Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/5gaMA9oXsId1rE-CLWbCTJt6HAE.roa
File: 5gaMA9oXsId1rE-CLWbCTJt6HAE.roa (raw, json)
Hash identifier: 3Cnl77hCmOumBL/oHcG9RAS471BVW/IsJD1NjfE40dM=
Subject key identifier: E6:06:8C:03:DA:17:B0:87:75:AC:4F:82:2D:66:C2:4C:9B:7A:1C:01
Certificate issuer: /CN=e8cf15bf6b1f2690f20901d1896e2d880fe8886e
Certificate serial: 094A4F6A
Authority key identifier: E8:CF:15:BF:6B:1F:26:90:F2:09:01:D1:89:6E:2D:88:0F:E8:88:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/5gaMA9oXsId1rE-CLWbCTJt6HAE.roa
Signing time: Sat 01 Jan 2022 10:58:55 +0000
ROA not before: Sat 01 Jan 2022 10:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49588
IP address blocks: 176.101.192.0/19 maxlen: 19
193.169.134.0/24 maxlen: 24
2001:67c:2c44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155864938 (0x94a4f6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8cf15bf6b1f2690f20901d1896e2d880fe8886e
Validity
Not Before: Jan 1 10:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6068c03da17b08775ac4f822d66c24c9b7a1c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ba:aa:63:6d:7b:a5:17:ee:ff:bd:ff:5c:e7:
e6:a9:60:95:2a:3e:b0:7d:2c:b0:ac:94:c2:0c:9b:
4b:8c:a5:75:32:47:cc:0c:e9:0a:cd:b4:f1:a1:a7:
e7:9a:a1:45:48:f1:a8:ea:ea:90:ee:9f:5b:16:c2:
0e:61:2c:be:0c:39:78:3d:30:5c:a0:62:b7:7e:ea:
06:a4:ce:fe:87:1a:43:16:f5:fd:b1:50:9e:1e:44:
20:76:c8:e1:8b:5d:8c:e2:b5:5f:7b:21:d1:8d:d6:
17:e2:c7:5e:d6:ca:ed:b9:2f:0b:19:df:bf:17:58:
01:48:bb:4d:bd:be:e5:35:cf:28:c0:e8:5d:6b:d6:
9a:6b:da:ec:3d:0f:08:c5:6a:fd:38:3d:b8:94:f1:
cd:80:30:dd:40:f2:be:0e:c7:1b:8b:d8:0e:be:3e:
6a:e4:41:9a:15:f6:8c:a4:53:f7:42:6b:f7:78:e1:
20:49:48:02:6a:2a:0c:9a:07:5f:05:3a:66:12:dc:
bd:7b:3c:5b:ab:29:8f:85:bf:00:35:5d:4e:cc:a7:
15:5e:08:8b:ab:27:0f:39:f3:f4:46:9c:38:15:9f:
f5:b6:f8:41:aa:b8:b2:7d:f3:1c:42:5d:73:36:e9:
5e:e7:cc:e9:60:9f:f0:ae:6f:13:b8:87:23:3d:59:
af:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:06:8C:03:DA:17:B0:87:75:AC:4F:82:2D:66:C2:4C:9B:7A:1C:01
X509v3 Authority Key Identifier:
keyid:E8:CF:15:BF:6B:1F:26:90:F2:09:01:D1:89:6E:2D:88:0F:E8:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/5gaMA9oXsId1rE-CLWbCTJt6HAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.101.192.0/19
193.169.134.0/24
IPv6:
2001:67c:2c44::/48
Signature Algorithm: sha256WithRSAEncryption
4c:39:a8:39:7d:53:3d:b7:98:39:84:fa:55:89:e9:e8:e5:d7:
a7:fb:25:fa:6f:fc:f7:39:39:1c:8a:db:12:a4:91:b5:c7:b4:
75:50:ec:04:72:a9:8d:30:1d:5b:39:f0:f7:9f:0e:cb:09:28:
36:ad:aa:77:ed:30:22:3f:da:63:16:5b:2a:d6:62:bb:32:cd:
c0:21:18:f2:4c:d4:8a:ab:78:25:22:d0:c2:2a:7a:d7:c8:e3:
77:11:c6:74:34:ef:6a:fe:61:51:20:f6:a6:b5:7c:85:60:8b:
3b:8b:0b:92:9c:ae:e6:2d:c8:a0:02:9b:30:c3:52:2d:70:05:
26:ee:94:86:e0:90:4b:7c:7f:11:86:a0:d6:ab:10:d0:a5:31:
1f:b4:ff:6b:c1:94:7e:42:e0:4d:c1:e9:01:18:a9:fb:61:7f:
e9:8e:55:3a:1c:ee:5d:3e:25:a2:af:c4:57:89:8b:45:6c:e5:
34:8e:4a:98:af:af:b1:ca:30:2a:fa:a5:c0:e7:3a:64:16:9d:
21:a3:60:c8:6f:e5:7a:14:32:3f:2c:ba:e8:8d:2d:5e:96:4a:
a5:76:ef:d3:3c:80:96:0c:37:61:ba:10:04:a3:f7:2a:8a:c1:
da:79:76:a2:b3:82:28:97:a7:c1:2b:0e:f5:01:a5:de:24:49:
8e:b3:11:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:22:41 2025 by rpki-client