Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/brQJy5DXKApsYl6y53y9BdcgV3E.roa
File: brQJy5DXKApsYl6y53y9BdcgV3E.roa (raw, json)
Hash identifier: TN6Qm9YBVgx3B1/rGL0crTB83Vv6EptpbYo511llAUw=
Subject key identifier: 6E:B4:09:CB:90:D7:28:0A:6C:62:5E:B2:E7:7C:BD:05:D7:20:57:71
Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Certificate serial: 54C6
Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/brQJy5DXKApsYl6y53y9BdcgV3E.roa
Signing time: Thu 28 Apr 2022 12:29:15 +0000
ROA not before: Thu 28 Apr 2022 12:29:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50110
IP address blocks: 193.104.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21702 (0x54c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Validity
Not Before: Apr 28 12:29:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eb409cb90d7280a6c625eb2e77cbd05d7205771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a6:b3:81:e9:15:ed:c6:9f:dc:33:90:ba:ea:
7a:51:b0:d1:27:f5:20:4e:34:ef:e0:5e:c7:0f:19:
d5:fb:9c:0b:45:9f:91:d7:bb:11:0f:ee:f8:9e:b1:
85:49:4e:71:6f:20:1d:fa:b3:6b:8f:6a:3f:ef:d2:
b4:6d:31:92:26:7a:04:c5:35:ba:07:12:1e:79:4f:
6d:cb:db:8c:0e:a3:e9:58:e1:21:92:05:9a:d8:ed:
43:a7:cf:43:be:ca:b4:05:51:a5:36:64:dc:39:52:
55:3e:78:3c:8e:a0:02:64:9b:2c:c7:a3:3f:c2:f7:
3e:de:64:bf:1c:6f:eb:3a:5f:25:15:a9:0e:fb:26:
79:7a:41:b1:3a:1c:c9:60:ef:14:24:1c:c6:e5:1c:
92:91:77:6d:71:11:2c:22:56:40:a5:74:50:41:c5:
b0:a4:61:82:b4:60:cf:c6:73:2a:84:cf:d9:50:e4:
b6:d9:5d:ad:6b:0d:e2:b7:d1:48:db:9e:a6:94:39:
d2:8f:31:ff:24:97:30:0e:bd:d2:b8:37:71:3a:8d:
95:3d:cf:65:af:e6:3f:42:35:a3:d3:9e:ae:6b:ce:
32:41:41:a7:3c:78:74:89:74:88:f4:bb:b1:63:66:
59:1b:84:f7:54:d1:df:ef:80:8b:37:a2:37:78:50:
33:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B4:09:CB:90:D7:28:0A:6C:62:5E:B2:E7:7C:BD:05:D7:20:57:71
X509v3 Authority Key Identifier:
keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/brQJy5DXKApsYl6y53y9BdcgV3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.132.0/24
Signature Algorithm: sha256WithRSAEncryption
05:fa:68:c7:9c:84:83:cc:27:09:18:cc:5d:ba:6e:98:99:e5:
d4:c0:5e:80:61:f7:a8:b0:ab:bf:1c:32:28:65:1a:88:0e:4b:
58:11:bf:ae:c3:1e:49:23:61:12:d0:77:58:8c:8a:77:36:89:
3e:86:ff:6f:a3:65:99:0d:91:97:b9:5f:db:ce:14:f1:a9:25:
cf:8b:9e:92:61:de:6a:b9:04:0f:8f:f2:6d:a8:b1:c7:1d:1d:
a6:e8:12:f3:93:cd:33:8f:f3:f1:26:47:bc:e2:d7:44:bf:4a:
b1:28:35:11:2a:81:3c:93:af:31:8c:09:90:21:0d:05:c6:3d:
c2:23:c5:27:04:ce:d1:ec:56:8f:41:67:df:24:4f:ff:32:92:
48:55:0d:42:2d:4a:2b:5a:7d:50:11:59:e4:34:87:9b:ee:c6:
86:66:57:cb:47:66:92:3a:de:d9:cd:63:65:0b:04:44:5e:0a:
1a:2f:02:b2:1f:41:5e:79:c8:e6:d5:cb:87:b6:4c:37:0d:77:
64:69:85:15:99:74:d1:14:96:3a:93:1d:1d:1b:6b:6f:ab:1f:
a9:fd:6f:53:9c:c6:65:7c:68:c8:31:4a:7c:bf:f8:11:c4:8e:
16:45:15:2f:9e:f1:64:a4:22:f6:b5:99:c4:38:6b:e7:8c:e4:
79:58:dc:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:39:25 2025 by rpki-client