Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/nG-_i6c2LutkRizAkRPAnGh5EG4.roa
File: nG-_i6c2LutkRizAkRPAnGh5EG4.roa (raw, json)
Hash identifier: Aimflghuux6tWwVrbq6TKxd0E1A89Z3A4kCn5CE00sE=
Subject key identifier: 9C:6F:BF:8B:A7:36:2E:EB:64:46:2C:C0:91:13:C0:9C:68:79:10:6E
Certificate issuer: /CN=99dcbdf0632a101613a8f6c9449b29ed45c1a872
Certificate serial: 0184185DB967998740192363D91C496D189B
Authority key identifier: 99:DC:BD:F0:63:2A:10:16:13:A8:F6:C9:44:9B:29:ED:45:C1:A8:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdy98GMqEBYTqPbJRJsp7UXBqHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/nG-_i6c2LutkRizAkRPAnGh5EG4.roa
Signing time: Thu 27 Oct 2022 07:35:06 +0000
ROA not before: Thu 27 Oct 2022 07:35:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.217.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:5d:b9:67:99:87:40:19:23:63:d9:1c:49:6d:18:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99dcbdf0632a101613a8f6c9449b29ed45c1a872
Validity
Not Before: Oct 27 07:35:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c6fbf8ba7362eeb64462cc09113c09c6879106e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:00:4d:01:26:53:63:e4:96:49:93:cd:cf:d9:
5e:ca:b4:60:c1:59:fd:fe:e7:55:5a:36:38:31:29:
36:27:bf:72:25:07:fe:38:4b:cd:3f:e2:64:b2:a5:
b2:1f:4d:f1:8e:43:97:d8:6f:39:f9:18:cb:b1:f4:
7e:dd:e6:d2:24:3e:99:92:05:57:ba:a7:60:7b:00:
a5:eb:17:8e:66:76:e9:59:0f:df:1a:90:2b:a0:7b:
3a:05:d0:f5:02:f4:63:89:c9:de:2e:b6:a9:e5:94:
96:3d:be:54:37:43:66:57:64:d6:e5:4d:1c:a4:82:
4b:db:85:04:00:08:5a:fe:a2:fa:7e:92:b1:b4:ea:
5b:59:b1:04:6d:18:30:d8:26:74:6f:12:1f:3f:52:
7a:25:b5:c6:9a:f3:40:52:a6:a6:c3:19:94:36:0c:
d9:48:57:14:7a:25:2d:19:91:32:5d:f1:4a:58:44:
33:f3:e3:09:86:28:0b:ca:21:8f:99:02:58:b0:d9:
e9:66:be:93:51:cf:d3:62:1b:56:59:ee:01:d2:9f:
d5:b0:6b:ae:d4:f4:54:54:d2:ea:b8:66:26:43:1b:
0c:d5:dc:28:5c:8f:05:2b:f5:1a:1f:ec:bb:13:9c:
ba:09:f2:63:47:5e:a5:8e:5c:35:45:fb:64:71:4e:
ec:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6F:BF:8B:A7:36:2E:EB:64:46:2C:C0:91:13:C0:9C:68:79:10:6E
X509v3 Authority Key Identifier:
keyid:99:DC:BD:F0:63:2A:10:16:13:A8:F6:C9:44:9B:29:ED:45:C1:A8:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdy98GMqEBYTqPbJRJsp7UXBqHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/nG-_i6c2LutkRizAkRPAnGh5EG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/mdy98GMqEBYTqPbJRJsp7UXBqHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.50.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:1d:55:46:a7:30:ba:3b:9a:c2:a5:a7:51:06:2e:b8:0a:f1:
23:6f:1a:15:32:bd:0e:4d:6f:9c:c2:17:63:c5:e8:61:2f:78:
71:8b:01:7c:a1:09:bf:1f:a4:d0:bd:09:b2:53:d9:7b:5b:c4:
dd:61:44:33:75:63:49:78:5c:98:89:51:19:68:2f:35:b0:55:
1e:84:1f:c3:f2:09:1d:85:ca:73:2a:15:e6:69:10:e8:ed:11:
72:76:3e:cf:bc:2a:48:31:79:87:88:f2:90:8a:03:f5:26:30:
65:56:a8:8e:f7:c7:48:b9:3b:99:7f:3f:76:be:5a:bb:91:ab:
c4:28:b2:f0:af:f0:c9:68:5c:8f:c4:4f:57:0b:cd:60:24:6a:
ba:bf:b2:6b:ac:3c:d6:07:7f:ed:72:23:99:2b:25:8e:ed:85:
c5:6f:e1:6f:f0:50:d7:dd:81:ca:b7:5b:58:0e:fb:4c:39:d5:
e3:2c:ec:c1:e3:ed:bb:44:7b:15:2c:5b:90:b6:17:f4:c0:f2:
67:d3:69:2c:20:21:26:ea:23:a1:8b:23:68:26:94:6a:49:ac:
00:61:f6:04:96:03:49:e4:71:ab:93:47:52:9a:bf:9d:6f:ca:
68:fb:03:78:42:2b:d5:6e:b2:4d:e1:85:9c:ba:1e:a8:2e:23:
95:a8:de:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:12:31 2025 by rpki-client