Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/oBuHWf0a1dn6w4nkiGcvTD0kwI0.roa
File: oBuHWf0a1dn6w4nkiGcvTD0kwI0.roa (raw, json)
Hash identifier: M1Q5TaNRTBP7O8fluqBbEn4Gi1T20V5sv4c2ClkE/Zk=
Subject key identifier: A0:1B:87:59:FD:1A:D5:D9:FA:C3:89:E4:88:67:2F:4C:3D:24:C0:8D
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08AC224E
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/oBuHWf0a1dn6w4nkiGcvTD0kwI0.roa
Signing time: Sat 01 Jan 2022 13:01:59 +0000
ROA not before: Sat 01 Jan 2022 13:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35057
IP address blocks: 194.31.236.0/24 maxlen: 24
194.31.237.0/24 maxlen: 24
194.31.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145498702 (0x8ac224e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a01b8759fd1ad5d9fac389e488672f4c3d24c08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:8f:04:06:14:fe:37:78:72:18:79:13:8e:
e9:97:37:ec:77:39:d9:cd:37:32:da:68:d4:19:f6:
7a:61:a1:7b:e1:84:52:f4:2b:3d:ec:28:38:53:b1:
1c:d8:88:f3:28:e3:fb:45:d0:a1:b3:6a:d5:de:61:
35:eb:31:6d:a6:6f:f9:94:43:b6:17:6b:dd:38:66:
ac:ec:f1:60:01:1e:69:38:5d:8e:39:10:3c:0c:23:
59:37:f2:cf:37:f0:b1:f9:43:fa:46:2b:ae:51:50:
a4:35:b2:a3:df:40:eb:d5:79:18:cf:8d:d3:2d:38:
aa:39:3e:7f:1f:0a:63:1e:28:72:04:8a:de:67:f2:
63:18:93:c6:ad:0a:d2:bd:ca:ca:f2:41:88:09:95:
e0:95:b3:5a:e6:eb:39:1a:41:bf:a1:7b:92:a6:37:
15:3f:43:a0:1c:87:96:64:92:a7:a2:81:04:9f:31:
ee:d7:9d:51:fd:ff:10:7f:87:b1:fd:40:75:da:6c:
18:b5:d6:aa:ac:3d:4b:79:13:a3:3b:42:3b:21:32:
b2:40:74:56:43:0f:32:1b:ad:68:15:99:bb:63:d0:
82:8a:2a:cb:0b:7e:1c:98:a7:ef:35:f0:0e:c8:76:
07:8d:8b:0c:44:9e:09:89:dc:5a:54:8b:99:87:26:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1B:87:59:FD:1A:D5:D9:FA:C3:89:E4:88:67:2F:4C:3D:24:C0:8D
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/oBuHWf0a1dn6w4nkiGcvTD0kwI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.236.0/23
194.31.245.0/24
Signature Algorithm: sha256WithRSAEncryption
96:d8:b1:80:e4:d0:e1:ce:35:db:4f:82:a1:82:70:14:d2:e2:
3a:49:30:a7:d3:95:73:16:f2:9b:ce:95:e4:f7:c0:c3:8d:08:
ec:12:27:57:7b:9d:fa:2e:c8:72:ed:87:01:f4:b3:d7:26:03:
83:73:e5:02:94:02:d0:81:b9:8e:b2:ed:e4:da:51:ae:f1:28:
b0:2e:66:96:35:87:6d:ad:52:da:4a:2b:45:bb:71:ce:be:24:
11:88:1a:5c:5f:84:00:1f:4f:89:93:d4:64:fd:d8:22:31:e4:
bb:a8:58:47:58:18:68:e2:28:34:ca:a9:50:99:3f:33:72:07:
1b:a8:0d:c1:36:9d:52:b2:a9:d8:9d:c0:06:7e:f5:4d:c5:d1:
e8:9d:2c:42:32:63:c4:ca:af:b5:4f:83:58:ea:02:0a:fb:0c:
48:93:dc:29:ce:ea:d7:93:28:a3:0c:73:2b:66:d3:05:c8:19:
58:36:fc:52:99:ec:a7:93:f2:31:13:62:f7:5f:73:ea:a7:9e:
ec:e4:26:4e:29:2b:1e:c4:52:d8:d0:64:1f:f0:19:de:3d:d4:
68:f8:c2:5a:94:a1:10:4b:11:2d:38:33:44:9f:a1:38:08:dd:
3d:55:0e:7c:7f:4f:67:76:30:45:5f:68:4c:3a:7d:89:44:6c:
34:4c:b5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:31 2025 by rpki-client