Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/xHMY4LGKV3eFjnr4Ku0fi06BmEE.roa
File: xHMY4LGKV3eFjnr4Ku0fi06BmEE.roa (raw, json)
Hash identifier: 2aWzDoIsTrhFwjJGCuzVcvIW30dbQfYVJYw8zPrN7O8=
Subject key identifier: C4:73:18:E0:B1:8A:57:77:85:8E:7A:F8:2A:ED:1F:8B:4E:81:98:41
Certificate issuer: /CN=21e421a6d96e99d63f7cfb499ca7117c82304eaa
Certificate serial: 0A8F76A2
Authority key identifier: 21:E4:21:A6:D9:6E:99:D6:3F:7C:FB:49:9C:A7:11:7C:82:30:4E:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IeQhptlumdY_fPtJnKcRfIIwTqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/xHMY4LGKV3eFjnr4Ku0fi06BmEE.roa
Signing time: Sat 01 Jan 2022 05:00:56 +0000
ROA not before: Sat 01 Jan 2022 05:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210178
IP address blocks: 194.61.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177174178 (0xa8f76a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21e421a6d96e99d63f7cfb499ca7117c82304eaa
Validity
Not Before: Jan 1 05:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c47318e0b18a5777858e7af82aed1f8b4e819841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7c:1f:35:9a:20:a0:71:dc:87:5c:7d:20:16:
83:61:f7:eb:a5:f7:81:90:aa:9a:29:dd:42:02:cb:
c8:07:1c:e1:b3:7c:01:44:71:fc:8c:a2:96:5c:ff:
a5:90:78:7e:32:dc:5b:ab:57:b0:a3:b8:0a:d3:3a:
68:35:ce:e4:65:8a:26:53:59:5e:86:e7:2f:0e:cc:
9e:c8:c0:b0:50:f3:12:bc:23:36:b2:97:c8:cc:89:
df:53:2a:6b:1c:f1:6b:56:ba:eb:ee:f1:d0:9a:08:
4a:d4:53:5e:37:57:57:97:57:4e:d8:c4:ae:cf:c3:
5b:11:66:1b:ba:fa:53:d5:37:f6:52:9f:6b:1a:df:
f4:15:a1:c7:a8:b9:c1:84:12:64:36:07:16:9d:2f:
1b:91:c5:11:78:23:6f:79:36:c2:0c:d0:9e:1d:18:
3f:b5:10:88:0c:e0:2d:55:4b:a1:b9:6c:f5:83:b8:
89:5a:64:1b:2b:24:76:a3:60:19:ec:fa:14:7d:e8:
8b:8d:ac:59:97:c9:49:db:56:41:a8:4b:5d:bd:d3:
d7:26:3b:35:98:2b:3b:11:50:ea:d7:6a:15:37:f7:
08:94:29:83:4f:46:e8:16:c7:02:a8:d7:8a:75:a4:
9b:3f:6e:fb:fd:85:74:41:69:a5:4f:d0:2c:8d:e0:
0a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:73:18:E0:B1:8A:57:77:85:8E:7A:F8:2A:ED:1F:8B:4E:81:98:41
X509v3 Authority Key Identifier:
keyid:21:E4:21:A6:D9:6E:99:D6:3F:7C:FB:49:9C:A7:11:7C:82:30:4E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IeQhptlumdY_fPtJnKcRfIIwTqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/xHMY4LGKV3eFjnr4Ku0fi06BmEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/IeQhptlumdY_fPtJnKcRfIIwTqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.140.0/22
Signature Algorithm: sha256WithRSAEncryption
60:67:e4:2a:a7:ac:d1:03:d3:7c:a4:fc:5e:93:3d:b8:e0:b3:
ea:c8:e8:2a:ad:2e:19:2f:59:6f:25:46:df:e1:f5:3a:45:0e:
36:8e:b8:bc:f1:bd:f5:92:04:56:5f:43:ca:22:49:6a:bd:45:
05:58:d6:74:27:20:f5:e3:09:96:05:d6:d8:88:81:02:81:7d:
cb:5e:6d:3f:f8:cd:57:cd:e1:35:db:b5:3a:31:fe:94:c4:47:
03:a8:01:54:fd:ff:f3:cf:29:77:7f:14:f1:bb:a6:c4:b2:e1:
9e:e5:c6:89:90:08:d9:05:5c:be:b8:3a:47:61:f5:43:fa:35:
eb:af:66:96:92:c2:f8:64:df:2e:5b:4e:4f:04:55:06:00:99:
57:66:30:89:35:8c:2d:34:63:c2:59:97:5f:95:f1:2f:29:1d:
43:60:da:4a:59:80:ca:c0:bf:e5:03:23:dd:a6:e7:e0:ff:b2:
de:5d:8c:65:8e:7d:81:52:d8:df:4e:67:8b:d7:53:6a:90:79:
3d:f3:4d:49:29:47:59:76:c4:d9:87:af:db:23:56:cd:16:ce:
d6:7f:c7:18:79:78:f4:8a:40:58:be:57:b7:f2:4c:11:17:06:
1b:3c:71:77:f9:6e:02:ba:e6:83:4c:bb:42:ac:cb:23:25:9b:
f0:39:24:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:48:31 2025 by rpki-client