Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/2u0rovCbEVa5sdF4LaS2EiZ1GfM.roa
File: 2u0rovCbEVa5sdF4LaS2EiZ1GfM.roa (raw, json)
Hash identifier: 3mQ2lRz2yr6WUp2Nf+FSE98FWVVOBetmzBHCtDUK2Kk=
Subject key identifier: DA:ED:2B:A2:F0:9B:11:56:B9:B1:D1:78:2D:A4:B6:12:26:75:19:F3
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 973761
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/2u0rovCbEVa5sdF4LaS2EiZ1GfM.roa
Signing time: Sat 01 Jan 2022 03:56:46 +0000
ROA not before: Sat 01 Jan 2022 03:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210583
IP address blocks: 176.116.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9910113 (0x973761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Jan 1 03:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daed2ba2f09b1156b9b1d1782da4b612267519f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:0f:d5:5d:cc:d8:6a:a3:e4:de:2d:1a:f6:
85:91:32:19:b9:81:2d:51:76:a1:bb:60:f5:ee:9b:
47:d9:31:4a:ed:0e:92:02:61:38:fe:95:29:1d:d6:
61:e7:c6:6b:4c:e3:51:48:94:c7:6d:0e:b6:45:b8:
5e:5d:8a:e9:3e:5e:8b:10:25:dd:a9:b7:20:4a:cd:
71:b2:47:92:ac:21:6d:f9:8d:73:2d:e1:2e:5e:6d:
89:0d:a9:98:c7:8a:b4:40:c9:3a:d7:01:8e:02:8a:
af:cb:4f:9d:36:c4:b2:ea:67:1f:e3:64:70:8f:6b:
3f:c0:07:1e:9e:1a:06:4c:ed:f6:7f:c7:57:ce:5f:
5e:6d:31:94:e6:a9:31:84:bc:69:d6:db:2e:42:cb:
a6:45:19:f0:ba:70:f2:2a:22:a9:70:94:26:12:a2:
ab:1b:bb:72:6e:cb:c8:6f:3e:67:94:6b:a7:74:a6:
3e:13:7a:87:77:8d:5b:0e:75:e2:92:b2:58:9a:d8:
21:47:6f:15:8b:70:c1:ea:75:53:d5:42:55:ff:50:
84:1c:02:52:4f:25:b1:92:2b:a4:02:ec:f0:4e:96:
64:9d:6e:0d:99:1e:e7:68:12:de:4e:3d:bf:fb:2b:
0f:a0:74:0b:15:5c:f5:75:a2:0a:27:b8:2e:54:d1:
a7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:ED:2B:A2:F0:9B:11:56:B9:B1:D1:78:2D:A4:B6:12:26:75:19:F3
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/2u0rovCbEVa5sdF4LaS2EiZ1GfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.7.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ae:58:8e:28:42:0f:92:c3:34:3f:02:9d:fc:8d:9b:fd:be:
b6:c8:0f:ee:49:d3:80:b5:ba:a9:9d:db:2b:ec:60:2b:c2:c2:
6b:70:63:09:3c:a9:77:7e:a2:30:73:d5:1b:eb:b7:dc:c9:14:
2f:47:31:dd:7a:84:05:cd:42:30:63:33:3d:4c:46:34:11:ef:
a4:bd:35:a7:02:78:59:4b:79:d2:a7:b5:d5:fd:8b:0a:20:81:
65:79:1e:fe:3b:18:4d:de:33:f5:b8:94:7d:e2:fd:c6:4a:53:
16:f3:c6:42:fc:93:0a:86:c7:03:2e:d9:37:b6:06:c7:b2:8f:
73:c3:8c:5b:f1:c6:e5:74:99:9f:04:38:8f:b9:67:1f:02:83:
2e:93:b3:c3:23:64:e7:00:40:01:35:5c:55:23:90:d3:14:2d:
36:50:d1:e4:80:b2:47:76:4f:a3:f3:6b:89:fc:36:1b:9d:c0:
86:a4:5b:60:bf:e4:95:be:07:79:1f:da:ce:98:4e:ad:c1:54:
f7:15:9c:8c:6d:1b:cc:79:5b:9e:61:d3:d8:89:a2:8e:24:d9:
db:e6:70:21:c0:53:b4:0d:f9:db:a7:87:0d:4b:44:2b:92:e4:
64:28:38:ba:ee:16:ba:83:10:b1:f2:84:71:74:d0:18:ac:cf:
12:7d:cd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:18 2025 by rpki-client