Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FIxiW_4WpouKHuwTJGBg4b6d4aU.roa
File: FIxiW_4WpouKHuwTJGBg4b6d4aU.roa (raw, json)
Hash identifier: XTRcX+cbFtp+ObJ9shBU5wSXkyO0r4JEr6cz/3RK9I0=
Subject key identifier: 14:8C:62:5B:FE:16:A6:8B:8A:1E:EC:13:24:60:60:E1:BE:9D:E1:A5
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50D9769D
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FIxiW_4WpouKHuwTJGBg4b6d4aU.roa
Signing time: Sat 01 Jan 2022 16:01:50 +0000
ROA not before: Sat 01 Jan 2022 16:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48318
IP address blocks: 194.209.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1356428957 (0x50d9769d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=148c625bfe16a68b8a1eec13246060e1be9de1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8a:37:f8:fd:fd:30:29:5f:a7:50:29:31:ee:
43:94:10:6d:dd:5c:b1:ce:6a:03:b0:fe:bb:59:b4:
57:d9:57:1d:2b:db:ae:6f:f9:8d:1b:38:9f:d6:07:
6c:e0:ad:ac:b8:56:b4:83:e2:55:f3:5d:8a:c0:cc:
82:03:35:65:bf:ba:dc:ef:17:6c:d4:57:b9:31:36:
6a:74:99:02:c1:84:bf:4b:d3:69:c1:90:dd:50:dc:
11:f4:30:68:df:60:ca:49:13:b5:c4:64:2a:2e:6b:
be:96:07:30:28:17:d1:0a:1e:3c:ea:7e:6a:d2:71:
a0:a8:2b:be:8d:7f:85:45:31:a9:4d:b0:fb:b5:fe:
42:6a:24:e3:12:65:5e:2e:39:0e:f2:0b:dd:de:75:
c5:c4:69:d8:12:85:dc:85:ba:86:ed:8c:0a:3f:82:
99:41:c7:b4:e2:21:60:80:61:50:d2:37:27:e1:55:
bb:1e:08:f6:a2:7a:db:79:1e:c6:12:27:b9:e1:04:
dd:05:6d:d6:19:db:2c:26:69:7a:19:71:b7:b1:34:
e4:8c:c1:31:dc:a7:ab:af:ed:5e:48:20:4d:54:cc:
4f:a4:aa:9d:c5:e1:ed:6e:00:98:81:d4:bf:d4:e7:
a6:24:3d:78:e8:17:c9:f9:76:d1:80:7a:11:23:39:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8C:62:5B:FE:16:A6:8B:8A:1E:EC:13:24:60:60:E1:BE:9D:E1:A5
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FIxiW_4WpouKHuwTJGBg4b6d4aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.227.0/24
Signature Algorithm: sha256WithRSAEncryption
af:bf:e7:8c:47:1c:2c:b0:59:59:07:09:39:5b:9a:aa:5b:40:
97:f8:74:a6:d9:17:d6:7c:cc:1e:2e:3b:d1:62:42:fd:e1:58:
9f:ef:cd:ac:e2:09:22:21:45:04:bb:81:67:4d:bf:e2:1e:1b:
e4:e3:67:81:96:16:e0:8d:9c:17:3d:d7:39:df:1c:49:90:a8:
51:f5:68:b4:88:80:00:22:2d:65:91:e9:4b:be:23:82:32:59:
21:45:e2:18:0e:b4:2d:e0:19:b1:14:51:f1:fe:63:9f:42:a3:
ce:8c:01:0e:7a:e3:d2:62:2f:83:7a:6a:85:80:4a:06:07:db:
e5:13:95:19:fe:12:de:4d:7f:c6:4f:79:d2:55:d0:98:97:6d:
51:47:d5:0a:57:3e:62:4e:e4:01:4f:e7:6c:f6:14:cd:49:ba:
78:33:e9:48:f0:00:0e:d5:38:3b:43:d2:3a:f4:5f:a4:cb:36:
ed:a3:53:4b:c0:e8:8d:04:43:5d:fb:3e:cd:35:ae:cd:eb:aa:
4f:3f:00:74:83:ec:38:cb:61:fc:c1:ef:27:a9:9d:96:e8:75:
3d:28:40:9e:85:b3:94:a8:fd:19:26:2e:b8:28:36:00:a4:7d:
6e:6a:35:f7:89:86:58:2e:88:16:dd:d4:3a:fb:09:b0:2c:0c:
98:23:18:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:16:31 2025 by rpki-client