Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/_G7fzKL0UoetnxPmwl_bsSnfH3U.roa
File: _G7fzKL0UoetnxPmwl_bsSnfH3U.roa (raw, json)
Hash identifier: MO6XUp3ZUHY0UchcJRfRTn6YqcoGNeI6AeNV/KA6B4c=
Subject key identifier: FC:6E:DF:CC:A2:F4:52:87:AD:9F:13:E6:C2:5F:DB:B1:29:DF:1F:75
Certificate issuer: /CN=677d4ea2c016ce2797af7aeb737d132875669f12
Certificate serial: 0183CD0A6F0462C567757A070DCE3D31519F
Authority key identifier: 67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/_G7fzKL0UoetnxPmwl_bsSnfH3U.roa
Signing time: Wed 12 Oct 2022 16:32:36 +0000
ROA not before: Wed 12 Oct 2022 16:32:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209985
IP address blocks: 193.160.94.0/24 maxlen: 24
193.160.95.0/24 maxlen: 24
193.160.92.0/24 maxlen: 24
193.160.93.0/24 maxlen: 24
2a0d:ed40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:0a:6f:04:62:c5:67:75:7a:07:0d:ce:3d:31:51:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=677d4ea2c016ce2797af7aeb737d132875669f12
Validity
Not Before: Oct 12 16:32:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc6edfcca2f45287ad9f13e6c25fdbb129df1f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:df:c4:9e:d5:8f:e0:bf:bf:94:ea:4f:63:61:
6e:cf:d6:d3:78:b9:1d:4f:81:df:45:a3:e3:4f:0e:
46:83:78:b3:98:d7:2c:2d:72:c2:2a:09:52:c4:f3:
33:81:0a:47:63:ed:ed:ab:ca:4a:57:87:0c:ef:cf:
c6:ec:f6:73:f6:70:3b:3f:2e:24:14:5b:34:b2:f9:
17:24:0a:52:b8:bf:e4:89:1f:16:b2:da:81:0a:b4:
c1:9d:bf:7d:89:e0:de:a3:f6:45:90:62:aa:1d:6a:
c9:9b:ba:04:94:40:18:e6:d9:dd:8f:d1:47:76:74:
35:a7:96:16:f3:a0:97:53:49:8f:01:bd:12:c6:a3:
21:81:6d:b7:44:ac:47:3b:0c:54:1c:25:94:d0:67:
22:a8:6e:df:fa:f3:7b:99:2a:e3:59:66:d0:af:c8:
67:bd:26:fa:2d:5a:eb:48:d2:4e:cd:1e:dc:ce:f2:
9c:3f:e3:45:0a:f1:e5:c2:b0:2c:3b:47:f2:70:47:
58:09:a4:2c:1e:64:93:47:c0:25:3a:64:9b:cb:29:
46:70:f7:1f:b7:df:33:30:f3:9f:17:34:4e:a5:a2:
7b:0e:bb:69:6c:ce:13:17:cf:77:6f:08:33:c7:64:
2f:2b:d9:2e:c8:4a:e0:1f:f1:3f:5d:14:87:21:45:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6E:DF:CC:A2:F4:52:87:AD:9F:13:E6:C2:5F:DB:B1:29:DF:1F:75
X509v3 Authority Key Identifier:
keyid:67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/_G7fzKL0UoetnxPmwl_bsSnfH3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/Z31OosAWzieXr3rrc30TKHVmnxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.92.0/22
IPv6:
2a0d:ed40::/32
Signature Algorithm: sha256WithRSAEncryption
30:f0:17:b3:49:ab:37:7a:5c:ca:69:1a:91:45:16:a1:77:9f:
78:d7:54:39:a6:10:7f:ac:89:b7:59:4e:67:7e:fa:32:40:f5:
84:d5:09:c2:82:24:f5:0b:0d:fa:6c:0e:e3:fe:08:51:47:60:
d3:62:bd:26:9a:e3:38:ea:ad:73:73:54:67:8d:32:1c:46:6b:
97:c8:87:be:f5:60:7a:9b:e7:25:75:9a:db:f8:80:65:48:be:
d8:ae:53:56:77:2d:6f:be:0f:60:9c:a3:8a:75:f2:52:c2:56:
a4:e8:42:7c:a1:0f:fd:a0:13:6d:c9:4e:da:0d:9a:bf:2e:0d:
a9:c0:63:d7:4b:3b:c9:30:c1:fe:a2:46:3c:be:cf:c3:62:4b:
76:19:dc:00:b9:75:95:39:29:4f:e8:0f:6b:a9:fd:5f:ee:6e:
a3:e3:70:b8:95:94:c9:03:52:e4:c4:98:df:ea:f2:71:02:3f:
56:19:eb:79:c0:5a:fc:11:d4:2d:09:ad:55:74:58:93:05:38:
25:4a:e3:b9:3c:b9:51:b3:88:2f:8b:da:34:c1:55:08:8b:6c:
89:a6:99:9a:10:1e:be:48:11:d9:dc:32:9e:b3:f7:33:74:5e:
1f:95:0d:0b:52:24:db:88:27:00:d2:ac:98:c6:c4:af:4f:e3:
b5:23:36:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:13 2025 by rpki-client