Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eOAuLTvhgk1kE9eB6YACkM4kBHs.roa
File: eOAuLTvhgk1kE9eB6YACkM4kBHs.roa (raw, json)
Hash identifier: hOVDD2PxXLdfZ6e0inOIMP9mdjb3XohhMlDm/YwKdgE=
Subject key identifier: 78:E0:2E:2D:3B:E1:82:4D:64:13:D7:81:E9:80:02:90:CE:24:04:7B
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01890CE4F41AB9D77F70AE7F5648AC2A76B3
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eOAuLTvhgk1kE9eB6YACkM4kBHs.roa
Signing time: Fri 30 Jun 2023 15:21:18 +0000
ROA not before: Fri 30 Jun 2023 15:21:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 82.153.242.0/24 maxlen: 24
109.176.213.0/24 maxlen: 24
109.176.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0c:e4:f4:1a:b9:d7:7f:70:ae:7f:56:48:ac:2a:76:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 30 15:21:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78e02e2d3be1824d6413d781e9800290ce24047b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:0c:59:58:18:d5:24:09:28:0a:ef:e8:0e:
01:65:c5:df:8f:15:e2:bc:f2:8a:2b:d9:f0:4d:5b:
cb:c3:81:1e:25:71:fc:a7:af:0c:bf:6d:f7:25:73:
ba:8e:cb:41:f2:d0:67:ea:31:e5:0b:8e:e9:75:c6:
38:bc:85:3c:71:b8:64:c7:40:e4:8a:b6:3a:c2:c9:
41:40:8b:2d:eb:64:38:17:01:07:76:d3:c0:05:97:
85:27:8e:50:ab:5e:a2:2f:90:34:59:ba:6a:36:1d:
b5:ea:73:45:e4:8b:08:45:1f:21:fe:33:98:07:54:
22:9f:e6:e0:6a:70:72:85:e7:dc:aa:11:3c:b4:e7:
87:28:0f:6b:9d:85:ee:0b:e5:e9:68:5d:a5:0c:10:
13:15:ca:05:16:8c:52:01:b4:bd:9b:0d:7b:19:fa:
a4:9c:bc:b6:d9:90:62:83:9d:92:11:16:a1:6c:0c:
9e:56:b5:49:c4:a9:33:1d:20:82:c9:17:1a:39:74:
c4:da:bb:6e:9c:48:d0:cd:bf:4a:d6:28:d9:31:a0:
ad:28:3b:45:15:85:55:9f:ad:b1:1c:0c:54:38:78:
09:76:0b:bd:25:c8:17:d7:aa:ee:fd:36:0f:ad:27:
8a:32:8e:75:1c:f3:0a:a9:fd:b4:b3:eb:b9:1a:04:
f5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E0:2E:2D:3B:E1:82:4D:64:13:D7:81:E9:80:02:90:CE:24:04:7B
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eOAuLTvhgk1kE9eB6YACkM4kBHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.242.0/24
109.176.210.0/24
109.176.213.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:8c:0f:3e:aa:a7:be:25:5b:19:3c:48:b6:be:b7:56:9a:27:
f2:53:9f:b9:1f:0d:14:ca:14:4e:a9:f2:ad:7a:c5:92:ce:95:
b1:56:12:99:da:a7:8e:9d:40:e9:d4:20:6e:e7:50:5b:ee:b5:
59:fc:38:ad:e8:11:5b:b8:92:80:3f:b4:4e:7c:c2:b9:87:92:
bb:0e:28:05:73:44:08:b2:4c:ac:ec:56:3c:e5:df:d6:8a:bb:
47:1c:27:d1:d8:ea:a6:c9:17:b4:29:d1:a6:34:c2:63:0c:f4:
a4:75:24:49:de:4e:91:d3:a4:93:3b:fc:cd:7e:91:46:88:37:
cb:90:8f:1f:a0:f7:0b:5b:db:d5:9b:41:de:85:a2:2a:c5:00:
a2:05:dc:a3:aa:13:df:c3:a0:1f:fc:23:3f:b3:e8:73:52:66:
dc:e3:05:f4:69:8a:0a:4b:9c:ec:b5:cc:c2:e6:f7:c7:b1:69:
5b:f1:5f:ad:c3:06:88:3d:f3:2c:ad:85:93:52:29:27:2c:fe:
f9:6c:ce:45:ad:52:fd:52:20:d1:59:1a:15:d4:13:e0:51:02:
9c:33:70:6d:87:73:0e:7f:44:95:f8:c7:fc:a5:77:48:6f:5d:
3f:b1:6e:2a:46:32:c8:ae:a8:2e:0e:19:00:56:67:d6:5d:b0:
cd:6b:79:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:22:02 2025 by rpki-client