Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9a50f1-294b-48e4-beaf-1dcad8e68ed9/1/Xy6gQHWNYIBo_rRBPr_dB4pY5Us.roa
File: Xy6gQHWNYIBo_rRBPr_dB4pY5Us.roa (raw, json)
Hash identifier: 5WpMMXyb5eDtGQAfwAoHdU+TkKeK4+kkGsfUUm56Uqg=
Subject key identifier: 5F:2E:A0:40:75:8D:60:80:68:FE:B4:41:3E:BF:DD:07:8A:58:E5:4B
Certificate issuer: /CN=9ed0c4ff4a90073288b97674694142721f5b8435
Certificate serial: 0187A4CBF07CBD0987112D58228AB9806415
Authority key identifier: 9E:D0:C4:FF:4A:90:07:32:88:B9:76:74:69:41:42:72:1F:5B:84:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntDE_0qQBzKIuXZ0aUFCch9bhDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9a50f1-294b-48e4-beaf-1dcad8e68ed9/1/Xy6gQHWNYIBo_rRBPr_dB4pY5Us.roa
Signing time: Fri 21 Apr 2023 17:10:41 +0000
ROA not before: Fri 21 Apr 2023 17:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 86.106.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:cb:f0:7c:bd:09:87:11:2d:58:22:8a:b9:80:64:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed0c4ff4a90073288b97674694142721f5b8435
Validity
Not Before: Apr 21 17:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f2ea040758d608068feb4413ebfdd078a58e54b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:90:90:fd:af:81:48:cc:a6:aa:8f:d6:b5:36:
27:27:6a:5a:31:e3:57:9c:d4:1c:69:99:01:a1:21:
2f:ac:64:cf:1e:d5:44:0b:30:09:30:ea:e4:9c:4d:
9f:b5:91:bb:ab:10:3f:17:ae:e5:e1:58:ef:16:1f:
6b:50:9f:75:2a:b8:c1:ad:bc:9c:7b:ff:e3:0f:1d:
78:50:4f:d4:44:75:4a:4b:48:2f:2a:c0:e2:92:8d:
71:e7:e0:fd:cc:26:70:82:c6:26:4c:b3:40:00:5f:
d2:c6:63:8f:ee:10:c6:e8:f8:5d:2c:27:10:85:11:
95:91:79:cc:b8:33:04:fc:02:0a:a3:0d:89:93:d7:
f1:b8:cd:aa:e3:89:60:e1:c7:64:e8:4f:9b:5e:34:
d1:d7:38:1c:b3:e7:bd:8f:a6:67:27:b3:d0:b2:1a:
67:c2:2a:02:62:26:dc:1e:47:1d:33:07:ff:11:43:
a7:39:ed:a8:13:ab:c0:6c:89:24:7a:9a:be:76:87:
d5:12:42:10:9d:e3:fd:bf:e5:53:b8:5a:f2:f2:bc:
9b:93:06:fb:1a:a6:81:de:11:b9:1d:5c:c7:9f:df:
18:31:c9:96:91:2f:57:e3:39:7e:4a:df:ed:f2:23:
ed:49:6d:17:84:f5:39:76:9b:24:ad:95:d8:fa:3f:
51:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2E:A0:40:75:8D:60:80:68:FE:B4:41:3E:BF:DD:07:8A:58:E5:4B
X509v3 Authority Key Identifier:
keyid:9E:D0:C4:FF:4A:90:07:32:88:B9:76:74:69:41:42:72:1F:5B:84:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntDE_0qQBzKIuXZ0aUFCch9bhDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9a50f1-294b-48e4-beaf-1dcad8e68ed9/1/Xy6gQHWNYIBo_rRBPr_dB4pY5Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9a50f1-294b-48e4-beaf-1dcad8e68ed9/1/ntDE_0qQBzKIuXZ0aUFCch9bhDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.77.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c1:5e:fe:fb:14:f9:1f:a0:88:eb:aa:97:f2:fe:c7:5d:e1:
e0:ed:3e:5b:b9:ab:84:78:76:9c:4a:12:1c:ed:28:af:72:1e:
0c:dd:fb:e0:8d:03:d2:f5:5d:b7:f1:10:7b:97:cd:5a:a1:5b:
a0:39:23:4e:f6:b5:d0:23:bf:6f:a3:5e:8b:45:2e:1c:be:ca:
9a:50:ce:50:30:12:ed:db:91:43:c8:9a:57:74:05:ed:7c:7a:
3d:5c:db:87:1c:2d:8a:32:7e:6f:a5:2c:c7:6b:1b:08:09:bd:
88:d3:76:bf:eb:80:10:75:43:9f:37:cc:21:55:db:0e:d3:93:
ea:b8:6b:c7:8b:d8:98:e0:b1:c8:1a:e5:9d:f8:45:1d:20:47:
a7:15:16:d9:e2:7f:50:10:6f:06:27:be:67:42:fb:67:36:08:
3c:b1:ad:67:3f:cb:eb:b2:cc:64:a5:54:95:6a:e8:e8:19:81:
a0:32:78:e2:dc:c2:ea:39:1c:59:a2:04:15:14:e9:46:d9:c1:
d9:13:a5:4f:1d:18:3c:52:0f:c3:8a:34:18:56:4f:25:87:53:
6e:2a:69:74:c8:e5:70:0e:e6:c9:a3:13:b3:f5:20:06:51:90:
71:6a:36:3f:71:1b:ea:af:92:09:79:cb:ee:20:09:a4:85:24:
97:3b:d3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:13 2025 by rpki-client