Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/csVL26fGjKaLUy1z7EXJwzAne84.roa
File: csVL26fGjKaLUy1z7EXJwzAne84.roa (raw, json)
Hash identifier: Bd63Z7/MdDp1auzvDdX7ILWiDVxm2iAaf2DMZHx/PtM=
Subject key identifier: 72:C5:4B:DB:A7:C6:8C:A6:8B:53:2D:73:EC:45:C9:C3:30:27:7B:CE
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B1B296F1FFD46DD73AA841B645D18
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/csVL26fGjKaLUy1z7EXJwzAne84.roa
Signing time: Sun 01 Jan 2023 13:35:11 +0000
ROA not before: Sun 01 Jan 2023 13:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209848
IP address blocks: 212.243.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:1b:29:6f:1f:fd:46:dd:73:aa:84:1b:64:5d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72c54bdba7c68ca68b532d73ec45c9c330277bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ed:78:af:85:7e:c7:ba:a9:9b:ee:35:60:35:
c1:61:25:24:7c:34:bc:bc:53:db:d4:1f:5d:84:31:
0e:5c:3f:19:07:03:e5:15:4e:f1:09:c5:09:f9:9d:
8c:9a:ec:f3:fb:39:27:21:d7:d0:d4:8c:67:d5:44:
a4:64:88:a6:43:39:12:a9:85:25:0d:9a:b0:2b:70:
aa:bd:fe:33:61:73:b1:ef:7d:ea:23:1a:43:d7:2b:
be:55:cf:6c:7b:81:e5:20:fd:79:ed:2e:1a:b3:2c:
08:d2:42:41:75:c1:91:47:68:d4:ae:9b:19:53:cf:
a3:dd:b6:21:f2:b9:30:9c:d5:58:f3:1b:61:3b:20:
d0:6d:ad:9b:8f:3a:d2:b2:4f:40:2d:5b:44:92:2b:
54:4a:9f:63:d1:45:83:1c:1c:39:d0:c2:43:e8:b7:
23:c4:8d:8c:43:51:3f:5a:f2:4c:03:f6:a0:96:6f:
9d:51:6d:4e:4f:f5:f4:c9:fe:02:39:bb:76:c3:37:
96:c9:90:b6:8e:7b:e5:72:f2:a5:2a:ce:ec:96:d0:
25:0d:04:9d:38:19:a8:1c:e5:f2:ce:cd:59:a0:3f:
18:ba:f0:0f:ba:07:59:d9:a4:a8:23:89:fc:a0:2e:
45:32:44:41:3a:a8:d5:d3:41:4f:6c:f8:a6:f2:0a:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C5:4B:DB:A7:C6:8C:A6:8B:53:2D:73:EC:45:C9:C3:30:27:7B:CE
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/csVL26fGjKaLUy1z7EXJwzAne84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:3d:a4:c1:a3:cd:30:7b:a9:97:ae:37:a5:c0:04:3b:bc:ab:
d1:b7:40:bf:f2:ba:d5:f7:b1:aa:10:74:0f:2a:73:0c:49:03:
f8:ce:68:71:d4:24:e5:98:58:38:03:bb:b2:94:82:ec:11:af:
82:1a:d4:91:30:40:a7:ba:8e:d6:8d:5e:1f:f9:32:77:d0:1b:
85:b7:bd:59:45:0e:37:8a:5c:25:35:26:f8:7c:96:93:6e:55:
fa:a9:4e:24:8a:e0:49:5e:b4:d6:0b:e0:39:04:90:cf:28:57:
1d:b4:1e:15:96:90:26:1f:87:8b:bf:eb:4d:e8:07:0a:14:92:
f6:3c:e9:fd:c3:e1:ee:30:bf:2f:ee:02:7c:87:73:18:b1:0c:
eb:d5:ce:35:56:ae:55:73:f7:88:04:b6:a1:76:09:8b:1a:c7:
56:53:57:ac:a7:9b:dc:8b:97:1f:db:4b:b0:e9:12:8c:e6:d7:
5c:55:d6:24:5e:0c:12:79:6a:fe:67:cb:67:60:93:52:43:ed:
c5:db:29:dc:7c:32:32:87:64:6f:17:4c:8d:f5:b1:15:10:f1:
cb:de:10:7b:95:07:29:b7:5e:12:e5:ec:9d:ad:ef:50:bb:b0:
62:74:6a:77:e6:ae:7e:9d:38:f3:8d:cb:2a:d9:88:f9:ae:06:
09:99:f6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:07:31 2025 by rpki-client