Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/0B9NMgZZXNSze-roJsOOz_CmNrw.roa
File: 0B9NMgZZXNSze-roJsOOz_CmNrw.roa (raw, json)
Hash identifier: 1s6hIKgsqvq3kN5TJjeG+awRJma6Yq/iE5Xqea0RFPU=
Subject key identifier: D0:1F:4D:32:06:59:5C:D4:B3:7B:EA:E8:26:C3:8E:CF:F0:A6:36:BC
Certificate issuer: /CN=673b3a71cf772755a3df8ced5d73516f871c0a11
Certificate serial: 05F3C12E
Authority key identifier: 67:3B:3A:71:CF:77:27:55:A3:DF:8C:ED:5D:73:51:6F:87:1C:0A:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zzs6cc93J1Wj34ztXXNRb4ccChE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/0B9NMgZZXNSze-roJsOOz_CmNrw.roa
Signing time: Sat 01 Jan 2022 15:59:00 +0000
ROA not before: Sat 01 Jan 2022 15:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3301
IP address blocks: 170.102.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99860782 (0x5f3c12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=673b3a71cf772755a3df8ced5d73516f871c0a11
Validity
Not Before: Jan 1 15:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d01f4d3206595cd4b37beae826c38ecff0a636bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:70:36:71:9d:81:1f:03:06:9d:4d:bc:76:
02:7b:2f:c0:ac:43:bd:ac:c4:2a:12:32:eb:56:66:
f7:95:d2:b4:dc:26:1a:90:69:cd:84:6b:b4:f4:c1:
d9:56:8e:94:52:81:53:ed:a5:72:23:56:bc:c7:e4:
1d:2b:29:89:46:d1:6b:df:1f:06:dd:3f:46:78:41:
8a:49:ab:b4:74:bd:6f:a2:9f:b9:bd:0c:d0:bc:1b:
f7:69:d0:0e:89:b6:31:99:be:01:6d:c5:5a:ab:e5:
c8:b5:de:3c:5d:fc:41:99:70:97:46:ff:d1:53:28:
8a:33:68:af:db:84:82:eb:20:50:97:66:f7:69:7d:
20:a4:18:0c:76:92:77:26:3f:a6:5c:15:2f:c7:a1:
ad:ea:fe:17:d0:6f:55:df:d2:26:38:63:a3:46:15:
24:9f:eb:a2:64:c2:4f:18:a8:a4:c9:3d:2f:29:d4:
b0:38:cf:29:11:69:95:b8:59:41:bb:a2:8c:04:2c:
d4:20:79:23:b5:3f:13:06:b0:4c:0e:53:f6:4b:41:
70:b0:62:68:8b:9b:b5:ac:19:83:0b:6d:46:59:92:
50:62:79:75:ad:e8:c6:34:de:86:d2:9f:0b:68:a0:
41:7c:ab:38:7f:70:9a:fe:c2:c9:17:70:20:e5:3e:
30:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1F:4D:32:06:59:5C:D4:B3:7B:EA:E8:26:C3:8E:CF:F0:A6:36:BC
X509v3 Authority Key Identifier:
keyid:67:3B:3A:71:CF:77:27:55:A3:DF:8C:ED:5D:73:51:6F:87:1C:0A:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zzs6cc93J1Wj34ztXXNRb4ccChE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/0B9NMgZZXNSze-roJsOOz_CmNrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/Zzs6cc93J1Wj34ztXXNRb4ccChE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.102.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:86:38:2d:ec:12:74:cb:5c:da:24:a8:ca:d1:27:00:ff:18:
6f:82:ae:d0:93:95:e7:1c:56:7d:3d:cd:4a:b1:0b:5b:f5:fc:
b7:7a:84:40:07:02:db:b1:96:28:77:a2:08:46:e5:ae:9a:1f:
8c:b2:60:49:e3:06:b2:7e:07:12:3e:33:02:f7:c2:46:61:9d:
33:81:0d:e8:e3:db:2c:c3:9b:d9:d9:b6:5b:0d:23:5c:2a:1a:
d2:9f:11:b5:8c:3d:39:ae:eb:b3:93:f0:77:6e:7a:3d:18:28:
1b:5b:4a:90:41:10:22:bc:90:17:04:29:71:65:0f:4a:5c:6e:
13:91:ef:ee:aa:c2:95:c0:e7:08:b4:67:14:1e:03:6b:4d:5f:
74:97:02:81:05:75:cd:1f:2b:34:a5:af:30:c7:0e:f3:13:d5:
93:2b:4c:a3:ca:b9:1a:dc:7c:ba:aa:85:03:2f:d9:90:0c:a5:
f8:3f:2b:ec:22:35:5e:ef:d1:2e:53:95:b9:9f:45:50:43:3a:
72:1c:4b:ae:24:fe:6c:c1:63:8e:16:c5:83:39:d4:22:dd:3b:
62:bc:5e:d3:69:ea:56:51:c2:a0:30:37:93:09:1e:3d:e8:da:
a4:9f:11:eb:3a:61:3c:e3:fe:68:67:8b:60:05:9e:0c:c6:25:
f6:0f:5f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:49 2025 by rpki-client