Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/x5f9xgovhFo4cyhlaMNjcTUrEHo.roa
File: x5f9xgovhFo4cyhlaMNjcTUrEHo.roa (raw, json)
Hash identifier: YQZRloi9cGkr0ohzBVYH9sNAZM08sI8GOQWs4vTYSDA=
Subject key identifier: C7:97:FD:C6:0A:2F:84:5A:38:73:28:65:68:C3:63:71:35:2B:10:7A
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0AD93911
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/x5f9xgovhFo4cyhlaMNjcTUrEHo.roa
Signing time: Mon 04 Apr 2022 14:02:18 +0000
ROA not before: Mon 04 Apr 2022 14:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 176.98.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182008081 (0xad93911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Apr 4 14:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c797fdc60a2f845a3873286568c36371352b107a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2f:82:86:11:52:6f:8d:39:a0:c0:e0:98:ae:
df:32:a4:20:1a:6c:ec:3b:b4:f8:c1:72:bf:e5:35:
4e:5f:44:de:32:2e:94:71:a7:44:3b:2b:4f:7c:36:
47:e5:71:5a:ee:63:0c:a6:d9:92:39:8a:84:05:c1:
4f:cc:a6:4a:c3:66:97:89:68:29:af:19:6e:0f:34:
10:87:e0:18:ef:e4:fc:f3:0c:e4:4c:4c:93:31:ba:
c6:cf:9a:65:bd:5b:0c:29:e0:d1:ef:d9:e2:ab:3a:
2e:0f:b1:cb:c9:00:fc:8a:d3:cd:ab:f1:9b:ae:78:
5b:29:fb:f6:78:fd:96:63:6c:cf:58:dd:42:c7:a7:
e0:76:15:2b:11:93:ad:f1:3b:c8:29:7f:c4:b1:bb:
3d:b2:d6:29:f3:a8:6b:3d:a5:8c:8f:40:78:d1:ab:
6a:ea:4e:9b:e1:5b:55:4b:54:e4:10:9f:c6:69:65:
ca:6d:fc:6b:4b:10:d7:6d:cb:ae:10:f2:71:67:4a:
c3:36:8c:29:fc:48:ff:c4:7f:0d:5c:17:97:af:a9:
bf:ff:be:2e:f8:8a:e2:f9:83:77:e7:d8:26:fd:c7:
d9:af:6a:66:ea:2f:a0:8a:b9:7b:3b:6c:f3:a9:e7:
b1:bf:db:a2:87:c0:57:76:00:65:a5:fe:19:1b:9a:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:97:FD:C6:0A:2F:84:5A:38:73:28:65:68:C3:63:71:35:2B:10:7A
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/x5f9xgovhFo4cyhlaMNjcTUrEHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.42.0/24
Signature Algorithm: sha256WithRSAEncryption
de:aa:e6:6f:48:35:6b:17:fb:58:dc:01:61:49:77:bc:40:39:
a0:81:30:a7:8f:e0:57:6e:4d:de:6f:43:80:5f:e1:89:18:cd:
54:33:ad:60:77:84:ae:06:c7:02:0b:1a:05:5b:bf:48:82:bb:
5a:8e:56:06:98:1a:65:85:f3:fa:31:3c:61:f9:70:4b:e1:31:
90:2d:26:56:ae:98:8b:03:32:0c:cf:1f:29:4f:7e:a8:74:28:
8d:8b:0f:a1:58:45:45:3e:01:7f:30:1d:fb:90:e6:ed:a8:90:
79:3c:bc:01:30:35:d9:18:86:dd:30:3f:63:1d:a3:48:f1:10:
96:8c:b9:4b:50:9b:c2:bf:a4:bd:9b:d2:4b:77:dc:e3:ea:be:
f1:5e:50:4c:aa:23:8a:f9:69:c9:94:8d:d7:e8:11:44:dd:f0:
57:7c:2d:ce:ec:bc:9d:7c:ad:41:b0:d8:59:88:dc:f7:c4:b9:
ab:a0:cb:66:67:d9:6a:a3:f5:5b:2a:fb:cb:e4:ca:97:1c:b6:
0f:72:78:b4:04:f3:38:af:f8:8f:ef:d6:b0:39:16:00:53:f9:
ba:ef:4a:d9:d8:cc:02:9a:36:f8:60:0b:d8:87:e9:3c:bc:06:
62:d7:5f:3d:31:66:af:e3:e8:aa:ff:da:6c:fb:5d:a0:aa:f7:
1a:7f:cb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:29:03 2025 by rpki-client