Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/7nNtQqUhQMgeJNycQmRm4jDnLWc.roa
File: 7nNtQqUhQMgeJNycQmRm4jDnLWc.roa (raw, json)
Hash identifier: DUqgNpbuNwgBj1epbg69inatXbZsM2xt6HT6glI/Ilc=
Subject key identifier: EE:73:6D:42:A5:21:40:C8:1E:24:DC:9C:42:64:66:E2:30:E7:2D:67
Certificate issuer: /CN=66bd82ba1881ad64f524e33ece12ada4b3b5d57f
Certificate serial: 108363AC
Authority key identifier: 66:BD:82:BA:18:81:AD:64:F5:24:E3:3E:CE:12:AD:A4:B3:B5:D5:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zr2CuhiBrWT1JOM-zhKtpLO11X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/7nNtQqUhQMgeJNycQmRm4jDnLWc.roa
Signing time: Sat 01 Jan 2022 14:04:18 +0000
ROA not before: Sat 01 Jan 2022 14:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 132.199.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277046188 (0x108363ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66bd82ba1881ad64f524e33ece12ada4b3b5d57f
Validity
Not Before: Jan 1 14:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee736d42a52140c81e24dc9c426466e230e72d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:79:d1:fb:9f:c0:a6:3a:84:67:d7:f5:53:80:
3c:e4:05:18:80:b8:69:5d:d3:fc:a9:61:ad:a0:29:
20:4f:56:9c:65:9d:7a:9f:85:ba:53:ad:01:cd:5a:
72:b9:93:b3:78:45:e9:6b:dd:f4:96:54:9f:18:3f:
7d:99:95:30:68:5d:b0:e7:4b:1b:cd:97:a9:c3:6f:
7a:54:1d:ba:aa:8b:7d:cd:59:80:58:ad:a5:3e:9b:
42:3f:2a:bb:3d:dc:de:b6:98:06:00:67:9b:61:cc:
95:1f:fb:b0:f2:38:82:f2:32:0f:90:ee:76:a8:68:
5b:96:3e:36:ad:c4:e8:b1:fe:d6:30:6b:89:80:38:
5a:6d:11:d6:d4:7c:d4:09:01:05:24:90:b1:7d:c0:
db:5c:d1:df:96:ca:2e:41:af:72:d9:ad:ed:e0:64:
59:c7:a5:d0:cf:ee:ab:00:33:53:b6:6f:96:52:90:
cf:df:89:13:34:78:24:fb:33:23:76:7a:d0:9c:e6:
eb:4c:2e:66:98:b4:2f:75:24:3d:9e:06:53:36:9d:
20:5c:2c:38:8b:b8:51:58:b0:3d:6a:75:36:07:bb:
87:da:1e:ae:d1:e1:d2:ef:63:6d:d9:ba:0e:fb:52:
9b:7c:31:bf:5d:34:f5:6b:ae:b3:d1:82:ce:64:cf:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:73:6D:42:A5:21:40:C8:1E:24:DC:9C:42:64:66:E2:30:E7:2D:67
X509v3 Authority Key Identifier:
keyid:66:BD:82:BA:18:81:AD:64:F5:24:E3:3E:CE:12:AD:A4:B3:B5:D5:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zr2CuhiBrWT1JOM-zhKtpLO11X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/7nNtQqUhQMgeJNycQmRm4jDnLWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/Zr2CuhiBrWT1JOM-zhKtpLO11X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
44:25:e2:93:b6:c4:79:a3:c9:92:25:6f:9f:23:5c:a2:81:9b:
95:aa:39:bf:a0:5d:fe:9d:cd:76:22:ee:ce:6a:09:54:bf:81:
27:5e:32:b0:17:b0:90:e2:1d:e2:ff:80:8d:68:fc:5f:d0:49:
a7:d3:42:aa:07:e9:7a:4b:5d:ce:30:88:c6:7c:ba:34:29:af:
30:21:05:0c:f3:e1:8f:16:bb:b5:ee:18:a7:94:89:21:25:fa:
a6:cf:ba:26:20:30:e7:1a:27:40:96:36:89:01:09:0e:78:43:
ec:e2:5c:cf:6e:de:72:d5:4f:04:05:17:98:8f:be:2e:7a:c0:
66:68:9a:60:fe:b3:fa:4a:37:45:c8:21:85:fc:d2:c3:26:a1:
96:b0:3b:c4:b3:34:e5:11:84:5a:50:c9:d5:b3:67:08:81:5b:
9b:b0:e3:e3:6a:a4:b7:63:6f:1d:9f:9d:1e:1b:58:f3:38:9b:
ab:1a:93:66:4e:88:ad:74:65:4e:e1:23:0e:9d:90:6e:e9:67:
3b:74:c9:3f:19:f5:75:1b:80:67:e7:5d:5b:f2:f5:27:b0:37:
7a:07:d0:9a:55:21:f4:d1:96:4d:cb:72:c8:05:88:ef:a5:2d:
5a:74:3e:d6:3b:34:97:d3:4c:2c:8e:ff:bd:e5:05:51:24:23:
16:b5:0b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:51 2025 by rpki-client