Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/2d8053-3812-4497-9777-9ce798d01f8d/1/WRe5qqPrSXq5O2XSrUMIntHbyrg.roa
File: WRe5qqPrSXq5O2XSrUMIntHbyrg.roa (raw, json)
Hash identifier: 5Yf+wSrYrlecGGeKqee9VBScaY8A9SYZlWom8O/bTeg=
Subject key identifier: 59:17:B9:AA:A3:EB:49:7A:B9:3B:65:D2:AD:43:08:9E:D1:DB:CA:B8
Certificate issuer: /CN=ac987fa1f363ed8d8178282c6748081dcc342803
Certificate serial: 01856D9D1002CF0781DD101D05FEC8B7213D
Authority key identifier: AC:98:7F:A1:F3:63:ED:8D:81:78:28:2C:67:48:08:1D:CC:34:28:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJh_ofNj7Y2BeCgsZ0gIHcw0KAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/2d8053-3812-4497-9777-9ce798d01f8d/1/WRe5qqPrSXq5O2XSrUMIntHbyrg.roa
Signing time: Sun 01 Jan 2023 13:54:47 +0000
ROA not before: Sun 01 Jan 2023 13:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 178.211.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:10:02:cf:07:81:dd:10:1d:05:fe:c8:b7:21:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac987fa1f363ed8d8178282c6748081dcc342803
Validity
Not Before: Jan 1 13:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5917b9aaa3eb497ab93b65d2ad43089ed1dbcab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a0:9c:12:14:5a:32:9c:a8:1b:6f:fd:e2:86:
14:37:c5:00:27:9f:af:ad:79:8f:15:4d:69:cf:13:
b9:76:6d:23:c8:4d:01:4e:63:fb:79:b0:51:b2:f1:
9e:37:90:e6:42:8f:5c:a6:3e:8b:6d:08:a0:83:84:
ad:18:b6:1b:59:e7:27:4d:f5:7e:55:41:da:4a:0d:
3e:66:9c:92:95:f9:2b:31:00:a7:ea:00:49:40:18:
56:20:81:d4:fe:66:f5:a0:32:c5:07:82:47:01:a5:
69:5a:4f:7f:57:7c:c5:ce:53:e7:41:49:ef:95:79:
22:e3:91:9f:1e:70:75:f7:ed:9c:4a:1f:00:a3:04:
26:6e:87:f8:f5:d4:cd:52:d5:de:78:1a:fa:6d:f7:
32:27:94:84:c9:e7:b7:53:c7:2e:50:87:b7:ab:e9:
c4:0f:4b:54:34:9a:fb:f5:cb:5a:67:1f:6a:a6:3c:
cd:a7:4d:0c:33:5f:97:a1:18:b7:60:91:51:3d:85:
0b:79:9e:a9:f4:ce:81:87:99:b0:00:ec:74:fc:28:
99:4b:e0:99:65:56:1d:a1:13:68:38:12:82:8e:73:
00:de:3a:08:fe:c0:56:26:82:99:59:35:b5:ae:2c:
fd:97:66:0f:a5:92:64:4f:85:e7:b5:90:5b:2c:c5:
c0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:17:B9:AA:A3:EB:49:7A:B9:3B:65:D2:AD:43:08:9E:D1:DB:CA:B8
X509v3 Authority Key Identifier:
keyid:AC:98:7F:A1:F3:63:ED:8D:81:78:28:2C:67:48:08:1D:CC:34:28:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJh_ofNj7Y2BeCgsZ0gIHcw0KAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2d8053-3812-4497-9777-9ce798d01f8d/1/WRe5qqPrSXq5O2XSrUMIntHbyrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2d8053-3812-4497-9777-9ce798d01f8d/1/rJh_ofNj7Y2BeCgsZ0gIHcw0KAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.147.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d3:1d:be:b7:15:64:b7:a2:b0:be:f4:3d:46:92:18:45:69:
23:6f:ce:6e:3a:2b:80:e3:3b:7f:e4:bd:09:61:a4:5f:54:39:
84:7d:d3:97:90:dd:f8:bb:da:a0:52:61:3f:46:d7:a8:17:99:
03:0a:7d:ed:21:b2:db:b1:79:5c:22:b6:ab:0d:d8:43:fc:44:
ec:6e:18:40:cd:c5:6b:3e:89:ac:29:03:6b:87:44:3f:ae:53:
e9:44:c5:d8:13:03:f1:d8:4a:26:17:27:9b:02:49:07:35:ea:
74:bf:5f:b5:7a:a8:74:f9:d3:81:de:81:6b:19:9c:db:fb:a4:
08:d3:0d:8a:cf:06:dd:80:51:e9:ad:05:fc:dd:06:52:53:73:
26:24:80:f5:2a:4a:17:d2:15:35:ef:ad:8c:d2:83:54:a4:e8:
bb:8a:87:93:4a:ac:1c:84:09:04:32:3c:6b:d2:af:78:34:88:
ea:6e:7c:99:85:a8:d1:c4:32:14:8f:9b:e2:5e:ac:2e:b9:da:
74:d1:c3:7c:a4:58:42:ce:70:d7:1e:28:7c:97:ad:fe:24:46:
2d:6f:36:77:5c:c6:9a:b0:31:a3:e8:ce:a4:bd:77:11:18:4f:
43:41:ae:fb:8d:9d:e8:90:cc:49:bc:ae:00:01:53:9f:b4:66:
b2:ee:cc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:37:10 2025 by rpki-client