Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/oT8HE2uot-yimIYQbs0mO-Hk_zs.roa
File: oT8HE2uot-yimIYQbs0mO-Hk_zs.roa (raw, json)
Hash identifier: yO+9LWnfffdOmpePI1DtH89W+qzEFia9OjI34q0gukk=
Subject key identifier: A1:3F:07:13:6B:A8:B7:EC:A2:98:86:10:6E:CD:26:3B:E1:E4:FF:3B
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35AAD0FF
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/oT8HE2uot-yimIYQbs0mO-Hk_zs.roa
Signing time: Sat 01 Jan 2022 08:55:01 +0000
ROA not before: Sat 01 Jan 2022 08:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212423
IP address blocks: 188.93.247.128/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900387071 (0x35aad0ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a13f07136ba8b7eca29886106ecd263be1e4ff3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:48:05:66:bd:9e:bf:25:57:17:81:f0:9f:c1:
ae:12:1d:96:d0:30:27:d2:55:2a:a9:d4:87:93:52:
3b:fa:cd:37:e8:e1:12:8f:a2:d2:40:04:ad:6e:7f:
fc:d3:fa:7c:59:b0:31:53:f2:2b:b0:05:91:a7:14:
8b:4c:a6:bc:1e:03:27:79:4d:84:58:de:4c:1c:68:
c2:45:66:66:b8:3f:29:18:d8:1c:e5:50:a1:70:c3:
1d:01:a5:e4:6e:63:42:4d:43:01:95:03:55:4d:b9:
0c:19:0e:6f:01:af:a8:51:77:02:ad:d9:9d:06:60:
39:b5:36:5d:72:ea:03:ae:97:9b:25:2a:c6:30:29:
3b:6f:33:82:84:d8:63:62:d9:71:06:fe:06:d8:99:
17:68:7a:70:b9:8f:3e:17:a4:c4:d8:00:d9:ed:69:
00:a5:b6:5e:a8:19:7e:92:0e:a2:a8:51:87:0c:6e:
bc:76:5a:35:25:f4:98:c7:d3:cb:08:07:28:37:81:
4d:af:1b:cd:84:41:72:a9:4c:c7:10:35:21:c9:72:
06:7d:da:1a:bc:10:35:90:b8:c7:a2:11:0a:c4:b4:
07:39:c9:77:58:10:81:b8:fe:a5:c8:0d:00:3a:9c:
3e:bf:3a:3f:66:62:d3:8d:1a:a9:bb:cc:1c:d0:66:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3F:07:13:6B:A8:B7:EC:A2:98:86:10:6E:CD:26:3B:E1:E4:FF:3B
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/oT8HE2uot-yimIYQbs0mO-Hk_zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.247.128/28
Signature Algorithm: sha256WithRSAEncryption
79:5c:09:f4:79:ec:5e:b7:62:73:e2:78:b6:44:26:3a:98:20:
b0:85:f2:52:aa:84:ab:10:80:5a:5f:51:83:d4:ca:15:be:cf:
7d:86:5c:df:83:47:49:4e:04:28:4e:72:cb:6e:06:af:7b:a6:
30:bc:70:48:30:ff:8c:a1:a9:0f:0a:49:5a:f6:f7:03:c3:54:
a3:31:2c:3d:a4:74:9c:b6:0a:91:0c:9e:e3:13:23:8b:8d:c6:
15:7d:70:a2:9f:b1:e2:ec:94:e1:b1:4c:9b:a3:dc:b8:05:98:
9e:fc:b6:14:23:d2:45:15:d9:ce:af:85:cf:7b:2c:80:39:c9:
3f:11:3a:bf:b5:f5:a0:fa:01:94:39:8e:08:3d:79:7b:4a:7c:
cd:17:e4:d4:af:7f:aa:2d:b2:03:d2:80:eb:b3:25:a6:0e:4d:
4a:41:ba:29:c7:f3:6d:85:9b:b2:42:7c:8a:f3:b8:70:2a:b7:
4f:13:5f:d8:a9:e7:36:37:1d:45:cb:c9:a2:69:ba:b3:af:cf:
dc:e3:91:ae:8b:55:fc:9a:6e:59:eb:ac:94:fe:0e:0c:74:98:
62:b0:fd:10:c7:4b:af:55:e9:05:83:f1:46:c9:aa:6a:4b:1b:
e5:7e:a7:42:42:04:37:64:18:a0:ef:52:68:47:98:29:7e:54:
8b:51:a6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:34 2025 by rpki-client