Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/_e9kOc0gXfdg2CbSeSausSwsc0w.roa
File: _e9kOc0gXfdg2CbSeSausSwsc0w.roa (raw, json)
Hash identifier: y3bY4erWQOfgWxRZ29fLK0deDG+ZTYNh1RuDp6r/6mM=
Subject key identifier: FD:EF:64:39:CD:20:5D:F7:60:D8:26:D2:79:26:AE:B1:2C:2C:73:4C
Certificate issuer: /CN=598fa4201344d4107f792eee2566c62d65714e2d
Certificate serial: 0A500428
Authority key identifier: 59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/_e9kOc0gXfdg2CbSeSausSwsc0w.roa
Signing time: Sat 01 Jan 2022 02:51:31 +0000
ROA not before: Sat 01 Jan 2022 02:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207174
IP address blocks: 217.61.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173016104 (0xa500428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=598fa4201344d4107f792eee2566c62d65714e2d
Validity
Not Before: Jan 1 02:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdef6439cd205df760d826d27926aeb12c2c734c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fb:74:6b:05:10:f9:fe:90:cd:38:6f:61:6e:
39:1c:e5:42:38:3d:ec:6a:87:62:fe:8c:b6:09:ae:
5b:fb:7d:88:6e:dd:42:e5:5d:63:31:87:c2:9b:26:
1f:8c:69:ea:ec:7e:d0:66:14:bc:b2:8a:39:26:2c:
f4:39:02:cb:1c:cf:ee:87:cf:44:2b:ad:60:2e:d5:
b7:e3:1f:44:a8:13:ab:be:43:e8:1f:8a:7d:62:07:
1d:a0:5e:21:2a:e2:f6:30:9c:d2:8c:ca:45:c6:f2:
dd:72:ce:d7:6f:23:11:00:c6:c0:62:89:04:47:b8:
d3:e8:e5:5d:7e:16:33:b5:2d:82:7f:67:cc:5f:76:
42:18:36:cf:a9:74:dc:8c:0f:2b:42:36:a5:a6:74:
3f:fd:e6:74:b4:1d:7a:b0:6c:95:b4:64:44:c1:f7:
2a:97:db:99:5f:cf:ce:4f:a4:91:c2:c1:27:06:54:
ea:fc:39:68:59:c9:bd:24:9b:f4:02:24:0a:d5:d4:
8f:b5:b4:10:87:73:4e:e0:8c:1f:02:4f:dc:d1:d3:
45:40:ee:9c:b2:4d:3d:de:a3:80:19:c9:08:fd:d9:
87:00:dd:7f:6d:f7:9b:ec:f8:b8:33:20:4d:18:e7:
34:1b:b6:e0:ac:16:41:0a:a7:b8:86:78:cc:44:53:
8a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EF:64:39:CD:20:5D:F7:60:D8:26:D2:79:26:AE:B1:2C:2C:73:4C
X509v3 Authority Key Identifier:
keyid:59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/_e9kOc0gXfdg2CbSeSausSwsc0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/WY-kIBNE1BB_eS7uJWbGLWVxTi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.132.0/24
Signature Algorithm: sha256WithRSAEncryption
78:35:5d:8b:7e:7e:ee:db:03:81:87:45:c0:e3:53:2a:34:c7:
66:46:28:ea:40:7d:ea:7d:c3:56:4a:9c:c8:d8:4c:f1:61:87:
7c:d1:b8:b4:af:e7:be:7a:37:6e:cc:41:c3:ef:95:3d:7c:c6:
0e:f8:8a:23:8f:ab:c1:76:46:82:b0:ec:54:63:0e:5c:6a:22:
6e:de:ab:26:b3:1d:87:30:90:34:99:06:dc:a3:39:99:84:74:
e6:61:0d:e7:7e:61:ea:d5:cc:e0:0e:77:a2:c5:51:8a:bc:05:
06:91:2f:e6:f6:1d:d6:48:42:73:49:f3:b2:05:1a:fc:fc:7a:
64:ca:10:b0:5d:35:a0:02:2d:4c:68:9b:6c:5c:f6:95:d5:9c:
15:c7:5d:9c:d1:b9:e6:60:c4:44:56:e2:34:be:5f:29:62:16:
e6:ad:5d:19:07:82:6d:e3:72:c7:8d:83:36:44:94:c5:ca:d2:
b7:f1:ef:71:71:a8:87:2f:41:6d:10:2e:f3:93:50:2a:3a:c8:
69:7d:9e:52:4d:1b:48:71:52:3a:e1:47:87:b8:fb:c5:3e:9a:
84:ca:74:ef:a0:16:21:57:fc:ca:b0:fc:f7:67:18:0d:9f:1d:
a1:d2:14:1c:58:d8:2c:08:08:8e:7d:cc:8c:10:7e:22:aa:f3:
94:a2:58:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:44:56 2025 by rpki-client