Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/rSyULtwolLNpiWKFhIbA6OHnCI8.roa
File: rSyULtwolLNpiWKFhIbA6OHnCI8.roa (raw, json)
Hash identifier: dHmdYCri/iVU1C70tW8vmDYwzlsYwmLJKpDow3tUZAU=
Subject key identifier: AD:2C:94:2E:DC:28:94:B3:69:89:62:85:84:86:C0:E8:E1:E7:08:8F
Certificate issuer: /CN=a82c9bc2d2dacfd6f130d85a84fedeabf179a567
Certificate serial: 2092D895
Authority key identifier: A8:2C:9B:C2:D2:DA:CF:D6:F1:30:D8:5A:84:FE:DE:AB:F1:79:A5:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCybwtLaz9bxMNhahP7eq_F5pWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/rSyULtwolLNpiWKFhIbA6OHnCI8.roa
Signing time: Sat 01 Jan 2022 16:11:24 +0000
ROA not before: Sat 01 Jan 2022 16:11:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1880
IP address blocks: 192.67.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 546494613 (0x2092d895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82c9bc2d2dacfd6f130d85a84fedeabf179a567
Validity
Not Before: Jan 1 16:11:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad2c942edc2894b3698962858486c0e8e1e7088f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f4:26:9f:a9:4c:64:00:49:44:ea:cf:1c:b6:
c9:5f:e8:95:06:7f:ef:9a:0b:e8:72:35:4d:a2:93:
5e:85:9b:34:cd:97:e2:dc:76:2b:0f:7c:f5:50:5e:
08:6a:9a:64:5e:81:29:f5:89:d4:e8:d5:06:de:fa:
35:ff:96:4b:71:0e:af:fb:5d:99:2d:25:9f:0e:48:
6a:48:32:12:28:3d:71:9a:a4:aa:97:c8:7d:45:12:
ff:ad:a5:ea:d0:f9:15:a5:7e:61:c9:a1:ed:42:d7:
95:b5:c9:c8:d3:87:31:bc:4f:65:a7:04:72:bc:d4:
3d:95:38:b6:ec:70:80:4b:bb:ca:f4:f9:91:e2:cb:
04:94:87:4c:91:77:2f:d5:b3:bf:62:2c:73:4d:be:
7b:ec:11:9a:02:03:17:8c:92:50:c4:23:a3:e3:59:
78:47:b7:9f:1c:e7:d1:48:6f:f8:0e:4a:d6:80:38:
5d:cf:b9:04:ab:4c:e3:ff:6d:7b:d6:69:f2:e2:03:
9b:ca:88:5a:7f:f0:34:f1:44:a3:dd:29:d7:f6:f8:
59:47:be:b8:9d:d9:2b:91:2c:54:fe:2e:44:5f:a3:
56:7b:f6:95:a0:3a:2e:94:47:f2:ba:b6:d3:2d:81:
d5:2a:90:22:f3:8b:dc:32:09:0d:59:14:f6:f9:a1:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2C:94:2E:DC:28:94:B3:69:89:62:85:84:86:C0:E8:E1:E7:08:8F
X509v3 Authority Key Identifier:
keyid:A8:2C:9B:C2:D2:DA:CF:D6:F1:30:D8:5A:84:FE:DE:AB:F1:79:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCybwtLaz9bxMNhahP7eq_F5pWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/rSyULtwolLNpiWKFhIbA6OHnCI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/qCybwtLaz9bxMNhahP7eq_F5pWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.67.58.0/24
Signature Algorithm: sha256WithRSAEncryption
57:bd:4d:bf:21:d8:9f:44:ec:31:fe:4f:df:63:8c:ca:f9:1b:
fb:2f:32:6c:46:88:d2:6b:b1:37:7c:5e:66:4b:01:89:be:f9:
d2:8b:25:d4:7e:8f:bd:64:7d:64:4c:1e:6d:ec:b3:a0:11:c7:
2c:c5:9c:1d:52:93:29:4c:6e:39:65:82:23:3e:4c:43:ab:51:
aa:a1:57:e2:49:aa:06:3b:8a:9a:4e:a9:08:a3:c0:bc:41:55:
1c:25:35:21:10:54:86:d5:65:63:e1:c0:8c:fe:6d:e3:ad:0a:
a8:c9:99:4b:5c:a5:bf:d0:27:03:e5:f0:61:e3:7d:a3:a7:93:
9c:3b:b2:79:5e:49:e3:df:fb:7c:d4:fb:1f:2e:13:3d:8b:49:
10:80:b0:39:21:43:8e:6b:79:3c:d4:f9:f8:d1:e3:7d:ab:d7:
7b:f0:c3:b8:ac:f6:e7:c1:5c:cb:c0:d5:05:92:5e:d6:21:bc:
76:17:c5:c2:77:87:cc:88:d5:0b:d0:f4:4a:82:98:f8:50:e9:
4a:d3:b8:70:b7:61:7a:82:89:a7:a2:cd:4c:9d:d5:15:d3:c4:
33:a6:8c:1e:7e:fe:9e:6c:e7:4e:96:fe:aa:3c:30:c7:4c:95:
2d:ad:3e:cc:40:57:30:46:19:f2:53:a5:ce:d9:a3:c4:e2:ed:
ce:1e:9b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:54:15 2025 by rpki-client