Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/g6VwVdNZA4pcmPSRZcOpnoeL0Zo.roa
File: g6VwVdNZA4pcmPSRZcOpnoeL0Zo.roa (raw, json)
Hash identifier: BBZl9R1/aso+ub9PkEFcs8XQaOn9WsEQGQiWrcv/X3o=
Subject key identifier: 83:A5:70:55:D3:59:03:8A:5C:98:F4:91:65:C3:A9:9E:87:8B:D1:9A
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018953A1AEBF09975186A119BD627B919E17
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/g6VwVdNZA4pcmPSRZcOpnoeL0Zo.roa
Signing time: Fri 14 Jul 2023 09:00:52 +0000
ROA not before: Fri 14 Jul 2023 09:00:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21646
IP address blocks: 212.222.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:a1:ae:bf:09:97:51:86:a1:19:bd:62:7b:91:9e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jul 14 09:00:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83a57055d359038a5c98f49165c3a99e878bd19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:01:bd:96:63:17:66:8c:eb:88:eb:4c:d4:
ba:69:bc:04:d3:1d:a1:6a:89:a2:cc:12:66:74:47:
c3:22:85:e8:45:54:8d:3a:c6:e6:06:cc:2f:7b:8a:
2c:a1:fb:de:bf:e5:e8:02:07:70:2d:98:4d:2a:23:
91:f5:9c:17:8a:22:f7:5e:c1:3a:52:19:88:8b:2b:
21:95:c6:a1:20:a5:1b:07:ac:eb:d9:7e:1d:fa:6d:
2b:64:2d:dd:b0:6f:18:98:f0:4b:13:71:23:d8:61:
41:53:73:2d:2f:e2:ca:d6:68:8c:cd:ff:98:49:58:
bf:6c:69:44:8d:31:92:7e:31:38:e3:b9:5f:d3:1a:
02:3a:81:a7:5c:6b:ee:54:25:b5:db:9d:bf:ae:1e:
64:05:49:a0:27:6a:21:3c:b3:7c:49:b0:8f:4b:ca:
be:c3:1b:0a:2d:33:21:e6:54:df:c1:6e:74:de:1a:
c4:ad:1d:df:71:82:92:5f:44:fd:70:96:e3:ce:3a:
b3:fc:f0:9b:16:86:ae:c0:48:bc:07:5d:b5:37:bb:
95:b4:33:c5:b3:6a:53:2c:7e:ca:9f:80:96:64:8c:
94:d5:91:de:14:cb:2d:5c:ac:0d:88:b8:62:9a:5a:
f4:ac:7d:f0:d0:23:9f:03:e8:c2:00:f3:c4:93:8e:
be:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A5:70:55:D3:59:03:8A:5C:98:F4:91:65:C3:A9:9E:87:8B:D1:9A
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/g6VwVdNZA4pcmPSRZcOpnoeL0Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.222.192.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:04:86:27:4c:c3:b6:8c:53:27:94:07:af:c6:9a:55:a8:21:
08:2a:3d:e2:32:18:61:95:19:8f:46:d6:72:03:70:98:9f:04:
1f:6e:ba:8d:73:ba:f8:35:37:ae:a2:bd:9f:d6:75:0c:71:98:
18:6a:ca:d3:9b:81:ec:a6:96:58:3d:88:87:47:6c:98:b8:7f:
1e:2d:95:31:d1:1f:48:41:0e:c7:89:f0:c1:df:61:c5:a7:2c:
b5:34:0d:d6:c9:6f:3b:8a:40:70:05:bd:ab:09:4d:2d:83:43:
45:ca:76:c1:7d:a8:ae:cc:50:c4:ea:8f:71:d4:ac:47:7f:3c:
52:35:03:a0:4b:95:1e:6b:60:ba:13:97:38:fc:54:4f:68:1e:
b2:a0:d0:f0:43:cf:20:88:bd:ca:db:4c:e1:ff:d9:b8:58:fd:
a2:d1:b1:dd:4e:f7:c8:b5:bb:c4:db:75:ab:74:7d:29:6f:80:
95:97:34:1a:d4:2a:21:53:a7:88:96:cb:05:15:e6:dd:73:6c:
d0:41:aa:2a:80:0c:7d:42:ef:ee:ba:e7:d1:97:2a:3a:6b:48:
b3:1e:0c:be:30:e0:ff:6c:eb:e3:c6:76:27:7d:e8:ac:b8:1a:
64:51:85:78:7d:db:46:fc:9d:97:bf:31:c3:92:d1:e6:c8:4c:
8b:37:f8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:29 2025 by rpki-client