Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/jruPw7b3nqkD1qd164HaM-zIQtE.roa
File: jruPw7b3nqkD1qd164HaM-zIQtE.roa (raw, json)
Hash identifier: fSEaTkkA9dFpmfFVDn14IusXS8ZzMnHOQ0FbYZ1qsg8=
Subject key identifier: 8E:BB:8F:C3:B6:F7:9E:A9:03:D6:A7:75:EB:81:DA:33:EC:C8:42:D1
Certificate issuer: /CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Certificate serial: 275BB9AA
Authority key identifier: B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/jruPw7b3nqkD1qd164HaM-zIQtE.roa
Signing time: Sat 01 Jan 2022 14:02:23 +0000
ROA not before: Sat 01 Jan 2022 14:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48732
IP address blocks: 158.58.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660322730 (0x275bb9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Validity
Not Before: Jan 1 14:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ebb8fc3b6f79ea903d6a775eb81da33ecc842d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:32:7d:a8:3f:ff:3c:b2:2c:6e:4b:aa:d7:5d:
79:7a:c6:07:2c:75:90:e0:2a:5f:d9:81:f3:28:18:
05:c8:cd:8f:0a:52:3a:3f:e2:aa:5c:c5:7b:77:83:
70:1f:09:80:59:ad:cc:9a:89:4f:b8:2f:dc:d0:58:
95:74:45:e9:7c:08:71:ee:f6:1d:f7:3b:49:27:85:
2e:d6:eb:42:d8:19:1a:86:6b:8d:59:e0:51:05:27:
86:cf:93:ae:27:5b:75:e1:07:cf:b9:b5:b4:e0:ab:
0c:3b:3f:c8:d7:83:6c:43:38:5b:f9:ef:f7:52:7f:
68:97:3c:56:30:ad:6f:e1:dd:70:8d:80:6d:2c:3b:
66:58:7b:f6:dd:f8:e2:0b:8e:1c:a7:12:15:72:9d:
ee:40:bf:07:07:0c:22:23:13:52:83:8a:31:c8:93:
86:c7:8f:fa:a4:e2:3e:36:9f:c3:c4:cb:8d:04:a5:
f8:db:f9:3e:42:f5:78:70:91:e3:a1:e0:e3:d0:c2:
9f:dd:ca:ce:a2:0c:93:0d:ac:ed:5d:13:0d:4c:e6:
25:09:00:28:a3:2f:eb:55:35:0b:4a:16:9b:e1:b9:
50:a0:64:dd:03:1d:87:34:f7:a9:b8:61:bd:16:e7:
ab:a7:89:81:ef:51:08:87:0c:ca:09:e3:d5:81:70:
a9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:BB:8F:C3:B6:F7:9E:A9:03:D6:A7:75:EB:81:DA:33:EC:C8:42:D1
X509v3 Authority Key Identifier:
keyid:B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/jruPw7b3nqkD1qd164HaM-zIQtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/tsFn36mIKyqo-EWV9YqXwwXKQ8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.58.187.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b9:8d:1c:fa:db:97:af:dd:86:0f:ac:8c:bb:ca:0c:cc:07:
55:48:2c:99:7c:c2:ba:90:a0:e7:d5:cc:17:91:3e:f9:7f:a7:
59:40:b5:29:c2:b1:23:d8:87:2f:09:80:32:88:41:e2:79:f1:
a6:34:7d:92:bf:52:db:c2:31:92:6a:6f:c3:03:2b:8b:33:69:
1c:84:d4:80:7f:38:11:4c:67:98:fc:98:12:6d:b0:5d:b1:24:
da:d8:e4:fa:81:63:6b:6a:1a:6e:5d:ad:4f:17:92:bf:82:fb:
1a:f7:0c:b9:1a:9f:5e:8d:7f:3a:b6:c0:35:26:24:7f:46:38:
b1:a0:e3:fc:bb:5d:f7:f9:03:b4:06:54:57:11:bd:ed:1c:82:
7b:51:d6:bf:03:04:04:f7:16:a9:a2:5c:b0:0b:cf:ae:42:b8:
a5:22:39:31:38:8b:70:7f:3a:f7:5d:c5:5c:05:50:b7:a1:07:
d4:e4:4c:44:44:21:bd:db:e5:69:54:dc:7d:04:b8:4f:b2:5c:
a3:75:f6:c7:f2:eb:96:37:d6:8f:53:ac:1c:a4:5d:94:63:28:
36:c9:de:b1:cc:41:99:e6:a3:15:29:29:4a:52:b3:3f:ec:57:
d0:23:c1:15:35:74:25:c4:5b:d3:93:a3:dd:4c:b1:ec:cc:4a:
b9:f2:de:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ1u5qjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NmMxNjdkZmE5ODgyYjJhYThmODQ1OTVmNThhOTdjMzA1Y2E0M2M1MB4XDTIyMDEw
MTE0MDIyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGViYjhmYzNiNmY3
OWVhOTAzZDZhNzc1ZWI4MWRhMzNlY2M4NDJkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIoyfag//zyyLG5LqtddeXrGByx1kOAqX9mB8ygYBcjNjwpS
Oj/iqlzFe3eDcB8JgFmtzJqJT7gv3NBYlXRF6XwIce72Hfc7SSeFLtbrQtgZGoZr
jVngUQUnhs+TridbdeEHz7m1tOCrDDs/yNeDbEM4W/nv91J/aJc8VjCtb+HdcI2A
bSw7Zlh79t344guOHKcSFXKd7kC/BwcMIiMTUoOKMciThseP+qTiPjafw8TLjQSl
+Nv5PkL1eHCR46Hg49DCn93KzqIMkw2s7V0TDUzmJQkAKKMv61U1C0oWm+G5UKBk
3QMdhzT3qbhhvRbnq6eJge9RCIcMygnj1YFwqYsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSOu4/DtveeqQPWp3Xrgdoz7MhC0TAfBgNVHSMEGDAWgBS2wWffqYgrKqj4
RZX1ipfDBcpDxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RzRm4zNm1JS3lxby1FV1Y5WXFYd3dYS1E4VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvNzNiZWViLTZhMDUtNGNjYS04NmJlLWFjZmMzZDJjMjUyMi8x
L2pydVB3N2IzbnFrRDFxZDE2NEhhTS16SVF0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
NzNiZWViLTZhMDUtNGNjYS04NmJlLWFjZmMzZDJjMjUyMi8xL3RzRm4zNm1JS3lx
by1FV1Y5WXFYd3dYS1E4VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ46uzANBgkqhkiG9w0BAQsFAAOC
AQEAbLmNHPrbl6/dhg+sjLvKDMwHVUgsmXzCupCg59XMF5E++X+nWUC1KcKxI9iH
LwmAMohB4nnxpjR9kr9S28IxkmpvwwMrizNpHITUgH84EUxnmPyYEm2wXbEk2tjk
+oFja2oabl2tTxeSv4L7GvcMuRqfXo1/OrbANSYkf0Y4saDj/Ltd9/kDtAZUVxG9
7RyCe1HWvwMEBPcWqaJcsAvPrkK4pSI5MTiLcH86913FXAVQt6EH1ORMREQhvdvl
aVTcfQS4T7Jco3X2x/LrljfWj1OsHKRdlGMoNsnescxBmeajFSkpSlKzP+xX0CPB
FTV0JcRb05Oj3Uyx7MxKufLe7g==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:15 2025 by rpki-client