Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/CfHcNmnjTe5Ppj6-7eAcCjViI0Y.roa
File: CfHcNmnjTe5Ppj6-7eAcCjViI0Y.roa (raw, json)
Hash identifier: zEmuW793QGq72lccDoQh7f0UM4j6ubersVIIUo9rOCE=
Subject key identifier: 09:F1:DC:36:69:E3:4D:EE:4F:A6:3E:BE:ED:E0:1C:0A:35:62:23:46
Certificate issuer: /CN=1acb8a70f909ae3e1fc1dbd6bdc425e08eec81b9
Certificate serial: 018813E190651953256D94D8E6079977A2F0
Authority key identifier: 1A:CB:8A:70:F9:09:AE:3E:1F:C1:DB:D6:BD:C4:25:E0:8E:EC:81:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GsuKcPkJrj4fwdvWvcQl4I7sgbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/CfHcNmnjTe5Ppj6-7eAcCjViI0Y.roa
Signing time: Sat 13 May 2023 06:52:09 +0000
ROA not before: Sat 13 May 2023 06:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 92.118.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:13:e1:90:65:19:53:25:6d:94:d8:e6:07:99:77:a2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb8a70f909ae3e1fc1dbd6bdc425e08eec81b9
Validity
Not Before: May 13 06:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09f1dc3669e34dee4fa63ebeede01c0a35622346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d7:e0:e3:f9:51:e1:18:f4:f1:d4:1c:5f:5f:
72:cc:19:a8:db:4a:b7:fb:1d:f8:f5:41:5f:26:c9:
d9:41:ba:0b:84:4d:2f:18:9e:46:1e:88:2b:87:6f:
c4:38:b0:4d:14:8b:66:9d:f5:a4:ea:2d:9e:ed:40:
27:e3:ee:d2:dc:d6:91:98:39:57:97:e3:19:6b:9e:
f8:1b:5f:32:13:2b:f3:2f:3e:7b:1d:fc:a8:7b:1d:
bc:cb:d9:16:f9:e8:15:fe:65:4a:e9:46:8f:95:46:
37:fc:2c:0d:52:09:d2:9f:f8:9d:7d:7c:c9:e1:e3:
b6:7e:18:79:f0:ff:97:d5:91:1c:c3:f9:92:99:ee:
35:55:03:8f:84:a2:c6:fc:a8:58:f9:e2:92:f0:4f:
26:74:9e:6a:41:39:0a:28:b0:2f:33:b7:83:c1:a5:
da:97:ff:93:8f:17:ce:b6:82:86:5f:e8:7c:93:af:
a2:90:31:26:a4:28:6e:f6:a3:c8:7c:d3:a3:af:34:
3e:ba:79:77:be:41:59:ae:58:84:1c:35:73:00:03:
3c:24:6d:aa:29:51:b2:b3:3d:1f:8a:17:57:fa:c4:
d7:64:bb:b5:ed:02:3b:a4:61:6d:9a:dd:c2:59:9c:
58:b7:6a:81:a9:bd:e3:16:98:82:bb:d6:85:19:94:
e2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F1:DC:36:69:E3:4D:EE:4F:A6:3E:BE:ED:E0:1C:0A:35:62:23:46
X509v3 Authority Key Identifier:
keyid:1A:CB:8A:70:F9:09:AE:3E:1F:C1:DB:D6:BD:C4:25:E0:8E:EC:81:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GsuKcPkJrj4fwdvWvcQl4I7sgbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/CfHcNmnjTe5Ppj6-7eAcCjViI0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/GsuKcPkJrj4fwdvWvcQl4I7sgbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.23.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:6c:b1:ae:d2:82:b9:41:40:8d:0b:90:95:e7:ef:eb:01:00:
c3:ba:1e:ce:ee:e4:8e:12:ff:8a:15:2c:d2:39:84:e2:ae:1c:
b7:3c:7e:3a:fd:34:ff:a8:86:ca:cb:e5:af:f8:c3:78:54:d0:
8b:d7:5c:0e:a7:5f:d5:85:aa:78:63:37:8a:1f:a2:c0:e4:3c:
77:93:8d:95:63:f9:ff:8e:87:49:0e:d0:85:c5:a5:9b:aa:47:
78:c9:cb:9c:af:55:56:ba:be:18:77:bb:63:2a:9e:8f:4a:9c:
a9:d4:3b:16:49:5c:38:82:c7:e6:06:b2:02:52:2a:c4:93:dc:
2b:e1:da:31:ea:fa:e0:24:cc:5a:7e:86:20:9b:af:76:cf:9f:
db:46:08:57:4c:f9:18:1f:71:4e:1e:05:1f:3c:33:24:13:89:
88:0a:d7:7d:dc:74:9d:63:96:73:fd:ca:d8:6f:62:05:c4:23:
26:04:5e:40:47:4c:08:0a:62:4c:fe:c8:a1:02:11:94:ef:04:
96:e0:83:65:af:27:bb:d6:a5:0d:b5:1a:36:ae:f3:db:a2:c3:
af:f4:1f:a1:ca:51:9f:65:b0:0b:db:9d:57:7c:7b:44:ed:8a:
a6:13:58:37:6d:e8:d8:5b:ce:2c:59:06:37:7a:b9:0b:be:41:
90:d1:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:02:23 2025 by rpki-client