Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ir6tDRl3h9RWQg5uEnBcHMBB_-o.roa
File: Ir6tDRl3h9RWQg5uEnBcHMBB_-o.roa (raw, json)
Hash identifier: tWl9w87bOULtp1qsZ3P9NupqW/9UNuBMBo5kRV+AQZg=
Subject key identifier: 22:BE:AD:0D:19:77:87:D4:56:42:0E:6E:12:70:5C:1C:C0:41:FF:EA
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 018A275646CCC64A06DEB859C78054449E6F
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ir6tDRl3h9RWQg5uEnBcHMBB_-o.roa
Signing time: Thu 24 Aug 2023 11:38:00 +0000
ROA not before: Thu 24 Aug 2023 11:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6220
IP address blocks: 83.111.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:56:46:cc:c6:4a:06:de:b8:59:c7:80:54:44:9e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: Aug 24 11:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22bead0d197787d456420e6e12705c1cc041ffea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:75:e8:33:59:2a:30:97:52:f0:87:39:fa:0a:
6f:3f:f4:aa:8d:24:93:a5:42:c0:ae:be:68:9e:30:
c5:9b:08:46:6b:b5:f0:69:7e:d0:c9:d5:33:0c:30:
33:ae:a1:84:a3:ad:65:e0:29:44:86:aa:17:0d:58:
62:eb:21:e1:aa:cb:6e:17:a8:d7:91:76:5e:99:27:
9b:fd:42:c6:57:16:be:df:70:d7:04:ff:fd:da:6a:
70:e7:d4:00:0c:60:38:61:e4:76:ee:59:96:81:14:
74:6b:d1:bf:f7:52:8b:94:ca:51:fa:0f:55:a1:1d:
9b:08:38:b1:e4:15:18:47:94:19:30:f1:18:98:90:
df:01:17:eb:4d:e9:27:e8:90:61:c5:f7:6a:84:d4:
1d:96:8b:27:35:c4:8a:d2:ef:2c:e1:5d:53:75:02:
57:ab:8a:41:15:86:f4:3a:16:17:ee:54:5a:39:10:
c2:88:e2:db:ff:3a:2c:65:8b:a9:bd:56:df:50:d1:
bd:8e:19:c7:cc:51:4b:a1:7e:8d:cd:92:f5:f8:11:
84:91:bf:26:fe:d3:af:60:8e:ab:34:eb:88:4d:60:
0d:c6:78:a2:5a:34:e1:6e:b0:68:76:f5:ec:e2:f0:
5e:95:57:76:e2:4c:68:a6:c4:62:6e:e4:15:b7:1e:
b7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BE:AD:0D:19:77:87:D4:56:42:0E:6E:12:70:5C:1C:C0:41:FF:EA
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ir6tDRl3h9RWQg5uEnBcHMBB_-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.111.4.0/24
Signature Algorithm: sha256WithRSAEncryption
27:5e:fb:a8:ee:a5:e4:08:b9:9a:a9:76:32:46:37:c3:65:d1:
84:c2:77:bb:b9:7b:44:47:e1:bf:04:de:6e:f3:f4:f7:03:82:
85:42:b6:5a:95:d0:48:db:d0:a9:99:6c:dc:23:35:49:b6:f5:
1c:3a:c0:a6:c7:bd:bf:8e:ed:7d:67:01:12:23:1b:eb:30:fc:
9b:49:91:ff:5a:69:82:46:87:7b:ec:0c:79:dd:51:7d:e2:bb:
bd:58:18:cc:10:43:b5:8e:bc:4c:ef:02:b6:e7:42:9c:6a:3c:
8b:02:ed:27:eb:94:41:68:3b:58:44:b0:a9:78:fd:09:9f:3b:
a5:f5:b3:fe:16:0d:9c:1b:de:65:2a:88:d6:41:37:17:8d:26:
45:a5:ea:d8:98:e3:03:e3:60:31:c9:3c:a1:ff:b9:dd:35:71:
fc:d3:19:92:ca:9c:0d:03:90:f7:18:3a:f1:90:f1:e1:83:47:
0a:c2:c8:73:25:f3:1f:e1:f4:fb:27:04:b6:50:c5:d4:da:42:
2d:28:7b:22:29:4a:f9:9a:c2:46:68:7b:96:28:d5:3a:58:a1:
bb:38:c4:74:19:25:7a:ec:61:7b:f4:cc:62:20:ca:25:28:56:
70:d5:c6:d7:d4:2f:d5:6a:c2:8c:65:a7:5b:7d:e8:25:4c:4c:
72:30:5f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 19:33:01 2025 by rpki-client