Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/mIpI95EYA_7uHoDzafX0kibO8Xw.roa
File: mIpI95EYA_7uHoDzafX0kibO8Xw.roa (raw, json)
Hash identifier: BQUBIceem180oHFjQmg5KWd0lZZplpfYrWvkM8yGraA=
Subject key identifier: 98:8A:48:F7:91:18:03:FE:EE:1E:80:F3:69:F5:F4:92:26:CE:F1:7C
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0CA43083B0C5730B1F48EC2480871
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/mIpI95EYA_7uHoDzafX0kibO8Xw.roa
Signing time: Mon 02 Jan 2023 05:25:06 +0000
ROA not before: Mon 02 Jan 2023 05:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208227
IP address blocks: 82.177.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:ca:43:08:3b:0c:57:30:b1:f4:8e:c2:48:08:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=988a48f7911803feee1e80f369f5f49226cef17c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:7f:26:98:3b:d2:2d:d2:c7:e1:25:2e:46:
bc:da:8b:8d:3b:b2:b5:84:e1:80:7e:5a:04:e9:07:
f8:fe:2d:3a:03:98:46:b7:a6:91:e3:3d:71:cb:95:
d1:41:bb:88:2b:bd:2b:d5:75:ee:13:18:6f:99:c0:
01:f4:3b:9b:8c:1e:c8:59:e5:bc:27:18:94:1b:82:
ea:d9:1a:31:d8:7d:9d:63:57:05:cf:fd:d2:11:b9:
da:ac:2c:10:ef:33:31:8a:f0:5b:d5:c3:e6:bf:54:
22:ee:ea:0f:3a:80:69:4c:33:c5:52:9c:fd:3e:25:
53:1f:80:b8:db:0c:26:25:41:cd:f3:63:f2:54:c3:
cf:ff:57:3c:cd:e3:5f:93:12:22:ca:72:64:5f:d8:
40:ce:64:a9:48:a9:3f:26:67:0d:a8:41:a7:84:d9:
52:46:35:4d:b8:a3:ef:be:bd:f4:1b:17:d4:40:ab:
74:ed:18:06:82:8d:76:89:7c:32:9c:9e:a4:1d:eb:
4b:97:98:ee:ba:01:08:fd:59:c9:ff:79:1d:b6:75:
fc:26:0b:05:62:b7:1a:7c:08:9b:4d:e6:27:c8:16:
b3:00:74:bf:eb:bf:ce:47:0a:1c:6f:59:f9:08:ca:
5d:7c:65:89:e4:51:97:b7:b6:c8:e7:a0:92:6a:2a:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8A:48:F7:91:18:03:FE:EE:1E:80:F3:69:F5:F4:92:26:CE:F1:7C
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/mIpI95EYA_7uHoDzafX0kibO8Xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.44.0/23
Signature Algorithm: sha256WithRSAEncryption
04:48:5f:1a:49:24:b2:d5:ad:88:b5:6c:e0:f8:87:57:6f:fb:
c6:e0:09:60:c3:0e:75:40:99:a7:cf:a2:6d:54:e8:00:c6:21:
f6:5c:4a:72:41:fe:a5:d9:21:5a:86:93:24:a8:df:2c:65:79:
24:5c:76:97:0d:b5:20:1f:28:14:0a:23:c2:09:54:61:c6:bd:
8d:96:ce:a5:54:97:4e:55:f0:17:87:66:d7:20:ea:0c:a0:79:
0a:e4:33:4a:89:67:38:56:a3:b3:59:df:36:8b:18:96:f1:a7:
ff:f2:99:7a:97:cf:4a:a9:63:7b:db:c0:6c:2d:17:08:21:a2:
4c:84:39:7c:8b:1f:f5:09:a7:52:ae:a3:88:e9:df:ef:8a:e9:
19:4f:d9:2f:25:2e:1a:25:13:c6:1d:95:e6:7b:5e:8f:69:65:
c7:55:15:47:0b:f3:3c:3e:fe:db:be:23:d2:1a:46:00:31:b5:
a7:5e:7b:88:93:17:ed:fe:57:d6:51:ff:74:0e:74:11:84:11:
e8:82:43:05:55:55:e2:de:cd:3b:89:59:e2:73:33:b9:89:eb:
c4:ed:77:5c:28:c6:21:da:aa:68:18:76:1d:af:a2:eb:9b:df:
9a:db:5b:ff:67:25:9b:db:62:d3:66:a0:0a:c0:45:13:6e:de:
0b:0c:13:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:38 2025 by rpki-client