Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/83iEL_4Slp1bNmUc9-TCs6NJcm8.roa
File: 83iEL_4Slp1bNmUc9-TCs6NJcm8.roa (raw, json)
Hash identifier: f4PlX30NnQusOU/91NQC9CqkvPL1UfPdR2YJE4KxfpE=
Subject key identifier: F3:78:84:2F:FE:12:96:9D:5B:36:65:1C:F7:E4:C2:B3:A3:49:72:6F
Certificate issuer: /CN=afa929be73491acd99d590372a52b815fa1f23f5
Certificate serial: 018571555BF3F88C30DC864E2291105701C1
Authority key identifier: AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/83iEL_4Slp1bNmUc9-TCs6NJcm8.roa
Signing time: Mon 02 Jan 2023 07:14:57 +0000
ROA not before: Mon 02 Jan 2023 07:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57774
IP address blocks: 176.107.192.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:5b:f3:f8:8c:30:dc:86:4e:22:91:10:57:01:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa929be73491acd99d590372a52b815fa1f23f5
Validity
Not Before: Jan 2 07:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f378842ffe12969d5b36651cf7e4c2b3a349726f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:97:5d:7d:f1:5b:86:96:37:9b:a0:e6:2c:
51:4c:7d:88:91:ee:e5:26:b9:0e:00:8c:88:12:64:
c5:09:6d:a3:9e:50:84:f0:9b:13:cd:24:af:d2:02:
21:c8:f3:9c:09:4b:c9:82:90:c6:6b:20:29:a7:70:
b5:6a:b6:27:c5:33:6f:0d:bb:37:e5:01:e3:dc:83:
44:64:bd:f1:89:15:46:f5:e5:fc:c7:31:a8:86:4f:
c1:53:ad:96:9c:6b:78:a8:93:f4:3f:36:7f:3b:ef:
bd:b9:9e:09:4d:06:e2:3c:ed:60:6d:bc:41:03:84:
8e:c2:f5:62:8a:b2:6a:c7:1d:05:76:6e:5a:59:63:
c0:9f:ff:99:71:84:8b:69:ae:3a:12:c8:a1:e7:dc:
9e:45:98:17:6e:ae:cf:fa:05:e7:22:c3:06:82:fc:
14:84:07:69:c1:50:17:22:2a:9f:60:57:83:28:e0:
ea:2a:eb:34:e9:78:b0:cb:eb:cd:a5:6f:cf:cd:90:
54:83:42:6f:32:bb:dd:ab:53:ca:11:2d:92:bd:49:
0c:e1:82:81:1e:a8:ca:1e:ee:f2:59:90:86:1c:47:
41:f9:35:a1:b5:ac:7c:20:a4:3e:47:3a:15:a7:1a:
54:df:be:db:82:e8:a2:36:f1:be:a0:4d:38:b2:89:
d8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:78:84:2F:FE:12:96:9D:5B:36:65:1C:F7:E4:C2:B3:A3:49:72:6F
X509v3 Authority Key Identifier:
keyid:AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/83iEL_4Slp1bNmUc9-TCs6NJcm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.192.0/21
Signature Algorithm: sha256WithRSAEncryption
41:5c:fa:7d:9f:d4:d2:d6:61:29:09:ff:26:23:99:8c:8e:d0:
8a:97:93:1d:36:3e:8d:a9:cc:7a:5e:b6:61:8f:e5:5f:8f:a5:
6b:55:ae:ae:e7:47:4d:98:33:e0:be:00:19:00:dd:7f:46:68:
8e:77:c8:ed:9a:48:c7:72:5f:a6:42:8a:8c:cd:eb:6f:26:8e:
aa:58:62:c8:4c:2d:53:7d:59:d2:ec:a6:60:ea:f5:77:80:a7:
65:e3:e5:ee:7a:3c:6d:d8:72:02:9a:44:f6:6d:2d:56:67:91:
f9:6c:e4:c6:2f:52:d2:f8:67:bc:6d:8e:0e:a2:fb:37:65:b7:
a2:a3:ee:4b:e1:b1:ee:7f:fa:e9:52:94:18:e0:1d:8f:4c:bd:
55:7e:f7:b3:38:27:35:d6:6c:82:49:2e:d4:a2:2b:de:6c:f8:
80:37:d8:45:ab:e7:81:0d:9e:e1:83:ab:d7:ff:04:ca:53:61:
e9:31:cf:c9:1c:ca:b9:21:be:c4:7d:11:74:1c:93:23:0e:79:
94:0a:32:f9:63:67:a5:80:f7:06:79:62:58:43:d4:ec:41:a5:
5c:aa:8c:11:aa:f9:9f:a1:82:1d:ad:fb:ee:b7:b6:78:44:f1:
0d:67:fa:54:9d:4e:5a:0f:b8:5a:86:99:eb:da:83:5a:39:c8:
d2:b5:60:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:20:02 2025 by rpki-client