Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/n9Dpu7pvWqDDjmKykTeCnH55HyQ.roa
File: n9Dpu7pvWqDDjmKykTeCnH55HyQ.roa (raw, json)
Hash identifier: AQ4OcWrRLPKR45zjIr85ff+df9FBsV+JpPMR7g2echA=
Subject key identifier: 9F:D0:E9:BB:BA:6F:5A:A0:C3:8E:62:B2:91:37:82:9C:7E:79:1F:24
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 40C3CEB7
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/n9Dpu7pvWqDDjmKykTeCnH55HyQ.roa
Signing time: Sat 01 Jan 2022 08:00:26 +0000
ROA not before: Sat 01 Jan 2022 08:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 375
IP address blocks: 192.163.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1086574263 (0x40c3ceb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 1 08:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fd0e9bbba6f5aa0c38e62b29137829c7e791f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:69:6e:e8:67:1d:bc:fd:6f:b3:bb:d1:1b:
4d:1f:11:96:e9:0f:76:6d:90:1d:a1:e5:1b:0a:4b:
21:e9:ce:4c:58:77:73:7f:43:4a:fb:cb:fc:97:41:
38:89:72:f4:76:e2:a4:0c:f4:b4:7b:41:c5:c0:f9:
db:05:be:53:15:bf:6a:99:72:d5:ab:bb:83:78:e6:
7f:24:c3:68:27:c9:81:96:b2:f1:a7:84:48:11:0a:
1c:b5:70:6f:ac:7f:d6:64:fe:af:de:e0:d6:11:18:
f0:99:50:cc:22:82:2a:ca:ad:26:0b:de:39:e5:1a:
0f:a0:d0:6e:78:0d:c8:0e:fd:f8:7c:22:ce:19:d0:
0b:4d:94:bf:42:91:c8:9a:a0:7b:92:a2:c2:db:ff:
94:f1:ec:a4:0e:71:c9:55:ef:e8:e1:a2:ce:31:5e:
92:14:ee:6e:9f:f1:c8:a8:94:43:87:63:0e:60:a1:
fd:db:f9:ec:2b:3a:b8:c5:ab:a5:7e:28:f3:fa:0a:
98:dc:a0:74:0e:f3:3f:35:aa:1d:7b:98:63:a9:01:
48:62:1e:e7:c4:60:29:fc:6d:15:6f:2a:58:15:98:
65:24:70:e9:9c:9e:be:2b:b1:35:df:40:07:44:5e:
2a:50:1b:bb:35:5d:34:f8:ca:68:ac:dc:83:4a:40:
e2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D0:E9:BB:BA:6F:5A:A0:C3:8E:62:B2:91:37:82:9C:7E:79:1F:24
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/n9Dpu7pvWqDDjmKykTeCnH55HyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.163.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ef:27:ee:01:19:b8:9a:d3:25:b6:f7:3a:ea:3b:ab:a9:81:
61:ba:0f:2d:14:a5:47:74:07:c0:b6:bf:07:40:de:36:f1:96:
71:c1:a3:36:12:46:8b:5e:b2:6a:71:95:8f:31:25:b1:7c:0c:
f7:99:e3:17:8e:74:a7:27:6a:8b:8b:7b:e1:f0:1f:2c:e8:2f:
f6:0b:9c:36:5c:a8:1d:3e:ed:75:44:82:8e:2f:3e:61:b0:4e:
53:3a:82:8a:26:fd:93:f3:46:eb:4a:ae:df:77:c3:b9:30:c1:
80:f9:e6:f7:35:70:96:98:9d:a7:9c:f0:61:8c:8c:8f:a5:b8:
5e:9f:60:d5:d0:62:43:32:5a:bd:1a:4f:32:a4:fe:7b:65:69:
d2:6b:45:f1:80:00:73:67:e7:8e:ee:91:ee:cb:3f:db:34:c4:
0d:ec:28:a4:c0:92:00:ab:96:2e:f6:7e:66:3a:f9:b3:41:5c:
b8:6a:fb:d9:cc:d7:4f:6e:11:aa:dc:63:ec:af:f4:aa:db:16:
e5:23:d0:a0:35:69:4a:ba:52:1a:1a:c8:ce:03:cf:17:81:26:
3e:9d:0c:d6:d2:ac:37:49:7d:be:73:24:0d:14:08:33:8a:fb:
5b:7f:4e:c0:23:b4:54:57:a3:d0:d2:fe:52:8d:2a:d6:ec:e0:
db:55:2f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:01 2025 by rpki-client