Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RRFwCa5jPk6wBdFCN772uueEjvc.roa
File: RRFwCa5jPk6wBdFCN772uueEjvc.roa (raw, json)
Hash identifier: xshCTRWXj54cQ0wix1Zt9113potM0fGprlEKq2Py4Fk=
Subject key identifier: 45:11:70:09:AE:63:3E:4E:B0:05:D1:42:37:BE:F6:BA:E7:84:8E:F7
Certificate issuer: /CN=472694d8a399a3a66f442ec72295c754acbbad41
Certificate serial: 0187E7D645BE90D5BF827A30740D233C2595
Authority key identifier: 47:26:94:D8:A3:99:A3:A6:6F:44:2E:C7:22:95:C7:54:AC:BB:AD:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RRFwCa5jPk6wBdFCN772uueEjvc.roa
Signing time: Thu 04 May 2023 17:36:32 +0000
ROA not before: Thu 04 May 2023 17:36:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39122
IP address blocks: 185.173.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e7:d6:45:be:90:d5:bf:82:7a:30:74:0d:23:3c:25:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472694d8a399a3a66f442ec72295c754acbbad41
Validity
Not Before: May 4 17:36:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45117009ae633e4eb005d14237bef6bae7848ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:a7:25:81:fc:6f:6c:f8:f5:a9:ea:15:29:
de:c2:9f:c0:37:d7:ac:d5:ac:d3:ed:d6:a6:fe:cd:
fb:55:7a:52:29:d1:9b:31:15:0d:66:88:08:53:f4:
cc:07:d0:d9:ed:3c:a7:9d:b6:01:9e:00:e0:98:3d:
66:37:2a:68:56:d9:a8:c0:04:f9:fa:11:7b:80:22:
d6:b5:3d:e1:92:70:a2:62:cf:f8:27:ec:88:a3:c3:
a0:18:83:af:fa:eb:b2:e4:16:8c:85:4e:a6:18:4f:
cb:80:27:1b:c4:cd:87:91:76:16:fb:bb:14:c5:5a:
29:1a:a0:32:6e:ba:c0:2c:47:92:cd:2b:08:25:2e:
29:47:1f:2c:68:10:56:9c:db:7a:00:6d:4b:c6:d0:
c6:75:06:b4:b9:c5:a8:d2:7c:1d:4f:60:fa:29:2a:
ae:a8:11:7c:e3:d8:17:19:d5:42:7a:c5:c9:d5:7a:
8d:a1:d6:f5:95:92:47:35:d2:e4:28:66:df:ed:f9:
45:63:66:a1:4a:64:1d:b1:92:af:3e:d4:4e:ea:a6:
da:1c:3b:d0:0b:10:54:ec:f1:16:cf:67:13:46:f8:
d7:99:c1:dc:74:9a:c9:a6:4f:53:4a:ba:8e:ed:82:
68:ae:f7:a1:f6:31:65:a2:48:13:06:09:d3:29:69:
9f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:11:70:09:AE:63:3E:4E:B0:05:D1:42:37:BE:F6:BA:E7:84:8E:F7
X509v3 Authority Key Identifier:
keyid:47:26:94:D8:A3:99:A3:A6:6F:44:2E:C7:22:95:C7:54:AC:BB:AD:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RRFwCa5jPk6wBdFCN772uueEjvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ddc26e-31da-43dd-b4d1-063a0881a6d2/1/RyaU2KOZo6ZvRC7HIpXHVKy7rUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:29:06:27:09:1f:89:7d:19:07:ca:d0:76:1c:a0:e8:d6:e5:
a8:4f:68:70:2a:2f:33:24:55:0d:d5:cf:88:47:d6:6c:57:fb:
03:c4:9c:d4:f0:00:de:9c:91:1a:de:72:09:6d:4f:1e:d1:74:
49:a3:09:29:ee:08:6d:0f:2a:01:37:d5:22:76:b6:07:ab:22:
cc:0e:40:a6:e4:bd:19:ae:7b:e7:25:b5:4c:89:64:e1:9e:61:
35:29:ca:e2:69:d0:fa:90:10:cb:8a:ac:8e:a4:c2:22:fe:fa:
20:49:f1:6c:3c:2c:43:d2:e5:c3:c2:b0:79:f1:53:36:20:bc:
12:03:3f:90:b6:4a:b1:f3:2a:47:7c:41:5e:08:50:be:6d:80:
76:51:1a:9b:3b:ed:e2:ed:91:55:94:ba:b2:dd:c4:31:17:eb:
e6:9b:63:bd:ee:46:27:d3:60:78:a5:03:a8:2e:a4:03:a2:a4:
8a:22:27:58:ee:8d:ad:d6:15:e6:48:b7:d7:a6:db:27:d2:cc:
a3:ca:ee:16:8e:75:27:f9:e7:85:4c:05:02:66:14:f7:d7:0e:
14:f3:33:0f:4e:0e:74:cd:8b:51:51:ea:b8:4d:47:fe:b4:46:
ba:80:6b:f8:25:70:34:5e:0e:fc:97:5d:1c:ba:f2:f4:d6:34:
6e:17:10:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:30:07 2025 by rpki-client