Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/fBPkILuUxh79JBX-I50ou9TXDK8.roa
File: fBPkILuUxh79JBX-I50ou9TXDK8.roa (raw, json)
Hash identifier: R9REQvAAqW7yswrKU0LMwgicc7q+W3D2FpZZzgQPHRw=
Subject key identifier: 7C:13:E4:20:BB:94:C6:1E:FD:24:15:FE:23:9D:28:BB:D4:D7:0C:AF
Certificate issuer: /CN=8a7b09ab545851c789d2caa8942ba39cea13e93e
Certificate serial: 0C2D3092
Authority key identifier: 8A:7B:09:AB:54:58:51:C7:89:D2:CA:A8:94:2B:A3:9C:EA:13:E9:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/insJq1RYUceJ0sqolCujnOoT6T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/fBPkILuUxh79JBX-I50ou9TXDK8.roa
Signing time: Sat 01 Jan 2022 03:55:45 +0000
ROA not before: Sat 01 Jan 2022 03:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43193
IP address blocks: 185.176.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204288146 (0xc2d3092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a7b09ab545851c789d2caa8942ba39cea13e93e
Validity
Not Before: Jan 1 03:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c13e420bb94c61efd2415fe239d28bbd4d70caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:99:92:8c:1b:f0:9a:f8:fa:bd:1f:79:9a:
2c:d0:c3:d5:5c:cd:3b:86:42:3b:81:b2:7a:50:9a:
26:bb:7c:f1:2b:7b:3b:8c:94:e6:8d:6a:56:83:f2:
fc:5a:2d:cb:56:7f:40:71:9c:03:02:2c:97:c4:09:
4e:a1:23:66:1a:d6:6b:c1:dd:42:ed:a0:38:ae:3e:
ea:39:b1:0a:f3:1b:e0:c2:24:08:c7:32:1d:62:69:
c3:37:bc:c5:8e:49:60:65:b0:79:80:c8:fc:9c:0f:
18:d2:fd:85:47:75:58:61:06:ad:74:e2:5c:4a:e1:
ae:4e:4e:af:93:37:e0:ff:a2:01:08:e8:7d:d7:ca:
17:6e:59:52:6c:23:a8:7a:84:68:4f:9e:5d:b7:40:
85:68:b4:41:5d:d1:4a:95:de:7e:14:c0:12:d6:dd:
c9:89:a2:83:64:3e:76:79:09:e7:d9:a9:83:39:86:
2f:54:4d:c6:7f:5a:25:9b:ab:c7:53:17:97:b2:48:
75:8e:38:6f:3c:92:ab:84:ba:56:b4:f8:c3:39:ae:
fc:b0:df:ee:06:49:fd:7e:af:1b:bb:8e:27:30:57:
d5:c3:53:30:77:f7:20:31:eb:e6:29:b8:14:e6:26:
ab:0b:75:a5:ca:4b:a8:28:ad:3d:10:e7:ab:99:a3:
a6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:13:E4:20:BB:94:C6:1E:FD:24:15:FE:23:9D:28:BB:D4:D7:0C:AF
X509v3 Authority Key Identifier:
keyid:8A:7B:09:AB:54:58:51:C7:89:D2:CA:A8:94:2B:A3:9C:EA:13:E9:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/insJq1RYUceJ0sqolCujnOoT6T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/fBPkILuUxh79JBX-I50ou9TXDK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/insJq1RYUceJ0sqolCujnOoT6T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.164.0/22
Signature Algorithm: sha256WithRSAEncryption
70:9b:d7:75:83:24:ef:fd:e8:34:cd:32:d3:7c:a7:6c:f8:40:
99:3f:7b:a8:2e:2f:93:6d:3c:6f:fa:ec:f5:be:6c:3a:57:03:
3a:15:97:71:79:96:b6:24:7c:ac:da:6c:09:b9:46:2f:8d:7f:
06:de:cf:67:17:f9:6e:cf:41:21:d9:56:2f:9f:d8:63:13:31:
dc:67:71:7b:e6:56:2f:06:cb:26:7a:a7:24:5e:70:c8:a7:11:
a3:ae:b9:08:fc:f6:09:51:2f:52:e9:19:38:3f:27:d5:72:95:
ce:ac:72:bc:78:6d:20:6c:30:e4:2b:13:2e:64:15:f8:18:37:
52:05:bd:1e:24:82:a0:7c:32:09:b7:cf:32:0e:b9:ec:7d:7b:
90:68:0f:f5:a5:14:f9:5e:d8:cb:89:c9:b6:d2:08:c9:90:cb:
f9:5c:1a:2e:b4:9b:37:1b:89:b6:e4:7e:6f:ae:fa:4b:20:0d:
4d:dc:41:49:e0:b3:59:0a:db:cd:55:b6:05:cc:9c:7e:1d:13:
1c:c8:75:a9:ea:a1:28:f4:12:b5:5b:37:1a:d8:27:ab:a3:cf:
0b:8e:7c:7c:28:60:91:b3:aa:13:21:e7:96:2d:9d:a2:29:a6:
15:51:f8:c0:c0:80:9f:08:73:7c:2d:d3:93:e3:66:5c:0a:5b:
03:9e:52:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:40 2025 by rpki-client