Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/pyWs4N53RIs6nf5KZlVMj6IrlOE.roa
File: pyWs4N53RIs6nf5KZlVMj6IrlOE.roa (raw, json)
Hash identifier: 9mayhOaE9+dKnSRdg2T88bhK8h/urrCSR8HkSX3sFYY=
Subject key identifier: A7:25:AC:E0:DE:77:44:8B:3A:9D:FE:4A:66:55:4C:8F:A2:2B:94:E1
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50C3ED54
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/pyWs4N53RIs6nf5KZlVMj6IrlOE.roa
Signing time: Sat 01 Jan 2022 16:01:39 +0000
ROA not before: Sat 01 Jan 2022 16:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12368
IP address blocks: 194.209.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1355017556 (0x50c3ed54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a725ace0de77448b3a9dfe4a66554c8fa22b94e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:d4:af:a1:89:91:1b:54:f3:8a:4e:cd:38:
24:05:07:1a:b0:c5:e6:6b:11:1f:cd:b5:37:e4:86:
08:b8:3e:db:6d:4b:5c:a4:4e:1d:06:cd:15:e8:1b:
76:0f:a1:af:c0:99:78:b6:06:38:4e:94:c9:51:e7:
aa:fb:8c:66:97:74:20:40:f8:27:d4:42:69:f7:ed:
43:0b:e4:54:39:58:90:53:e5:48:8f:07:04:97:1a:
53:de:55:42:c2:56:17:ea:8e:33:eb:6c:14:d1:2c:
89:6b:5f:3c:63:e8:d6:83:98:7d:92:7b:94:f9:41:
8c:e5:d1:c4:c1:b5:08:4b:73:47:d9:85:07:2d:d5:
70:2b:f4:fd:a6:88:65:ff:83:ab:80:02:2b:3d:f6:
3e:1a:a2:7d:23:34:cc:c9:b3:92:98:9e:72:e2:9a:
28:11:a8:3a:2c:f1:da:20:7a:a7:7b:99:c3:ba:c3:
aa:ea:96:7d:5a:bc:71:4e:64:e4:ee:0a:c1:f4:32:
98:20:41:36:61:7d:cc:b2:31:2c:c1:57:18:f6:60:
0e:87:7a:f8:cc:eb:e4:84:20:22:fa:8e:39:1c:40:
f3:7d:66:c0:a4:aa:d1:99:04:68:af:84:88:71:86:
54:78:f6:4b:85:65:a3:37:c9:e4:74:10:be:61:6c:
a8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:25:AC:E0:DE:77:44:8B:3A:9D:FE:4A:66:55:4C:8F:A2:2B:94:E1
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/pyWs4N53RIs6nf5KZlVMj6IrlOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.83.0/24
Signature Algorithm: sha256WithRSAEncryption
55:9b:fc:b3:bc:9b:f2:81:2d:1e:3e:98:d9:22:3b:f6:9e:37:
0d:f9:92:ad:d4:18:79:8c:69:d7:55:12:f4:b5:c2:52:11:03:
eb:86:53:e4:71:58:35:63:1d:37:cc:cf:f7:f2:d2:58:63:65:
8a:09:2a:b7:a8:f2:1b:74:ed:70:21:58:76:60:9e:44:72:7b:
fa:2d:f8:f6:63:1c:81:84:96:2c:31:9f:59:f1:3b:3f:8f:dd:
4a:19:06:54:49:27:f9:7b:f9:ba:1d:c7:fb:b7:bf:73:59:d0:
0f:be:30:a2:3f:37:bd:68:50:8f:6e:2f:82:2c:44:a9:53:95:
ea:86:2b:0c:83:bf:0b:1e:62:58:dd:8f:00:a1:c1:2c:32:fd:
b7:a8:6f:45:10:25:ba:ac:3e:0a:97:9f:32:e5:de:6c:f5:f2:
5b:f2:fe:07:1b:51:11:8a:e2:7e:d8:59:f4:dc:ca:8b:c9:1c:
ba:60:f8:7c:2e:cb:85:e0:43:91:95:0e:2f:52:69:0a:58:9c:
44:66:68:78:4d:13:f7:0b:1f:c0:74:a2:3b:9f:3b:12:cc:f5:
b3:a1:26:07:cd:28:40:21:8d:17:60:a7:d3:57:96:bc:93:18:
4f:10:1a:c1:0f:af:c0:27:9e:b2:37:f2:80:eb:77:3f:7d:d7:
55:b4:18:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:54:19 2025 by rpki-client