Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/hVt-RLJOkyfnW65gpB3o8wcUfh0.roa
File: hVt-RLJOkyfnW65gpB3o8wcUfh0.roa (raw, json)
Hash identifier: eUdKbzSEPnbFs2cTFZyGZOkWPZWyU3ejaL0SXPgdcoo=
Subject key identifier: 85:5B:7E:44:B2:4E:93:27:E7:5B:AE:60:A4:1D:E8:F3:07:14:7E:1D
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 03B7BDC7
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/hVt-RLJOkyfnW65gpB3o8wcUfh0.roa
Signing time: Sat 01 Jan 2022 03:54:36 +0000
ROA not before: Sat 01 Jan 2022 03:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200504
IP address blocks: 178.183.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62373319 (0x3b7bdc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jan 1 03:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=855b7e44b24e9327e75bae60a41de8f307147e1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b6:3d:cc:8e:16:1b:27:2d:f8:94:9a:93:ca:
72:21:dd:94:94:14:88:c3:2a:12:56:66:b0:0d:d5:
85:c3:cd:54:97:36:fd:f1:e9:82:d7:5b:8a:3c:83:
fd:07:68:00:a7:6b:bc:fb:d9:0b:82:0f:8b:9e:cb:
4c:33:b7:1e:f7:57:a7:bf:6a:d8:14:4d:34:fa:59:
d2:98:d1:8c:0f:90:d0:fa:2c:20:a3:82:0e:cf:56:
4b:f6:1d:9d:bd:ad:55:eb:3c:c9:65:56:fa:e2:99:
94:53:5e:5e:f5:9d:5c:f2:ec:01:9c:01:5d:81:af:
c5:1d:4e:c2:5e:77:00:98:ba:fb:72:12:e2:74:d7:
fa:a7:48:2a:85:dc:83:dc:bb:17:c6:18:31:1d:b7:
26:28:e7:37:4a:94:b6:fa:64:4a:65:ea:6e:75:bc:
b0:cd:4c:3d:84:b2:39:55:0b:d9:64:ea:d7:ff:87:
be:1d:75:9b:d6:6a:bd:59:6e:fd:7a:0d:cc:a7:c1:
9b:97:51:e4:55:7e:84:b2:86:b7:75:6b:74:b2:cc:
7c:6d:b8:f0:2a:1d:82:c8:3b:31:db:9c:37:3f:6c:
d5:e7:bd:2c:b9:15:cd:f5:c9:00:1b:44:10:1e:10:
e3:4c:fb:38:43:b8:c6:d7:1d:a8:b1:a4:33:a7:49:
55:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5B:7E:44:B2:4E:93:27:E7:5B:AE:60:A4:1D:E8:F3:07:14:7E:1D
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/hVt-RLJOkyfnW65gpB3o8wcUfh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.183.21.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:36:df:40:26:59:ab:59:ba:b2:c4:31:42:e5:8a:51:a1:ef:
d4:66:9f:81:36:15:2b:99:a7:a2:73:30:9e:b3:80:4a:73:e7:
7c:bc:c4:61:64:f5:ca:fb:bf:53:5a:0d:00:03:76:9d:23:8e:
51:66:eb:22:ea:fc:c7:d6:47:da:d1:77:e0:f4:31:f4:68:22:
40:e5:94:98:49:2e:bc:ce:5c:75:fb:1f:11:36:08:96:be:ff:
43:00:fe:b7:de:6b:f8:24:49:1f:af:b7:df:2f:ab:28:59:bf:
c0:58:c2:97:b9:62:01:d0:af:ab:94:53:cd:91:c0:40:5c:f5:
b3:49:da:19:50:6c:0e:2e:9d:09:ad:a4:e6:26:fc:cd:f4:ee:
8d:cc:f7:85:73:61:56:8a:a3:54:41:8f:1b:eb:90:74:e1:6e:
6e:3e:b8:68:82:30:58:90:76:9c:ad:b7:5e:be:94:cc:84:89:
a4:41:18:2b:50:36:b7:17:e9:6e:7d:40:be:46:f4:79:93:ca:
2d:04:60:cc:06:4e:31:03:60:54:06:d4:78:70:99:a1:f8:31:
e0:fd:db:86:68:37:67:b6:8a:64:31:3e:1e:aa:97:98:84:df:
97:d1:5f:b3:aa:ed:2c:34:60:e3:df:8e:1d:1b:7d:d9:d1:21:
e1:d9:9b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:11 2025 by rpki-client