Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/9X6S5_-1W6kGV_RVd7JMbpELm1g.roa
File: 9X6S5_-1W6kGV_RVd7JMbpELm1g.roa (raw, json)
Hash identifier: f7vpNDxmbIg3JYXH6pIgZmKoKNseoC6oir9qORmUhXc=
Subject key identifier: F5:7E:92:E7:FF:B5:5B:A9:06:57:F4:55:77:B2:4C:6E:91:0B:9B:58
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 0184E6B53F6284327718B14B867FCCCF41D8
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/9X6S5_-1W6kGV_RVd7JMbpELm1g.roa
Signing time: Tue 06 Dec 2022 09:12:28 +0000
ROA not before: Tue 06 Dec 2022 09:12:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20764
IP address blocks: 79.141.208.0/20 maxlen: 20
80.64.96.0/20 maxlen: 20
80.64.98.28/32 maxlen: 32
185.5.160.0/22 maxlen: 22
81.27.240.0/20 maxlen: 20
2a00:1c28::/29 maxlen: 29
2a00:1c28::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e6:b5:3f:62:84:32:77:18:b1:4b:86:7f:cc:cf:41:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Dec 6 09:12:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f57e92e7ffb55ba90657f45577b24c6e910b9b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:62:60:12:41:85:70:dd:8b:d0:90:f4:c9:6a:
7a:1b:1a:02:3c:b5:ce:a8:7d:90:b6:76:95:21:50:
c5:b1:f1:68:a8:32:c3:08:b4:b8:f7:15:86:ed:1b:
61:4c:1a:cd:a5:36:a3:32:22:be:24:bc:d0:f7:c9:
bc:ff:89:51:30:7d:cc:cf:ea:45:45:b4:fa:64:5c:
48:fc:1a:1b:9b:ad:c5:14:cf:9b:9a:a3:1c:ee:4d:
a1:ff:04:35:e7:e3:b8:28:90:c3:2c:d9:2d:e2:aa:
cf:81:c1:fe:f6:6e:19:a0:25:cc:d0:97:43:7b:33:
a6:68:8d:1f:12:ed:15:ec:e9:8d:89:cd:e1:73:42:
a5:4d:eb:bd:66:13:6c:6a:a4:b4:5b:c8:3d:1b:dd:
23:ae:3f:6e:56:67:81:19:9a:64:83:cd:3a:7e:ae:
1f:5a:3a:02:a5:94:07:73:e1:84:2b:fc:07:88:c7:
78:9a:98:4b:72:0e:e4:87:ae:01:4d:0a:9e:1c:ac:
9a:76:5a:a5:6f:0f:0d:a7:81:fb:8c:cf:91:24:b0:
ff:f3:24:27:b2:d1:bd:58:d2:1e:ba:0a:fa:5d:d1:
5c:81:f7:91:84:90:68:07:33:92:97:6e:67:11:13:
03:18:3c:71:4a:d5:c8:c4:a8:d3:9d:fd:ba:2f:f6:
c6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7E:92:E7:FF:B5:5B:A9:06:57:F4:55:77:B2:4C:6E:91:0B:9B:58
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/9X6S5_-1W6kGV_RVd7JMbpELm1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.208.0/20
80.64.96.0/20
81.27.240.0/20
185.5.160.0/22
IPv6:
2a00:1c28::/29
Signature Algorithm: sha256WithRSAEncryption
97:ea:65:04:29:6c:6f:6b:21:61:6f:c9:51:56:5d:01:0c:39:
53:8f:ad:6b:07:47:e8:35:b9:75:96:5d:f2:a6:57:0a:22:8c:
04:23:a8:0e:bf:fa:45:f7:a4:76:35:a6:2c:12:ff:b6:fa:12:
51:ea:15:e5:40:be:e2:7c:c8:7d:20:f1:43:f5:12:7a:7a:33:
d4:7f:f5:fb:b7:50:2a:e3:e0:cb:77:24:39:13:ef:94:0d:5d:
58:6c:f3:7f:e2:1c:d2:c0:f6:e4:07:fd:a8:47:5e:cd:6c:a9:
31:76:91:67:26:54:50:e9:7a:ee:b0:60:3e:dd:89:24:6f:cf:
1e:c6:d0:90:91:cc:5e:04:b7:80:66:6e:d9:37:61:39:ff:4b:
1f:69:07:07:0a:62:1d:b2:6e:49:a5:c2:79:2c:31:c4:7c:3d:
10:7d:f1:0d:e3:e8:79:f1:12:b8:03:ab:23:90:73:7a:29:25:
f4:35:97:8a:de:41:eb:0d:b4:5a:13:a3:17:6f:b9:1c:12:7d:
2a:10:a4:f7:42:1a:1d:70:9d:7d:c1:cb:90:be:79:d9:70:26:
da:67:15:35:31:e4:b8:a8:70:2e:c2:6c:24:c1:e6:4a:95:e3:
4a:98:4c:e7:66:0e:d9:56:3c:86:13:ae:29:23:95:65:fd:e9:
a8:4d:92:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:47:04 2025 by rpki-client