Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/g7yROEt7gRAsAjUlOaTAn_0aOhw.roa
File: g7yROEt7gRAsAjUlOaTAn_0aOhw.roa (raw, json)
Hash identifier: xGVr/EJkb4EpfFF7S0SQ4ShB8NTJUu38WKTUbxqDgFw=
Subject key identifier: 83:BC:91:38:4B:7B:81:10:2C:02:35:25:39:A4:C0:9F:FD:1A:3A:1C
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0BF1E4B3
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/g7yROEt7gRAsAjUlOaTAn_0aOhw.roa
Signing time: Wed 25 May 2022 05:21:13 +0000
ROA not before: Wed 25 May 2022 05:21:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206995
IP address blocks: 176.42.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200402099 (0xbf1e4b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: May 25 05:21:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83bc91384b7b81102c02352539a4c09ffd1a3a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b7:ee:f7:8c:c2:85:0c:12:66:77:9c:6e:db:
da:a3:f8:11:8d:b2:93:77:08:b9:5f:a4:1b:f0:11:
56:e9:00:8d:5a:75:5a:ab:9c:a6:8e:e7:e3:23:07:
d1:5e:fc:41:0a:c7:04:89:ae:37:02:63:1a:27:85:
ff:28:2d:99:3a:42:03:a8:c8:e1:ee:dc:01:ec:31:
15:ed:2e:81:6d:e1:d0:cd:5e:98:fe:e4:f2:36:67:
06:5c:46:db:1c:15:e4:ea:62:f6:a9:74:4f:a4:d8:
43:b3:26:88:d2:16:cb:2b:8d:de:38:5d:f3:eb:fe:
b5:43:fa:ac:34:70:5c:53:c6:fb:c5:42:d7:55:52:
fb:75:7d:28:d6:eb:03:2d:81:82:9b:ad:6e:03:c3:
16:fa:4b:d7:af:74:0b:71:e1:83:63:ec:89:3f:c0:
a9:63:b5:20:04:29:61:26:e1:49:23:e2:c1:84:15:
81:6e:01:01:fb:4a:bd:d1:aa:85:a8:7f:89:c5:66:
bf:e7:32:56:d4:8e:50:9c:e8:50:f8:09:f4:64:f8:
ad:a3:15:57:c9:33:ae:95:48:49:01:19:1b:ee:5e:
1a:a1:d2:de:fe:cf:7b:03:4e:ee:51:e7:27:3e:ec:
6b:e9:02:54:b0:0a:c6:0d:b8:c3:c7:e4:36:e9:dc:
62:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BC:91:38:4B:7B:81:10:2C:02:35:25:39:A4:C0:9F:FD:1A:3A:1C
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/g7yROEt7gRAsAjUlOaTAn_0aOhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.42.9.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:20:fb:d9:ab:19:c7:a1:8f:5d:fe:b2:ed:46:9f:f2:2f:88:
d6:8d:da:f7:68:fa:dc:98:b6:ce:38:81:2a:e2:88:46:c1:35:
9b:7e:35:50:60:ba:bd:31:9b:a3:db:6c:8d:be:58:5c:55:eb:
51:6d:6f:3b:10:c0:ec:b7:b7:3a:4d:83:38:d7:78:78:2f:3a:
fd:4a:0e:04:d5:f0:b7:06:e0:67:70:99:81:8b:8c:d2:2d:a8:
7a:d9:e8:83:86:2f:c9:84:c7:a5:fa:7f:f7:b3:39:b9:4f:d6:
fa:02:62:ce:bc:3f:5c:4b:41:c1:c7:fe:c4:80:81:e1:8e:c1:
47:c0:08:7e:c3:0c:40:27:bd:27:3d:02:96:66:6b:5f:94:4d:
e3:56:95:3f:c0:b8:dd:e4:84:42:7a:7e:c1:8c:dc:72:a7:a2:
84:4c:18:48:c1:d2:8f:cc:4c:e4:0a:59:52:75:96:a5:9b:97:
06:73:bd:99:83:7c:69:05:a9:65:4b:26:b8:c6:39:0d:22:b9:
e5:08:c7:fa:4a:b8:45:98:00:c6:8c:51:b7:5c:0f:a2:2f:69:
f2:f7:21:49:34:d4:22:cd:50:ac:70:29:a3:91:1d:34:85:aa:
ae:f9:a5:bb:3d:8e:cd:3b:f0:d1:78:31:14:ef:6d:05:0d:7a:
a4:cb:ee:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:43:12 2025 by rpki-client