Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/lF_rtfDq6p5UdqB41Jqdv6qYf0w.roa
File: lF_rtfDq6p5UdqB41Jqdv6qYf0w.roa (raw, json)
Hash identifier: L06o6pcu9sT8tWeQVkc3hWivPhyiqX1qIraqQyuJk80=
Subject key identifier: 94:5F:EB:B5:F0:EA:EA:9E:54:76:A0:78:D4:9A:9D:BF:AA:98:7F:4C
Certificate issuer: /CN=c0fec178763a701e2211672e2e36e6d527f41f3d
Certificate serial: 0622D392
Authority key identifier: C0:FE:C1:78:76:3A:70:1E:22:11:67:2E:2E:36:E6:D5:27:F4:1F:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/lF_rtfDq6p5UdqB41Jqdv6qYf0w.roa
Signing time: Sat 01 Jan 2022 01:55:32 +0000
ROA not before: Sat 01 Jan 2022 01:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48682
IP address blocks: 193.169.133.0/24 maxlen: 24
176.124.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102945682 (0x622d392)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0fec178763a701e2211672e2e36e6d527f41f3d
Validity
Not Before: Jan 1 01:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=945febb5f0eaea9e5476a078d49a9dbfaa987f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d7:4b:22:22:9e:7a:20:20:71:fb:9a:0f:1d:
e1:17:0d:45:0e:e8:51:1d:48:89:ea:0a:9d:3c:a9:
d0:32:20:49:af:b0:4c:0e:0e:32:cb:ce:1d:f8:6a:
82:6b:ad:6b:55:00:ed:0f:cf:5d:41:f9:bd:c3:95:
c9:72:69:7d:d2:5c:3b:37:5d:32:62:c1:57:e4:a0:
e6:9b:d5:2d:be:df:fe:d1:68:40:5b:79:3c:38:c4:
61:be:e2:6f:de:b9:66:28:d4:b9:d9:64:0e:2c:6d:
6d:18:b6:af:18:92:6a:61:92:86:c2:3b:a5:ff:fc:
17:0a:8d:8f:7c:40:64:55:2b:f4:e8:50:c1:fd:1b:
d1:f1:fc:b0:01:d2:ea:8c:14:59:2d:6a:46:8e:b2:
63:87:79:75:21:c4:0d:c5:b6:1a:5f:82:20:b3:8b:
fb:41:12:10:1f:91:72:d1:41:88:d6:9a:e6:33:50:
30:83:5a:dd:32:49:80:e1:ff:e6:4c:38:e0:7a:6b:
71:6d:6b:44:10:33:42:a8:90:1e:02:d9:06:a5:1c:
e9:06:10:89:c1:a2:75:a5:6a:ea:55:03:a4:96:86:
db:f8:70:f6:f5:39:61:fc:d0:d2:49:cd:e7:08:4f:
bd:07:65:55:de:8e:ad:8e:ec:74:54:4f:53:aa:fe:
02:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5F:EB:B5:F0:EA:EA:9E:54:76:A0:78:D4:9A:9D:BF:AA:98:7F:4C
X509v3 Authority Key Identifier:
keyid:C0:FE:C1:78:76:3A:70:1E:22:11:67:2E:2E:36:E6:D5:27:F4:1F:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/lF_rtfDq6p5UdqB41Jqdv6qYf0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.70.0/24
193.169.133.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f0:61:65:ff:66:12:3e:f6:f1:1c:b7:59:61:de:d6:d8:25:
8a:af:cd:c2:b1:58:75:4e:9c:98:c6:77:d3:26:4d:07:cd:20:
69:66:c7:54:f4:c9:d8:8c:a8:67:c1:26:67:4f:d0:33:10:b8:
c3:8f:35:33:8e:28:9f:1b:26:bd:90:dd:fc:0b:ad:0a:32:f3:
98:ff:00:ce:cd:d2:dd:40:3a:61:95:a8:ed:9c:1d:81:f7:53:
e9:93:cd:b9:ef:c1:6e:fa:20:67:b7:36:48:c1:79:22:35:d7:
f4:80:e2:94:c7:cb:73:be:40:66:32:1d:26:c1:ac:9d:65:f8:
c7:e9:08:82:d8:bb:e2:ce:c6:aa:34:a7:c6:60:61:e5:5d:3d:
85:04:db:40:6e:80:fe:69:ed:24:2f:f4:69:78:95:21:92:ab:
40:a3:50:ac:88:4f:ff:56:57:60:23:07:8e:6e:ce:06:4d:12:
70:7f:33:53:f8:01:d5:42:f7:ae:62:a9:2b:c6:b3:b4:5a:af:
74:67:15:72:3c:66:e1:c0:78:4f:c1:54:94:ba:72:e5:1f:59:
13:5e:cb:f8:99:3f:a3:87:0a:bb:1a:07:3c:81:6a:7a:42:1f:
9e:36:d4:dd:8e:c7:64:a8:e8:37:13:ff:b1:70:77:36:be:8e:
aa:dc:ed:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:06:48 2025 by rpki-client