ea:8d:12:
73:0c:b5:4c:23:26:d8:72:c4:e8:d6:1d:c5:b1:d3:
f5:9c:be:57:72:2b:65:07:e8:3d:49:5f:c5:11:23:
71:05:88:29:21:b9:01:dc:19:03:c8:0c:2b:69:ec:
42:28:52:61:11:8a:ac:63:a1:57:da:b3:11:95:78:
42:51:e8:bf:a5:62:bf:f0:fc:56:db:33:61:32:65:
4e:6e:b8:43:23:89:33:3a:24:71:23:ba:95:45:72:
96:26:3e:e3:e4:7b:1c:e4:12:0c:74:91:a7:b7:4c:
b5:a0:cf:65:c1:a0:72:9b:90:65:5a:e8:61:78:64:
91:6e:00:ae:00:2e:3d:5e:51:e9:2f:f1:a8:59:34:
11:5c:f7:8b:e3:cf:7b:91:c5:6b:39:3d:64:d6:95:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DE:FC:E8:8F:FF:6F:99:A7:24:42:6F:00:24:47:31:C4:2A:EF:94
X509v3 Authority Key Identifier:
keyid:B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/m9786I__b5mnJEJvACRHMcQq75Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.147.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:c0:cb:8c:a9:01:61:e7:b1:70:a1:c0:46:8f:c0:8c:a8:7b:
ed:6c:2a:8b:e9:23:9b:4f:68:42:6d:4d:76:d9:9a:31:6f:b8:
6a:19:24:34:91:91:4d:f5:a3:66:89:b6:bf:9f:04:26:9f:22:
08:a2:db:62:0b:40:58:cd:58:7b:50:f9:b2:92:ab:bd:d2:15:
79:ab:46:9c:8d:96:0b:d5:c7:5c:b4:60:14:4c:80:68:bc:d1:
67:fb:47:76:1f:0f:25:fa:01:9f:23:1e:94:4e:12:ea:77:0c:
76:70:4e:17:6e:8c:3f:f6:11:d2:2b:c8:5f:c1:1a:25:7b:88:
29:c1:83:d5:68:79:85:f1:43:fe:62:6b:ec:da:f2:d5:d4:55:
72:d2:1e:13:e7:33:20:f3:ed:f1:4c:52:b9:f4:25:c5:b0:17:
f4:c4:c5:c2:63:96:69:0d:33:0b:bb:8b:67:5e:cb:75:86:5c:
a1:eb:01:83:29:d2:af:4d:28:73:4b:c6:0f:a1:43:71:d9:2f:
40:4c:a3:f0:d5:82:89:f6:f8:e9:05:de:55:d2:c3:3f:a1:1c:
12:d4:5d:f9:fe:f8:3d:7c:57:5c:b0:72:52:7c:ac:73:5a:de:
d0:6f:90:30:16:c3:11:df:fa:1a:30:12:ed:8d:c1:33:f6:98:
ff:c3:b1:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:17:33 2025 by rpki-client