Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/dJeb6AxqS4ns2j12HWpo5kczx9w.roa
File: dJeb6AxqS4ns2j12HWpo5kczx9w.roa (raw, json)
Hash identifier: xgIuAPNzebx95hH06ccEfOk95OTi8dG+vVgI3qOIodU=
Subject key identifier: 74:97:9B:E8:0C:6A:4B:89:EC:DA:3D:76:1D:6A:68:E6:47:33:C7:DC
Certificate issuer: /CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Certificate serial: 03F8E003
Authority key identifier: B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/dJeb6AxqS4ns2j12HWpo5kczx9w.roa
Signing time: Sat 01 Jan 2022 09:57:33 +0000
ROA not before: Sat 01 Jan 2022 09:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209030
IP address blocks: 82.202.190.0/24 maxlen: 24
82.202.189.0/24 maxlen: 24
82.202.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66641923 (0x3f8e003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Validity
Not Before: Jan 1 09:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74979be80c6a4b89ecda3d761d6a68e64733c7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d5:6e:7f:57:0d:95:8b:20:d1:c6:58:28:93:
66:fb:9e:2c:9b:c1:a0:92:32:9b:28:54:74:2e:a8:
65:0e:19:0a:e1:2d:da:9b:97:c9:bc:26:84:13:1c:
d0:d0:9f:2a:a8:f4:9d:b5:28:b4:ae:ec:bc:ce:84:
ee:57:ec:ba:c4:a8:ab:16:ee:f4:9c:02:cc:0f:61:
e5:a9:dd:00:2d:b8:93:ce:80:d3:08:b9:db:94:b6:
d4:74:9a:f1:da:e0:27:07:8d:5b:1f:68:56:15:2c:
32:ac:5c:19:87:c0:06:d5:d9:5c:7a:b1:52:e5:8c:
1e:e0:c4:80:2a:8e:9e:93:1e:89:c1:a6:e1:98:09:
78:b5:99:71:78:fb:64:14:86:25:4b:a3:3b:5f:c9:
eb:9b:0e:8c:4c:68:d3:13:3f:20:2c:5b:32:25:2f:
9b:d0:ba:3c:db:61:0e:3c:d4:5a:2c:72:ca:98:8a:
b3:37:ea:f5:c1:d1:28:30:9a:50:a9:5d:d7:8b:ec:
cb:02:17:5c:28:65:6b:96:55:8d:8c:1a:48:e4:a2:
a6:9e:28:6c:cd:8a:b7:80:9e:9c:0a:4e:14:b3:b4:
7c:d0:bb:69:09:09:d5:fc:6b:85:09:8f:76:9d:bb:
5c:0e:1b:ba:f7:3f:60:fb:bd:60:38:9a:75:53:1b:
1b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:97:9B:E8:0C:6A:4B:89:EC:DA:3D:76:1D:6A:68:E6:47:33:C7:DC
X509v3 Authority Key Identifier:
keyid:B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/dJeb6AxqS4ns2j12HWpo5kczx9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ta-je9Ddret_6iub5ksRCOIN6bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.202.188.0-82.202.190.255
Signature Algorithm: sha256WithRSAEncryption
73:8f:77:ff:22:62:e0:cb:74:2a:04:d1:94:d1:38:fa:c0:34:
ab:3e:8d:9f:fd:7f:8b:dc:0e:b4:e5:10:c0:bb:c3:3f:84:0c:
a4:73:75:0a:13:9e:06:60:4d:a8:c0:60:d2:0a:2f:19:ae:85:
bd:38:8a:4c:4c:e6:e5:02:a9:50:7e:72:ac:f1:07:7e:55:e4:
3e:62:2e:7b:2d:77:76:e7:0f:bc:db:f5:c6:f2:f2:9e:79:51:
35:2d:6c:32:59:40:96:15:85:c1:f6:bf:a1:1c:4e:d3:39:7e:
cb:95:d4:bc:1e:21:ae:00:0a:da:39:a3:e7:bd:59:66:17:66:
6b:64:80:9c:f7:17:27:66:48:15:ba:5e:59:35:4a:62:69:cb:
af:26:3b:50:75:13:45:ce:76:89:f9:4c:4e:0a:1b:67:69:28:
19:17:aa:e5:d0:93:ab:8e:3e:c3:58:30:61:f8:00:23:8d:41:
4d:9e:de:e8:17:0b:f3:2b:28:14:48:13:c9:f6:ea:3e:12:20:
0d:2f:78:69:df:39:47:5c:c2:2d:a7:74:94:3e:69:8c:56:bc:
69:2b:19:63:f0:4c:94:08:e6:3f:26:5b:d9:8b:0b:45:74:69:
81:92:d7:4e:55:40:b6:45:c1:00:ad:71:c0:7b:eb:4b:71:0c:
f6:38:59:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:58 2025 by rpki-client