Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/6ef146-dac6-4ea5-be58-4ee69a777bbe/1/iev4J1cEy_RPD8X8eUdM690cVLE.roa
File: iev4J1cEy_RPD8X8eUdM690cVLE.roa (raw, json)
Hash identifier: 9TEJ0t8Zou4PzSXabgZJLWABnxo44QPIs9eRQnIvo3k=
Subject key identifier: 89:EB:F8:27:57:04:CB:F4:4F:0F:C5:FC:79:47:4C:EB:DD:1C:54:B1
Certificate issuer: /CN=8e5dc732ca2834973547c780e1c3a5ab47805be0
Certificate serial: 022D7409
Authority key identifier: 8E:5D:C7:32:CA:28:34:97:35:47:C7:80:E1:C3:A5:AB:47:80:5B:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jl3HMsooNJc1R8eA4cOlq0eAW-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/6ef146-dac6-4ea5-be58-4ee69a777bbe/1/iev4J1cEy_RPD8X8eUdM690cVLE.roa
Signing time: Sat 01 Jan 2022 01:02:56 +0000
ROA not before: Sat 01 Jan 2022 01:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207492
IP address blocks: 94.231.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36533257 (0x22d7409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e5dc732ca2834973547c780e1c3a5ab47805be0
Validity
Not Before: Jan 1 01:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89ebf8275704cbf44f0fc5fc79474cebdd1c54b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:44:55:26:cb:aa:27:56:77:33:37:94:5e:27:
de:82:6d:03:8d:65:9a:73:ff:29:84:52:28:23:f9:
01:c5:62:c1:14:47:10:d7:4a:90:cb:13:51:ff:b5:
cf:dd:a2:22:35:54:e9:f2:36:4b:3c:f1:4e:2d:75:
95:04:65:20:10:64:24:f4:b7:26:8b:49:d9:10:49:
f8:1a:8f:92:68:93:2a:02:bf:89:5c:a5:3a:b1:7f:
be:51:f3:29:0c:8f:f9:73:49:6f:16:a0:f0:9f:05:
e7:22:b9:62:94:11:7a:f8:d0:06:29:b1:4c:49:6e:
3e:e3:e7:88:05:c3:f7:43:23:8c:ce:a6:23:f2:e5:
e2:d7:2e:f3:2d:1e:40:bf:a2:0a:fc:13:55:a3:c5:
87:e3:b3:01:c5:44:68:52:2d:81:ca:80:a2:b1:09:
ba:5e:99:d1:93:0a:d4:fb:41:63:91:d4:a1:87:d7:
9d:1a:8a:b4:c5:d1:0e:c3:97:9d:46:47:a2:de:25:
ea:0f:c8:b9:7c:38:7b:17:94:92:0d:49:dd:33:26:
c6:4a:fb:b3:5b:b4:27:5a:1d:01:89:33:de:c6:ca:
d0:8b:f3:a4:c9:5f:43:8d:74:55:2f:cf:71:c0:5c:
e6:6e:a0:5e:95:91:2c:f1:2c:86:23:78:1d:f1:21:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EB:F8:27:57:04:CB:F4:4F:0F:C5:FC:79:47:4C:EB:DD:1C:54:B1
X509v3 Authority Key Identifier:
keyid:8E:5D:C7:32:CA:28:34:97:35:47:C7:80:E1:C3:A5:AB:47:80:5B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jl3HMsooNJc1R8eA4cOlq0eAW-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6ef146-dac6-4ea5-be58-4ee69a777bbe/1/iev4J1cEy_RPD8X8eUdM690cVLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6ef146-dac6-4ea5-be58-4ee69a777bbe/1/jl3HMsooNJc1R8eA4cOlq0eAW-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.194.0/24
Signature Algorithm: sha256WithRSAEncryption
da:d5:42:ae:8b:44:a9:53:3c:71:7f:8a:b7:7a:1a:1b:e8:34:
e6:27:92:80:7b:c1:0b:8c:e6:fb:ce:09:4b:94:b4:e9:1e:4b:
f3:9c:e1:35:7c:24:41:8c:c8:b9:29:c7:36:1e:06:46:b5:3e:
9f:7b:52:14:a7:8f:98:ed:08:70:bd:53:40:59:8d:7b:2c:9c:
34:34:16:e9:63:6e:e8:e3:1b:75:94:1c:9a:f2:59:88:ac:05:
30:3d:09:f3:1b:99:c2:1c:ea:2b:a4:04:a3:24:62:21:bb:12:
e0:b5:6d:9e:4d:57:ac:16:e2:7d:ac:48:1b:34:a4:70:f5:5a:
f2:8d:c2:14:b9:b8:28:5f:c9:20:20:b3:0e:cf:4d:bf:25:bc:
dc:e9:d2:04:9c:1a:1c:2b:27:db:53:1c:06:27:52:fa:3b:65:
93:9b:73:e3:91:66:46:ce:95:f6:8b:7f:43:c1:1b:de:a8:e6:
b4:e8:6e:83:64:fb:45:52:ec:18:9c:07:36:4c:66:b1:9f:37:
d9:08:4d:74:50:06:1a:0d:c6:96:82:88:6e:22:03:20:dc:f1:
5b:1f:5b:30:75:bf:f2:17:b0:bf:d0:16:da:6a:86:72:67:bf:
b9:ee:6f:bf:09:ba:9a:67:97:2b:91:88:d7:f3:9b:4e:b5:d8:
31:21:cf:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 09:18:22 2025 by rpki-client