Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/e051ff-ce25-4d6c-83fd-1abb8e27b4d1/1/oa7TiZYPmSgSXkvfyfd2XrnuEzM.roa
File: oa7TiZYPmSgSXkvfyfd2XrnuEzM.roa (raw, json)
Hash identifier: dOW5mvPvr3m38vS2z1fc3fJVKVvtPhWJZzV0altWHQs=
Subject key identifier: A1:AE:D3:89:96:0F:99:28:12:5E:4B:DF:C9:F7:76:5E:B9:EE:13:33
Certificate issuer: /CN=a62fb9fd31c2c60abda14e0b3c92a89866829d8e
Certificate serial: 02191A
Authority key identifier: A6:2F:B9:FD:31:C2:C6:0A:BD:A1:4E:0B:3C:92:A8:98:66:82:9D:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pi-5_THCxgq9oU4LPJKomGaCnY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/e051ff-ce25-4d6c-83fd-1abb8e27b4d1/1/oa7TiZYPmSgSXkvfyfd2XrnuEzM.roa
Signing time: Thu 07 Apr 2022 11:32:13 +0000
ROA not before: Thu 07 Apr 2022 11:32:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42778
IP address blocks: 194.110.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137498 (0x2191a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a62fb9fd31c2c60abda14e0b3c92a89866829d8e
Validity
Not Before: Apr 7 11:32:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1aed389960f9928125e4bdfc9f7765eb9ee1333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:88:7e:74:4d:4d:7c:57:0f:2a:a7:ab:91:9c:
61:da:59:8b:aa:be:b2:64:2a:b7:a9:2f:c1:b0:32:
50:a3:12:8e:eb:e9:3e:1d:b8:78:f4:e8:18:f1:0e:
6d:20:2d:56:38:c3:4e:c9:0e:e9:e1:82:46:f2:b8:
a2:3d:0b:db:93:ee:e8:5d:7d:5f:c4:e1:9a:27:ac:
3e:9f:1f:e0:08:64:8b:2d:02:eb:8f:f7:4e:7e:26:
42:e4:d9:e1:54:f3:8f:eb:ac:9d:9a:c2:da:d9:4f:
f2:92:f3:01:e7:b7:49:82:e1:eb:38:63:1f:12:44:
bf:67:30:aa:54:e3:ae:00:ff:c1:a4:51:00:8f:ff:
bd:87:cf:a9:12:e5:c9:d0:ca:a9:9c:a6:04:57:04:
81:fb:8d:bf:67:9f:93:be:75:a6:57:26:30:c7:b8:
f1:d1:f2:5c:c5:6f:9e:ac:76:58:b2:79:0e:4c:c3:
0d:30:24:06:6f:46:1d:cb:be:e3:2e:6c:d5:54:32:
3d:68:8e:6a:66:f1:37:55:f8:05:ad:5f:37:48:b4:
25:3f:b6:4b:2c:e7:58:af:79:8b:28:3b:ae:87:b3:
37:4e:1b:19:68:a6:16:32:b0:89:4d:a1:ec:2c:79:
b0:26:e2:64:35:7c:9c:77:46:c1:40:f0:53:f6:36:
44:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AE:D3:89:96:0F:99:28:12:5E:4B:DF:C9:F7:76:5E:B9:EE:13:33
X509v3 Authority Key Identifier:
keyid:A6:2F:B9:FD:31:C2:C6:0A:BD:A1:4E:0B:3C:92:A8:98:66:82:9D:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pi-5_THCxgq9oU4LPJKomGaCnY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/e051ff-ce25-4d6c-83fd-1abb8e27b4d1/1/oa7TiZYPmSgSXkvfyfd2XrnuEzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/e051ff-ce25-4d6c-83fd-1abb8e27b4d1/1/pi-5_THCxgq9oU4LPJKomGaCnY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.240.0/24
Signature Algorithm: sha256WithRSAEncryption
40:9e:41:ab:2e:a1:aa:c2:70:db:34:12:06:c2:15:35:9e:9d:
4e:a7:d2:64:3b:0d:27:88:ae:e9:10:e5:10:92:86:f4:bc:e5:
53:2c:26:5c:29:47:7b:af:5c:a4:c1:df:5b:54:47:aa:68:0b:
49:36:57:b9:31:97:89:81:73:69:4a:ed:2c:ba:b5:0a:4c:dd:
44:d1:07:4e:21:08:11:74:26:12:de:c9:b3:c9:db:82:c8:0e:
65:5c:0b:f3:16:2f:50:43:66:ff:4a:cf:00:81:ec:fe:5e:87:
a7:f6:00:95:46:f2:04:db:03:27:36:d0:43:99:b6:dd:f7:2a:
73:56:f3:9c:c2:a7:ae:40:45:f8:df:cc:46:40:71:2a:f9:1c:
e3:d9:34:ef:2a:6a:04:52:0a:b5:13:2e:7a:3f:a9:0b:ac:3e:
42:fb:33:59:6a:e0:c7:fd:0c:74:cf:cc:4b:57:fa:c3:bb:ab:
e6:86:39:f0:0c:e0:b6:fc:ae:55:ff:31:96:2f:f9:1b:8e:7f:
ab:3f:b8:15:85:a0:23:77:7b:6e:ba:13:99:1f:7b:f0:0f:56:
09:64:b0:d1:67:06:9d:e2:95:38:0a:22:f9:cf:3b:96:33:1d:
f4:08:c6:7d:a9:69:51:d6:a3:81:21:11:1b:fd:08:63:f3:25:
35:1f:73:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 03:22:34 2025 by rpki-client