Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/pPJvt8ytAZFHZ9YvrSzID3gabAg.roa
File: pPJvt8ytAZFHZ9YvrSzID3gabAg.roa (raw, json)
Hash identifier: 4f0N799zpVadTwC/xC54bo9034Q4DZaIQlQw2Xhwizc=
Subject key identifier: A4:F2:6F:B7:CC:AD:01:91:47:67:D6:2F:AD:2C:C8:0F:78:1A:6C:08
Certificate issuer: /CN=830555f011be5e241eb0b425de5fd86cc6834a54
Certificate serial: 018B8F3AC815F1F9677C266195FC286068FC
Authority key identifier: 83:05:55:F0:11:BE:5E:24:1E:B0:B4:25:DE:5F:D8:6C:C6:83:4A:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwVV8BG-XiQesLQl3l_YbMaDSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/pPJvt8ytAZFHZ9YvrSzID3gabAg.roa
Signing time: Thu 02 Nov 2023 08:51:16 +0000
ROA not before: Thu 02 Nov 2023 08:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52130
IP address blocks: 188.92.40.0/21 maxlen: 21
2a02:7d00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:3a:c8:15:f1:f9:67:7c:26:61:95:fc:28:60:68:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830555f011be5e241eb0b425de5fd86cc6834a54
Validity
Not Before: Nov 2 08:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4f26fb7ccad01914767d62fad2cc80f781a6c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:30:8b:53:ed:cf:0a:22:19:00:fa:71:1d:bc:
45:e2:bd:e2:5b:5a:b5:ff:61:d7:31:59:5f:d7:56:
42:95:ea:19:4c:34:42:6d:9e:99:35:e9:14:61:00:
7e:af:8a:cd:0e:27:87:03:f9:68:38:20:41:85:27:
2b:7e:8e:e6:ee:e6:b9:fa:c3:1e:47:54:4b:5d:2c:
17:12:62:e5:62:8e:95:52:ca:8b:d3:ba:8e:27:e6:
17:a3:4f:d9:8c:8f:a2:f5:87:48:5c:c4:2c:9e:9f:
05:4c:30:43:32:c9:5e:80:e4:09:68:2d:46:3a:67:
f4:2d:53:da:d1:d7:c9:6e:8d:9c:dd:0e:94:7e:87:
4e:64:de:27:3a:f3:01:28:d8:83:e4:be:e7:de:91:
a5:3c:d3:93:77:a5:8f:c4:0e:f7:af:bf:6b:0f:58:
67:cf:91:32:5a:a8:43:eb:58:bd:a4:68:65:13:05:
b9:21:ee:5d:2f:ef:48:87:56:69:b7:f3:9f:96:82:
46:18:23:7b:5b:4d:f9:ed:c2:9d:02:56:3f:af:da:
76:81:89:a9:98:f9:67:ce:ef:8f:5c:d8:73:be:84:
9b:e3:f8:27:bc:c4:d1:bf:5e:b3:b7:ff:de:6c:32:
70:d1:78:dc:92:1b:3a:1d:a6:76:dc:cc:63:6f:b2:
b8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F2:6F:B7:CC:AD:01:91:47:67:D6:2F:AD:2C:C8:0F:78:1A:6C:08
X509v3 Authority Key Identifier:
keyid:83:05:55:F0:11:BE:5E:24:1E:B0:B4:25:DE:5F:D8:6C:C6:83:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwVV8BG-XiQesLQl3l_YbMaDSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/pPJvt8ytAZFHZ9YvrSzID3gabAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/gwVV8BG-XiQesLQl3l_YbMaDSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.40.0/21
IPv6:
2a02:7d00::/32
Signature Algorithm: sha256WithRSAEncryption
00:05:fb:1c:44:ce:98:ca:c9:43:f7:0f:83:2c:51:d1:9e:23:
b9:6f:d3:65:04:c3:b7:fe:e2:7d:19:8d:e8:c8:61:8e:84:c1:
c7:4b:d4:a1:73:49:11:d1:98:b3:92:cb:78:58:25:f5:65:cd:
b1:cc:c1:8b:7a:9d:92:8c:86:04:ad:1f:ce:4b:00:02:87:05:
70:bc:77:f5:21:aa:ab:3d:36:82:b7:38:fc:f2:66:bb:63:cb:
7d:18:5d:e9:34:c1:07:a0:e7:98:fb:67:b8:5e:9b:d9:31:ea:
92:4d:12:ab:47:66:8c:30:04:1a:b4:6e:34:ba:cd:95:c7:21:
f5:13:a2:6e:7b:20:d4:f0:86:84:30:86:27:00:b7:c5:c6:60:
eb:ac:63:fb:09:30:b1:d8:b5:a8:70:13:21:50:30:fe:10:60:
c0:48:45:b8:a8:80:9d:ea:39:65:12:41:88:4d:97:82:d0:6a:
11:7e:9d:cb:a9:46:12:54:2f:6d:bb:c3:e9:11:7d:2f:4f:c3:
36:21:e2:4b:eb:14:5c:f6:08:0e:da:d2:6f:07:eb:2f:84:ba:
fa:43:02:c5:6a:ef:f5:84:9e:83:18:df:6f:9e:cc:62:42:40:
91:1c:1c:e4:41:9c:be:53:b7:c2:eb:aa:02:cd:35:88:18:7f:
ad:f7:19:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:34 2025 by rpki-client