Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/3c9878-fc2f-40c6-b482-4d7f4cba7867/1/6CxA-7Gl2UzoG96Abb1I_mUEN3g.roa
File: 6CxA-7Gl2UzoG96Abb1I_mUEN3g.roa (raw, json)
Hash identifier: y8mW41L0rdWEnLTFVQURsXG9KVWYrP70EWpBUzXj7HI=
Subject key identifier: E8:2C:40:FB:B1:A5:D9:4C:E8:1B:DE:80:6D:BD:48:FE:65:04:37:78
Certificate issuer: /CN=0d613fe9844a63439eae8a1aa0c3ca8c60b45d45
Certificate serial: 0A2D11C7
Authority key identifier: 0D:61:3F:E9:84:4A:63:43:9E:AE:8A:1A:A0:C3:CA:8C:60:B4:5D:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWE_6YRKY0OerooaoMPKjGC0XUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/3c9878-fc2f-40c6-b482-4d7f4cba7867/1/6CxA-7Gl2UzoG96Abb1I_mUEN3g.roa
Signing time: Sat 01 Jan 2022 06:01:20 +0000
ROA not before: Sat 01 Jan 2022 06:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210172
IP address blocks: 194.53.178.0/24 maxlen: 24
194.53.179.0/24 maxlen: 24
194.53.176.0/22 maxlen: 22
194.53.176.0/24 maxlen: 24
194.53.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170725831 (0xa2d11c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d613fe9844a63439eae8a1aa0c3ca8c60b45d45
Validity
Not Before: Jan 1 06:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e82c40fbb1a5d94ce81bde806dbd48fe65043778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:10:fa:b2:d5:ca:d1:f3:49:f2:c9:6d:55:1b:
12:ad:ad:01:fa:f9:5b:d7:38:71:89:b4:a7:36:8a:
ed:9b:70:80:4f:c6:bd:d8:68:0e:0a:9f:2d:bc:f0:
d7:c4:ca:b0:f0:10:90:f6:be:b2:8b:d4:c9:74:50:
79:bf:41:6a:85:79:da:61:1a:41:13:00:db:86:8f:
c6:c0:28:d1:02:2f:c7:11:53:2f:13:1c:83:3e:91:
2e:6d:a0:47:cd:9b:ee:2f:2d:5b:04:ce:cd:0e:d6:
c2:ba:7d:fe:c1:af:b8:f9:f5:d7:1d:ef:68:61:90:
25:53:cd:bd:5a:01:97:2d:73:e7:0f:89:a7:cd:5c:
b4:63:d4:ac:99:a3:80:e7:be:51:ba:86:ba:ff:96:
07:ce:e0:19:01:b0:7f:57:5b:40:dc:db:c2:f8:cd:
1a:1e:4b:69:11:8e:7c:3d:42:4d:43:e5:61:94:e3:
24:f1:92:c5:6c:02:b7:d9:fe:00:7d:e8:ff:bf:43:
68:94:f2:3f:98:fc:45:3e:fb:94:70:4c:fc:70:dd:
1e:70:a5:4a:fb:b1:0a:a1:7b:42:c7:95:c4:1a:3f:
b5:14:35:ca:c9:b2:eb:7b:0a:6a:59:f9:a1:5f:b3:
82:fc:05:ec:1f:f2:b0:ac:37:3f:1f:dd:ef:2c:f6:
de:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2C:40:FB:B1:A5:D9:4C:E8:1B:DE:80:6D:BD:48:FE:65:04:37:78
X509v3 Authority Key Identifier:
keyid:0D:61:3F:E9:84:4A:63:43:9E:AE:8A:1A:A0:C3:CA:8C:60:B4:5D:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWE_6YRKY0OerooaoMPKjGC0XUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/3c9878-fc2f-40c6-b482-4d7f4cba7867/1/6CxA-7Gl2UzoG96Abb1I_mUEN3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/3c9878-fc2f-40c6-b482-4d7f4cba7867/1/DWE_6YRKY0OerooaoMPKjGC0XUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:fe:64:6d:6e:22:df:dd:04:4f:1c:a7:f9:0c:12:51:4e:45:
a0:d7:73:2f:7d:99:78:03:1e:6d:5b:88:de:3c:37:e0:f3:50:
de:be:6f:51:ca:cd:25:9a:08:1f:5d:c9:d3:10:f6:3a:25:13:
3d:e3:1e:8e:0b:46:b0:8b:63:fc:83:22:aa:7e:e3:63:5a:60:
7e:6a:3a:3e:08:68:88:f2:f8:7e:5e:97:df:c5:b8:a1:bf:f9:
17:a8:ff:3d:43:1c:d5:df:84:c0:cb:aa:4b:10:2a:d3:aa:34:
b5:79:c3:0d:47:3e:fb:de:b5:c0:0e:51:35:ed:e5:f1:53:48:
98:53:5e:b0:49:cc:96:b3:ce:7e:19:77:4a:8c:db:05:58:57:
87:84:d3:f6:fb:b3:38:c5:f8:0e:bf:db:28:f9:19:c5:13:2b:
29:77:99:53:bb:7d:95:35:5d:f5:ba:78:a5:8b:ca:45:68:98:
6b:69:93:dd:c8:23:bd:24:12:b1:21:84:ab:35:4f:76:58:53:
f7:38:f3:f7:d5:3b:43:ad:80:4e:2b:56:26:65:92:fc:89:29:
ce:11:ba:1e:b5:45:84:49:2d:be:bd:43:a8:9e:69:47:9e:2e:
9f:9a:12:5d:6c:49:8d:f9:ff:56:8c:0c:58:09:13:7d:d4:2b:
2d:53:ba:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:13 2025 by rpki-client