Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/gO3oWvZVkGeWjaHj7SxFtGpE754.roa
File: gO3oWvZVkGeWjaHj7SxFtGpE754.roa (raw, json)
Hash identifier: K2YuCbPbUx1I99R50/QdTZX8YbTDxsBYhiJs71Yubuw=
Subject key identifier: 80:ED:E8:5A:F6:55:90:67:96:8D:A1:E3:ED:2C:45:B4:6A:44:EF:9E
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50DB1622
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/gO3oWvZVkGeWjaHj7SxFtGpE754.roa
Signing time: Sat 01 Jan 2022 16:01:51 +0000
ROA not before: Sat 01 Jan 2022 16:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50734
IP address blocks: 194.209.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1356535330 (0x50db1622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80ede85af6559067968da1e3ed2c45b46a44ef9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a3:a7:f8:bd:7d:8c:5b:0a:32:2d:f9:2a:47:
0a:5a:42:28:d8:d6:c6:4e:da:cc:8a:4a:64:1f:a2:
97:e9:8a:76:20:d0:86:1e:02:5f:e6:d2:2a:7c:0b:
c0:bc:d8:b8:ff:71:1d:8e:17:13:89:82:6e:c5:c2:
17:a7:bc:4c:9f:7f:5a:15:a0:f8:0a:fa:e9:22:5e:
6e:ca:a3:ee:37:0c:49:3b:31:dd:3d:5a:de:c4:57:
0f:27:64:47:04:12:67:51:12:e5:08:39:25:ae:c1:
4b:ae:83:b8:7b:15:10:63:ff:aa:95:4f:4b:3f:f6:
08:8c:34:d2:27:15:bb:98:b2:b2:02:4f:b7:e3:35:
76:82:ae:c0:8b:5e:3d:94:c7:89:56:5f:fc:22:fb:
f7:8d:19:53:05:8f:a3:36:c6:32:3b:96:29:e7:fd:
83:79:c5:2b:ec:97:7b:f6:3e:c2:be:69:fd:da:a5:
34:c9:81:e4:f2:ab:62:ca:7a:9c:9e:88:fc:0a:25:
ce:a9:6d:b8:6c:22:02:f4:ec:32:fc:78:03:7a:13:
b9:35:20:89:99:97:9d:3f:ea:02:33:f2:37:4f:41:
44:b8:98:86:7c:c0:39:eb:7d:de:3a:77:7f:3d:9e:
0f:86:77:08:ce:68:d0:4f:d8:08:43:87:b9:d5:e9:
ab:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:ED:E8:5A:F6:55:90:67:96:8D:A1:E3:ED:2C:45:B4:6A:44:EF:9E
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/gO3oWvZVkGeWjaHj7SxFtGpE754.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.78.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a3:16:2f:c2:93:bf:0f:16:dd:75:48:61:e5:73:47:1c:d4:
0f:76:71:6b:68:bc:66:9f:72:85:57:1a:90:a8:88:64:63:92:
e0:67:12:f8:aa:e4:63:21:67:14:be:53:00:e4:34:8d:24:d2:
86:56:6f:fc:89:0a:28:3a:3a:ad:f8:8a:bb:27:af:15:93:89:
99:bb:ad:ff:4b:65:89:c8:78:ad:4c:e1:d6:58:59:8f:d6:45:
31:c3:82:f6:1e:75:51:f8:b0:c9:bd:71:a0:ed:f1:83:55:96:
c3:7e:f5:8f:52:8f:4d:f3:29:64:26:8a:e5:9f:48:d8:ef:fb:
4f:1a:10:fc:38:c7:6d:a7:0e:55:82:d7:dc:e1:60:3f:5f:f4:
82:62:3b:71:f9:a5:28:00:95:7a:ac:ce:01:a0:0d:db:71:6a:
68:20:25:94:53:e9:98:a4:ca:4f:75:6f:0a:cb:69:26:3a:82:
1b:cb:0d:54:62:f2:d5:bf:fc:de:5f:09:e7:88:ee:9b:79:1c:
ef:bd:eb:ca:da:58:df:97:07:b6:e9:44:5a:ca:44:a6:5d:0c:
73:2b:d5:5a:d2:ab:66:70:39:5e:b7:78:f2:79:92:5e:84:1b:
a8:b8:44:1d:ab:aa:cc:f4:a3:2e:29:37:bd:7d:cd:c2:1a:72:
db:a7:33:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:43 2025 by rpki-client