Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/88c995-ede0-4cc4-a66d-25baa8230fcb/1/c9Ar07pu7XnTzOqQwpcfinPFe3o.roa
File: c9Ar07pu7XnTzOqQwpcfinPFe3o.roa (raw, json)
Hash identifier: 0oXkmafJNgV3PSd6op0Jp7I2mYgHxtCbYlZiluB5IUA=
Subject key identifier: 73:D0:2B:D3:BA:6E:ED:79:D3:CC:EA:90:C2:97:1F:8A:73:C5:7B:7A
Certificate issuer: /CN=fbbf4d59cbd978ae1127c67fd22f04c62ff837cf
Certificate serial: 0185C5ABA906E52F3C79A7B699B5A5040354
Authority key identifier: FB:BF:4D:59:CB:D9:78:AE:11:27:C6:7F:D2:2F:04:C6:2F:F8:37:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-79NWcvZeK4RJ8Z_0i8Exi_4N88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/88c995-ede0-4cc4-a66d-25baa8230fcb/1/c9Ar07pu7XnTzOqQwpcfinPFe3o.roa
Signing time: Wed 18 Jan 2023 16:17:19 +0000
ROA not before: Wed 18 Jan 2023 16:17:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57707
IP address blocks: 217.28.88.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c5:ab:a9:06:e5:2f:3c:79:a7:b6:99:b5:a5:04:03:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbbf4d59cbd978ae1127c67fd22f04c62ff837cf
Validity
Not Before: Jan 18 16:17:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73d02bd3ba6eed79d3ccea90c2971f8a73c57b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fe:a5:b5:9a:83:68:4e:58:8a:c8:75:3f:ba:
02:51:27:20:7e:21:9a:7b:b3:79:d5:af:75:eb:a1:
94:85:95:07:f4:97:61:9c:78:8c:6b:e6:45:fc:ad:
30:af:4e:f7:fd:45:20:43:36:e5:ba:6c:f5:82:14:
69:cd:84:f1:c5:1d:25:b3:98:08:96:2c:3c:d0:08:
79:24:6d:1a:6a:da:f9:d4:41:5d:b2:d0:de:91:4f:
ff:85:d8:1c:bd:f6:52:e2:b4:64:e2:75:49:f4:25:
c2:87:db:53:cf:4a:1d:1d:37:b3:55:8a:c5:d6:e1:
98:21:b6:af:44:01:43:29:8c:fb:eb:f1:11:74:45:
7f:68:72:40:cd:f3:39:64:d7:2c:7f:9c:26:d3:68:
ab:70:e0:35:1a:f6:a5:d2:b6:4e:13:1e:b7:7a:32:
8b:42:21:5f:a7:d9:bd:17:cc:5a:a7:fe:af:0c:48:
ab:79:7d:67:be:6c:c8:5e:4d:93:4f:db:e8:de:94:
91:5c:61:7e:6e:10:a9:81:97:e0:2c:22:9e:80:0c:
16:d5:63:67:70:9a:40:fc:2c:fb:0e:59:c7:d9:9c:
69:86:95:f1:c1:a4:ae:98:ed:b8:27:1d:e9:03:76:
7a:39:00:34:e2:a3:36:59:2c:27:ff:a3:52:ee:11:
d0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D0:2B:D3:BA:6E:ED:79:D3:CC:EA:90:C2:97:1F:8A:73:C5:7B:7A
X509v3 Authority Key Identifier:
keyid:FB:BF:4D:59:CB:D9:78:AE:11:27:C6:7F:D2:2F:04:C6:2F:F8:37:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-79NWcvZeK4RJ8Z_0i8Exi_4N88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/88c995-ede0-4cc4-a66d-25baa8230fcb/1/c9Ar07pu7XnTzOqQwpcfinPFe3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/88c995-ede0-4cc4-a66d-25baa8230fcb/1/1-79NWcvZeK4RJ8Z_0i8Exi_4N88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.88.0/21
Signature Algorithm: sha256WithRSAEncryption
19:35:96:47:65:2d:84:a7:a6:4f:f3:9f:8c:79:64:bf:c2:94:
9a:85:f0:6b:52:29:40:f5:8b:35:04:1a:e9:2a:4c:3c:6b:2e:
ad:bb:a5:87:46:ce:f0:97:6c:15:96:d1:b8:da:fb:09:86:f3:
ca:51:1c:96:2b:19:22:ce:49:15:41:0a:59:7f:1f:28:2c:37:
7e:5d:a4:46:15:d0:ba:60:35:d0:9b:f2:15:7e:73:d0:b6:d4:
20:56:fb:bd:86:38:44:f3:f6:d3:fe:57:7f:00:c2:ad:57:23:
70:cc:52:81:84:b4:4f:31:52:08:6e:00:e1:14:bf:07:5c:33:
14:25:c4:80:6c:36:76:23:2a:9b:49:d8:ef:c2:19:d4:59:14:
cc:32:0a:a1:fb:e7:1c:b5:6d:29:1b:68:f5:b1:55:b3:94:af:
08:99:28:c1:d8:55:f9:0c:b6:d4:a1:dd:9f:96:8b:dc:42:76:
a2:fa:2e:2c:d2:38:56:ab:ac:dc:5b:ff:6f:39:0f:11:58:d4:
7a:ea:b1:b2:23:42:4c:33:25:82:f1:4e:58:00:6f:27:50:31:
73:7b:e7:9a:3d:2f:aa:06:1a:80:3c:af:98:ac:ec:1e:9f:ae:
46:2f:39:57:17:c2:e1:70:fc:38:ad:90:ae:05:b2:ba:d6:55:
d0:ab:91:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:41 2025 by rpki-client