Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/8Jw9k6lHSjJdIiYMCaaraTty_l8.roa
File: 8Jw9k6lHSjJdIiYMCaaraTty_l8.roa (raw, json)
Hash identifier: +8tPgqLuG0a9kH43fjNLpwVRxR9V5D5d3h5XOPSYv4Q=
Subject key identifier: F0:9C:3D:93:A9:47:4A:32:5D:22:26:0C:09:A6:AB:69:3B:72:FE:5F
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018321697C767B49DAE526217ECA89008605
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/8Jw9k6lHSjJdIiYMCaaraTty_l8.roa
Signing time: Fri 09 Sep 2022 08:41:44 +0000
ROA not before: Fri 09 Sep 2022 08:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201917
IP address blocks: 194.20.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:69:7c:76:7b:49:da:e5:26:21:7e:ca:89:00:86:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Sep 9 08:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f09c3d93a9474a325d22260c09a6ab693b72fe5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1d:19:c3:71:4b:84:fe:c5:d8:c4:cf:f4:39:
41:8e:7a:4d:c6:fd:a8:85:5a:e3:47:46:ab:07:7e:
43:a7:09:a3:4f:c7:1a:80:85:e1:57:58:98:4e:26:
f5:8b:7f:fb:ca:e1:0c:eb:57:44:b7:71:10:7a:c7:
f7:f9:49:90:9b:f7:97:ad:e2:d1:95:c3:e7:ef:23:
93:2e:29:f9:f2:08:c5:e4:62:c9:ca:c1:3d:65:b3:
85:cf:3b:cb:d6:b1:7f:bc:16:93:c3:ea:56:bf:fb:
53:79:f0:07:1c:c8:89:4f:89:07:9b:2e:93:af:f1:
8e:0f:1e:35:95:f6:69:5e:fd:3f:ab:53:bc:12:b0:
6a:44:11:fc:56:78:14:9c:02:b3:d9:0e:e5:f9:6d:
ca:ad:40:e9:ff:8f:d0:1a:a9:73:21:4b:0e:bf:cb:
6a:ac:35:ac:fb:bd:31:fe:cd:6c:25:c1:4d:c1:2b:
93:b7:9e:bc:e5:8e:ef:6b:09:f2:43:59:96:48:bc:
7a:1d:e0:04:77:88:92:5a:3a:4d:73:a3:a2:08:13:
72:eb:7d:3d:c6:ad:d6:85:52:41:eb:0a:a8:50:9a:
26:7c:13:6a:f3:14:63:af:b6:18:3c:f9:d1:7c:ef:
ef:78:07:4d:7f:77:93:72:36:76:55:28:5b:d0:88:
bb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9C:3D:93:A9:47:4A:32:5D:22:26:0C:09:A6:AB:69:3B:72:FE:5F
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/8Jw9k6lHSjJdIiYMCaaraTty_l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.64.0/20
Signature Algorithm: sha256WithRSAEncryption
77:3c:00:f1:b1:a1:80:b3:68:33:2c:c9:04:ad:fc:48:6c:59:
6f:52:d2:52:8a:a6:57:68:2c:da:f1:1e:35:57:72:03:e9:89:
40:9c:d6:2e:28:4c:94:b4:23:57:e6:19:79:ed:90:40:75:d2:
52:32:68:5d:31:c8:cc:b5:fd:53:b9:66:92:8a:45:b2:87:96:
1a:24:08:f6:fc:33:5e:ae:b0:bc:a9:3e:e8:c2:ee:93:bf:0c:
6e:d4:58:b7:a3:1d:34:5b:63:b2:8a:86:ee:66:15:d8:11:62:
7c:a0:1d:db:e3:a9:36:40:d8:94:22:7e:07:e2:c2:a1:56:08:
1f:e8:07:cb:d4:d6:c7:bc:37:fe:b7:3b:85:bf:83:34:76:af:
b6:09:2c:e1:15:3e:47:d0:77:df:d7:4f:03:95:af:b9:7a:aa:
d7:9a:55:c0:00:bb:d2:be:13:d7:f8:ae:7f:cd:b3:0a:16:51:
06:83:91:6e:e2:52:2d:7b:97:12:bc:3f:2e:87:da:36:82:6b:
64:05:70:4f:f8:b4:d4:6d:28:f7:96:73:de:d1:97:ce:97:2c:
9d:0f:16:7c:b6:bd:32:53:a1:5e:f0:a9:60:32:d7:cb:e3:36:
61:4f:78:da:4b:bb:0b:38:9a:57:54:7a:cf:23:8a:34:a3:18:
5e:05:1d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:23:52 2025 by rpki-client