Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/da46ee-f8d9-44da-9982-03f5eb148688/1/_J92gDY3B2fU73zKqPI1i_YKwjQ.roa
File: _J92gDY3B2fU73zKqPI1i_YKwjQ.roa (raw, json)
Hash identifier: W7+sTmb6lWpB9iKv6QSAU63mhz2koYXjZVouMWyM5HU=
Subject key identifier: FC:9F:76:80:36:37:07:67:D4:EF:7C:CA:A8:F2:35:8B:F6:0A:C2:34
Certificate issuer: /CN=93a959c25dbbc367caa89825e8bff5b4b4f11c9b
Certificate serial: 01886E84EABCA9869A64CE70BF58601B5F33
Authority key identifier: 93:A9:59:C2:5D:BB:C3:67:CA:A8:98:25:E8:BF:F5:B4:B4:F1:1C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6lZwl27w2fKqJgl6L_1tLTxHJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/da46ee-f8d9-44da-9982-03f5eb148688/1/_J92gDY3B2fU73zKqPI1i_YKwjQ.roa
Signing time: Tue 30 May 2023 21:16:24 +0000
ROA not before: Tue 30 May 2023 21:16:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50873
IP address blocks: 185.79.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:84:ea:bc:a9:86:9a:64:ce:70:bf:58:60:1b:5f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a959c25dbbc367caa89825e8bff5b4b4f11c9b
Validity
Not Before: May 30 21:16:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc9f768036370767d4ef7ccaa8f2358bf60ac234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f5:3c:a4:dc:07:2b:22:0b:97:96:8f:ba:8b:
fd:e6:7b:ed:25:e2:8b:6d:6c:36:f3:28:ab:36:bf:
5b:11:d6:c8:21:bb:04:34:c9:6b:ac:74:6c:67:46:
64:a4:91:d2:02:39:bb:ce:e5:0c:ec:fa:91:b8:56:
ff:1d:15:d4:90:92:6c:e7:3f:6d:69:e8:04:7c:df:
ec:57:0a:c6:58:05:5d:f0:f4:83:7f:00:60:62:b0:
d6:5d:90:98:33:32:c9:a2:b7:6c:bb:c7:70:d1:31:
f8:9e:e7:a5:b7:26:51:a6:cc:99:66:00:83:ce:32:
1a:5c:70:43:e6:15:bf:41:89:eb:de:87:4e:4b:6d:
8c:d9:60:31:a8:46:c3:70:51:de:25:6e:8a:15:d6:
b9:aa:c2:67:90:eb:bc:2c:78:ff:02:38:dd:18:e3:
95:e0:44:f3:c6:53:98:35:97:e5:2e:ac:84:f9:a8:
45:d3:13:20:ce:08:fc:cf:a3:76:8f:db:f5:7a:f9:
df:9c:f9:de:b9:ea:b1:fc:bd:23:22:2a:3d:42:aa:
6a:3c:e2:b4:d9:59:ac:a2:3c:1f:f0:d5:04:a5:19:
29:aa:bf:3d:17:4a:2e:4e:b1:17:56:4b:70:4d:cc:
47:2e:0b:82:47:80:13:6b:a2:91:a7:3e:52:a3:2a:
e3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9F:76:80:36:37:07:67:D4:EF:7C:CA:A8:F2:35:8B:F6:0A:C2:34
X509v3 Authority Key Identifier:
keyid:93:A9:59:C2:5D:BB:C3:67:CA:A8:98:25:E8:BF:F5:B4:B4:F1:1C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6lZwl27w2fKqJgl6L_1tLTxHJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/da46ee-f8d9-44da-9982-03f5eb148688/1/_J92gDY3B2fU73zKqPI1i_YKwjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/da46ee-f8d9-44da-9982-03f5eb148688/1/k6lZwl27w2fKqJgl6L_1tLTxHJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.125.0/24
Signature Algorithm: sha256WithRSAEncryption
17:36:64:3a:2d:b1:72:2e:5a:e8:b6:66:88:51:50:f8:22:87:
14:88:33:fe:38:7f:c2:73:8e:fb:71:e4:fe:00:72:7b:ab:ca:
9f:53:9e:d7:3a:d0:45:dd:79:c6:63:cd:06:5d:e2:bf:ab:fc:
16:3d:48:70:f2:d6:73:4b:9f:c8:ef:b5:6d:89:ce:36:57:3f:
54:4f:07:13:3b:11:ce:b7:ab:40:41:b1:19:06:9d:91:89:db:
f4:12:af:db:51:05:97:e1:a8:64:c6:23:c1:e0:d7:da:64:eb:
38:3e:0f:dc:b1:5c:99:cb:08:0e:39:23:29:5c:8c:58:42:33:
de:04:05:6b:f3:7e:b8:33:6c:72:59:2a:47:a6:b0:48:29:38:
e9:1b:bd:11:65:6a:f8:d1:ec:31:0b:6b:aa:96:c4:9a:c6:f2:
21:90:a7:ad:79:0c:b6:1f:73:d4:45:aa:89:ea:e8:d7:bd:41:
a7:4d:78:f9:51:22:13:5b:42:13:eb:7f:6e:f0:78:47:50:4d:
87:ab:d8:8a:dc:ca:8c:f9:57:1f:95:d1:1e:37:b6:9b:fa:db:
ce:df:7d:82:05:06:61:00:be:ab:a7:de:30:5c:e7:f2:e2:97:
9d:4d:42:46:5b:fd:71:d5:02:c8:92:32:a0:d9:a1:44:fb:82:
dc:10:43:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:34 2025 by rpki-client