![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ke7x_HAFmDbaMN_wnlS4to20dWo.roa
File: ke7x_HAFmDbaMN_wnlS4to20dWo.roa (raw, json)
Hash identifier: gyOlxG/+FYSMHcIPxJx4V0J8vhRpwtN+l2wfDWAyzCk=
Subject key identifier: 91:EE:F1:FC:70:05:98:36:DA:30:DF:F0:9E:54:B8:B6:8D:B4:75:6A
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018571DE7C4DA8814BE8BC078A9E859CAB42
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ke7x_HAFmDbaMN_wnlS4to20dWo.roa
Signing time: Mon 02 Jan 2023 09:44:44 +0000
ROA not before: Mon 02 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 193.107.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:7c:4d:a8:81:4b:e8:bc:07:8a:9e:85:9c:ab:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91eef1fc70059836da30dff09e54b8b68db4756a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:de:f8:5c:ac:87:bf:53:e8:21:40:b2:7b:ef:
bc:e1:a5:83:55:5e:6d:98:d3:1b:05:72:5b:fe:20:
1f:87:9a:d3:d6:71:9b:23:b3:e0:c3:9e:df:ac:ac:
fc:cc:59:bb:de:df:7e:41:b8:65:61:8f:98:22:64:
60:63:73:3f:68:70:f8:53:48:bc:c7:76:c4:8a:16:
00:3a:f8:fa:43:f2:cd:b2:44:96:8f:08:c7:bb:65:
82:fd:96:d5:ed:0c:0d:d1:06:ee:dc:6f:38:ff:53:
a7:79:ff:05:b6:2e:11:c4:4e:ab:93:79:77:12:6f:
29:24:9a:e0:84:28:84:b3:0c:4e:d5:26:7d:85:ec:
a8:c9:93:f7:53:f2:8c:9a:fc:f1:5b:71:9f:4c:fd:
2a:5e:84:d3:13:bc:b8:6d:ea:68:5e:08:6d:aa:ae:
7a:1c:cc:03:74:30:20:d1:52:3f:bf:2c:3f:2b:e9:
9e:b1:20:34:69:24:b3:5b:2a:4e:32:63:ce:11:0f:
5e:9d:2c:97:06:6f:4e:82:05:3d:fd:ce:c1:b4:e5:
8f:ea:2e:c9:86:97:90:1b:d8:6e:d8:ab:2e:81:3f:
26:1f:fd:35:29:4e:5d:dd:6e:81:a6:c5:54:01:4b:
04:8e:49:f7:b5:ff:c9:c5:9c:54:ac:ec:24:44:84:
32:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EE:F1:FC:70:05:98:36:DA:30:DF:F0:9E:54:B8:B6:8D:B4:75:6A
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ke7x_HAFmDbaMN_wnlS4to20dWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.216.0/24
Signature Algorithm: sha256WithRSAEncryption
89:57:d8:92:00:8c:17:1e:7e:7f:91:2e:b2:c0:f2:51:ae:c3:
ba:f4:2a:29:de:98:3d:a1:be:c8:cd:e2:f9:22:9c:ed:a6:df:
80:40:56:82:f3:5f:48:a8:e9:d1:a2:03:58:db:70:b3:9f:3e:
7a:dc:32:f9:38:7a:1f:2e:9f:d8:8c:a9:4b:a4:75:b0:40:3d:
b6:f1:28:ba:5c:cf:7b:6d:62:c7:e7:c7:37:0f:2b:79:5e:30:
7e:8e:31:7f:70:7f:fa:a0:2c:d7:94:4f:be:94:cc:66:8b:e2:
f6:a3:d7:d0:05:75:c4:3b:64:ca:40:89:51:49:08:a8:fb:6c:
0a:7f:ca:db:70:27:be:38:b6:fa:01:cf:72:1d:9e:c7:e1:47:
5b:60:3f:05:b4:ec:7f:e1:0e:33:73:41:b0:da:63:43:8a:26:
1a:d9:fd:a4:20:2c:85:fb:62:16:0e:9d:ce:a0:44:a1:33:f5:
6b:98:3b:f2:e4:a4:63:ec:67:c3:d9:2e:97:d2:ef:96:43:2a:
17:21:3f:8c:4b:3b:ee:46:52:da:ff:64:ee:37:5b:af:38:76:
53:28:ac:b4:5a:12:a8:35:70:b0:2a:3f:32:70:21:cd:d6:82:
3c:1a:f6:87:0f:43:e8:1f:42:34:90:b9:50:e5:4c:eb:ed:b8:
2b:d2:b0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:48 2025 by rpki-client