Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/1-lkmrH1pWitDOAoHC-1ivvx_mRQ.roa
File: 1-lkmrH1pWitDOAoHC-1ivvx_mRQ.roa (raw, json)
Hash identifier: /GU+jZXkn6qEiNd8GfXHGPETmubux97wGdd4FcASd+I=
Subject key identifier: FA:59:26:AC:7D:69:5A:2B:43:38:0A:07:0B:ED:62:BE:FC:7F:99:14
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50F08A62
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/1-lkmrH1pWitDOAoHC-1ivvx_mRQ.roa
Signing time: Sat 01 Jan 2022 16:02:04 +0000
ROA not before: Sat 01 Jan 2022 16:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210998
IP address blocks: 194.6.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1357941346 (0x50f08a62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa5926ac7d695a2b43380a070bed62befc7f9914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b0:fd:bf:b5:9c:0a:f2:ee:1d:78:c3:c9:05:
da:08:6b:b8:93:09:11:8f:9c:54:ae:cc:2d:19:16:
98:c0:3e:c1:80:fa:2d:95:1a:18:95:f1:5d:fd:64:
40:6b:ea:5a:cb:c7:bc:82:eb:46:cf:b1:c9:1a:41:
7c:89:b8:52:2d:1c:55:03:cc:6b:fc:1f:62:0b:8b:
ff:a5:b9:f3:ae:03:79:34:38:fb:15:59:1c:49:af:
66:a9:18:90:fb:66:92:13:65:34:94:d9:c8:e9:54:
dc:7e:a9:b4:1c:b1:92:92:28:8b:c2:58:68:89:e9:
7a:f3:4f:6c:08:67:74:4e:73:99:4e:4c:bd:66:20:
bf:0e:1b:ff:c7:e6:91:f1:1b:86:57:29:5b:ca:43:
7f:36:dd:e3:4c:59:74:ab:71:db:04:fd:60:4c:0f:
d9:97:5c:ff:70:e6:9f:5f:95:96:64:b4:3d:16:66:
93:9f:a1:49:e5:de:d9:88:d8:10:e1:4a:b6:cc:16:
b8:34:30:cc:93:c8:e0:30:6d:66:b8:48:e2:39:57:
7b:a8:5c:38:9c:53:3f:b6:6c:69:ad:87:74:83:35:
ad:d1:fe:9f:a8:3e:57:41:22:41:ea:61:e0:d8:57:
ea:67:81:f8:7f:a9:4d:5d:34:56:9e:c3:82:18:f4:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:59:26:AC:7D:69:5A:2B:43:38:0A:07:0B:ED:62:BE:FC:7F:99:14
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/1-lkmrH1pWitDOAoHC-1ivvx_mRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.177.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b9:a9:23:e0:31:12:10:93:e1:b4:a3:aa:32:e6:86:a3:e9:
75:e9:13:f0:3a:5c:87:01:19:7d:f9:4e:ac:9a:83:60:10:9f:
1e:09:f5:cb:42:b8:b0:e4:7c:18:40:85:09:4a:13:56:eb:3a:
96:cf:05:ac:8a:b4:3e:98:59:df:96:32:6d:eb:d2:dc:37:1b:
f4:02:c7:11:bf:f7:a4:e3:bd:41:07:e9:90:0b:77:d6:76:96:
0f:86:5c:8b:93:cc:de:d1:93:a3:1e:6c:d3:62:59:2b:b7:d6:
45:16:84:c4:1f:96:00:98:40:6c:e2:a8:70:b6:03:f6:12:76:
ea:71:d2:d1:18:98:da:b9:4d:4a:6f:06:fa:b8:9b:88:4d:cf:
64:4d:16:f9:21:da:f1:59:46:d8:9e:c9:5b:b0:4b:43:da:84:
1d:92:ec:9c:b7:60:44:56:a0:66:87:c3:9d:49:de:cb:90:64:
27:a0:02:48:4d:46:a6:b7:38:35:84:4b:59:c4:ce:ee:64:60:
d1:c8:fc:29:76:72:39:87:54:19:78:ab:6d:d9:bc:19:fd:97:
40:9f:14:ad:bb:8d:e1:70:79:cb:d7:c0:fe:48:6b:a2:d8:48:
35:9d:6f:7e:50:e0:0a:41:02:5b:48:92:81:d9:b8:6a:5c:1c:
cf:a0:d4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:32:53 2025 by rpki-client