Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/Sdn29-tpynAKAueS4quLo0Ke6QY.roa
File: Sdn29-tpynAKAueS4quLo0Ke6QY.roa (raw, json)
Hash identifier: jzNHbEA/jRf4r8IpYTattdmEHzizR5lyE+ptXa4xT3s=
Subject key identifier: 49:D9:F6:F7:EB:69:CA:70:0A:02:E7:92:E2:AB:8B:A3:42:9E:E9:06
Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16
Certificate serial: 024A394A
Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/Sdn29-tpynAKAueS4quLo0Ke6QY.roa
Signing time: Thu 03 Mar 2022 15:17:49 +0000
ROA not before: Thu 03 Mar 2022 15:17:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48276
IP address blocks: 176.96.184.0/22 maxlen: 24
176.96.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38418762 (0x24a394a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16
Validity
Not Before: Mar 3 15:17:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49d9f6f7eb69ca700a02e792e2ab8ba3429ee906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:53:87:29:86:ff:c2:e2:b3:cd:99:29:74:a3:
28:c5:ef:03:96:80:d8:d7:5f:a3:21:79:28:cd:43:
21:00:fa:52:a3:d7:12:76:5d:cf:11:ee:cd:a9:db:
52:9f:b8:ef:7d:80:84:90:78:88:6b:0f:62:81:84:
92:43:1c:e0:b6:10:35:3b:db:69:90:06:d1:b2:ae:
62:db:2b:22:f2:c0:e6:67:f4:94:d5:3d:f9:d3:87:
37:b7:ff:5e:af:80:03:5c:e1:cf:20:bf:06:5a:ee:
dc:9f:33:b5:6f:dc:ea:00:45:e3:7d:5f:df:84:f0:
43:bc:d6:8f:3e:76:c4:d6:6d:5b:09:dc:5f:d5:b8:
72:79:3a:c9:5f:a0:6e:a9:68:0a:1c:c9:72:38:9f:
3c:8b:eb:f4:f2:56:ad:ef:d9:fe:8a:34:df:51:e1:
7e:b8:f0:cd:5b:4a:4d:e2:c8:46:89:7c:ab:02:11:
9c:fb:b8:78:72:a1:90:08:bd:b4:3f:a1:40:f7:73:
29:8b:83:9b:f5:e3:b3:53:65:53:31:e5:3d:17:21:
54:56:8b:97:88:5e:8f:49:f5:49:74:64:0e:76:6c:
41:11:fe:f6:45:7e:11:13:f4:b4:94:ee:03:95:82:
8f:23:43:7b:da:a5:8d:d5:98:4d:ac:84:3d:55:f3:
31:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D9:F6:F7:EB:69:CA:70:0A:02:E7:92:E2:AB:8B:A3:42:9E:E9:06
X509v3 Authority Key Identifier:
keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/Sdn29-tpynAKAueS4quLo0Ke6QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.184.0-176.96.188.255
Signature Algorithm: sha256WithRSAEncryption
26:08:c6:94:93:67:85:65:a6:06:09:35:f8:d4:eb:14:cc:24:
d4:60:25:20:c2:0c:5b:5f:c5:f8:b3:7d:42:43:f8:8f:85:2b:
0f:0c:0f:95:46:08:81:49:e5:e3:de:5b:67:1a:a7:92:a7:e9:
b5:a0:5b:6d:f0:96:34:42:64:e7:27:19:96:87:c4:2b:76:aa:
0c:1d:22:bc:b1:6d:cb:d7:59:1e:26:52:96:52:83:d2:bc:21:
b6:76:99:a7:93:61:ae:27:7a:d1:80:98:fc:c5:c0:fc:9d:cc:
8b:e7:41:be:4d:81:c7:67:80:8a:0c:e3:b8:df:d0:ce:40:ef:
4e:28:47:20:77:d7:45:7d:e8:fb:ac:32:fe:19:56:42:32:dc:
9e:f9:38:95:f1:6a:91:7a:93:be:d1:21:21:21:c3:98:0e:7f:
b2:4d:5c:ee:38:74:b9:03:a9:7d:d4:3c:38:9a:68:04:84:c3:
98:e6:be:06:65:d5:08:69:28:e1:84:27:7c:97:d6:ee:59:b6:
cc:8b:e3:17:09:15:5e:08:c6:91:d6:88:43:ba:2d:3f:a0:86:
1d:68:89:62:ad:f4:e4:cd:3a:33:3d:71:b3:8b:80:73:d3:e0:
48:a8:6d:aa:66:90:9b:a4:4d:cf:e1:dd:b8:4a:7d:83:23:83:
9b:79:d7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:39:47 2025 by rpki-client