Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/r361Rj0GLBMfGrIsCzkD6l9Izw8.roa
File: r361Rj0GLBMfGrIsCzkD6l9Izw8.roa (raw, json)
Hash identifier: C/lXE0peLb/sBcO6VDdCXzK5uV3d9k8lISDmnJ24PDE=
Subject key identifier: AF:7E:B5:46:3D:06:2C:13:1F:1A:B2:2C:0B:39:03:EA:5F:48:CF:0F
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: F7101B
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/r361Rj0GLBMfGrIsCzkD6l9Izw8.roa
Signing time: Mon 09 May 2022 20:29:48 +0000
ROA not before: Mon 09 May 2022 20:29:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212427
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16191515 (0xf7101b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: May 9 20:29:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af7eb5463d062c131f1ab22c0b3903ea5f48cf0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:91:5a:6a:6f:72:a4:7d:9f:f9:95:1d:26:d7:
7c:a7:4a:03:1c:fe:f2:31:fd:a4:db:28:1b:07:31:
03:51:7a:eb:b0:57:c3:38:55:e6:c5:43:39:af:fd:
26:61:6f:dd:70:52:73:d1:85:7d:ba:7a:62:c6:59:
4a:e6:f3:a0:25:9e:15:d3:98:16:3b:dc:12:18:84:
20:15:d1:45:bf:de:a8:e4:81:9a:eb:0d:56:c9:6c:
5b:4b:93:09:ed:6f:8e:96:68:fe:73:ef:c5:94:a9:
41:af:c1:f5:aa:b3:6e:37:55:bf:d4:5a:17:f8:46:
8c:b4:26:ab:f4:e3:3b:71:8e:c1:41:c6:e3:e6:c4:
45:f5:b0:a2:a5:37:11:58:39:84:db:53:ac:e0:a5:
3a:43:d3:94:f6:78:e6:2c:0f:51:5d:5e:99:44:db:
b7:50:23:41:ca:b0:b9:7a:e6:34:28:f4:55:a5:93:
b8:69:4f:23:a0:19:e5:e7:c7:24:ff:1b:7b:1f:9e:
b7:2b:4d:00:cb:7c:bc:06:f8:31:a1:25:e7:67:98:
95:c7:45:9f:db:04:4a:20:33:e6:1b:bb:49:39:c8:
f5:7c:bd:da:2a:f2:70:bf:8e:3a:0c:97:80:8e:e0:
e6:30:19:d7:95:46:b7:3a:ff:43:f8:7a:f4:36:14:
32:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:7E:B5:46:3D:06:2C:13:1F:1A:B2:2C:0B:39:03:EA:5F:48:CF:0F
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/r361Rj0GLBMfGrIsCzkD6l9Izw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
57:1f:c0:4a:7a:41:88:07:4a:e9:14:9a:0b:c5:7f:17:40:5a:
83:1a:3b:07:bc:8e:e8:69:ec:b7:0f:51:2d:a1:ff:78:37:36:
73:59:b5:08:ab:b9:43:dd:c3:33:31:4e:e7:b8:74:b8:0e:92:
05:db:4d:68:41:fd:75:0b:4a:81:67:79:5f:b5:41:38:45:22:
8a:e6:d4:5a:08:0a:fe:04:b5:52:17:95:f5:bf:09:71:f9:fb:
0b:91:39:98:bb:f1:5f:a4:0d:4f:d9:ce:c6:57:52:e4:c4:52:
67:79:60:b2:13:83:fa:89:67:f3:18:8e:83:71:4e:52:3f:99:
a0:81:34:50:56:2c:ff:d7:f1:66:80:a4:c7:b9:c1:92:25:ea:
66:18:73:18:11:fe:d0:88:03:4f:07:b7:06:87:02:de:b8:3a:
bd:44:48:da:66:95:40:fa:9f:c8:a3:5d:07:28:2b:34:45:f4:
ea:d0:7d:55:41:3c:23:a9:ea:46:96:ba:06:47:7a:c7:af:f6:
48:54:7e:98:49:82:14:f6:2d:c9:60:90:2e:5f:0a:5b:18:60:
de:35:c4:b2:7a:f4:30:f7:1a:fc:62:fa:a4:f7:ca:2d:e4:07:
97:34:39:6a:40:e0:bd:1a:bc:c7:b6:42:88:3b:fa:85:aa:a1:
3d:f9:65:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:29 2025 by rpki-client