Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/woYBlC8cRUMGZ8WEt3ATVxw42I8.roa
File: woYBlC8cRUMGZ8WEt3ATVxw42I8.roa (raw, json)
Hash identifier: o6V2d4KherDI43RGKmp3p67IhAdQBao5vBAVKbuCbaE=
Subject key identifier: C2:86:01:94:2F:1C:45:43:06:67:C5:84:B7:70:13:57:1C:38:D8:8F
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 01856F54A398CA9B5ABBC3CD16648173E999
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/woYBlC8cRUMGZ8WEt3ATVxw42I8.roa
Signing time: Sun 01 Jan 2023 21:54:55 +0000
ROA not before: Sun 01 Jan 2023 21:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 153.96.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a3:98:ca:9b:5a:bb:c3:cd:16:64:81:73:e9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 21:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c28601942f1c45430667c584b77013571c38d88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c8:71:4b:c6:45:f7:03:a3:90:9c:94:9d:c6:
0e:4b:c5:0f:65:9a:49:05:05:3f:96:d6:30:56:62:
77:f2:dc:75:25:b0:31:c5:bb:59:b7:ff:f7:5d:5e:
95:be:e5:16:67:eb:24:28:6b:96:26:31:cc:dd:14:
26:66:b3:95:83:76:6d:a4:cc:c0:3a:fb:f7:84:fe:
e6:a2:5f:09:6c:1c:28:b7:ba:d7:36:30:1c:16:61:
99:3f:67:6f:a5:eb:8e:2b:44:2a:d3:0f:d9:8f:a9:
8f:38:45:c2:2c:0e:6f:59:62:ce:eb:67:22:b7:e0:
ed:fe:e3:0f:73:40:3e:86:b0:31:62:da:2b:d8:05:
14:f9:16:10:3b:a7:33:f9:7f:e5:d7:96:89:e0:0b:
0b:2e:ac:56:6c:18:bb:b6:73:f6:4b:d2:a8:18:3b:
eb:e6:1a:bb:b6:cc:41:28:83:20:2e:24:13:79:67:
d1:f2:a3:00:27:ca:cd:c4:04:95:3e:31:91:39:c8:
50:66:5f:68:f8:27:09:69:b9:b0:1c:be:4d:c4:f9:
ff:2e:97:06:8b:b3:ef:d5:fc:a7:c8:e2:b2:a3:86:
ed:b7:de:b0:18:a7:7c:fc:e9:89:f6:33:6a:ca:91:
7b:86:2a:3c:6a:e1:92:d8:2a:8b:58:65:18:12:82:
aa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:86:01:94:2F:1C:45:43:06:67:C5:84:B7:70:13:57:1C:38:D8:8F
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/woYBlC8cRUMGZ8WEt3ATVxw42I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.96.83.0/24
Signature Algorithm: sha256WithRSAEncryption
44:26:11:0b:4a:a7:2c:6c:d4:44:10:da:31:d8:90:fa:f2:16:
06:0e:d8:3f:84:10:2f:80:f5:b9:2d:0c:c5:8b:85:77:10:1c:
8c:6c:c3:19:f5:2e:03:80:73:1d:9b:0c:13:e1:14:51:a8:f2:
aa:72:5e:a9:9b:ef:a3:38:01:c8:5c:30:f1:8a:3b:63:f3:20:
2a:05:a7:6f:de:12:67:5e:25:c3:12:ad:6a:39:75:d1:44:e2:
cc:21:57:3c:bd:7d:13:9a:75:8b:b5:2a:e6:d5:38:fc:e2:76:
00:27:f2:05:af:e5:bd:d0:02:53:36:c3:58:b9:59:47:9e:fc:
26:18:08:66:9a:3d:77:d0:fc:20:ab:48:b0:bc:dc:36:2a:7f:
7e:95:fe:69:69:a3:04:fd:b6:35:c4:75:29:b7:53:45:3a:32:
b2:d6:45:9c:31:4f:a3:f8:38:cf:cf:bd:5a:90:f4:66:59:8f:
eb:43:b1:66:35:8d:b1:ca:4b:8d:cf:4f:11:d3:a8:35:40:a3:
89:2b:5f:ec:4e:74:77:09:ad:ce:3d:b9:55:b5:5e:80:3d:b4:
e8:e4:cf:18:79:d0:93:ce:13:5b:54:9f:f4:0d:e3:c9:fb:7b:
9f:b5:4b:6a:94:b2:5e:51:f2:a6:35:b2:19:12:11:83:f6:4a:
bc:3a:4c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:00 2025 by rpki-client