Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/i6tdUNqSrkfsgrHi36MAz0qgGvA.roa
File: i6tdUNqSrkfsgrHi36MAz0qgGvA.roa (raw, json)
Hash identifier: 40yowU+2Rj9r1HPj9Cc4aBMxYXhJQtc1VXgWM1lQHY0=
Subject key identifier: 8B:AB:5D:50:DA:92:AE:47:EC:82:B1:E2:DF:A3:00:CF:4A:A0:1A:F0
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 02A97D7C
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/i6tdUNqSrkfsgrHi36MAz0qgGvA.roa
Signing time: Sat 01 Jan 2022 13:01:18 +0000
ROA not before: Sat 01 Jan 2022 13:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 262287
IP address blocks: 89.19.42.0/23 maxlen: 32
83.229.76.0/22 maxlen: 32
93.114.10.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44662140 (0x2a97d7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Jan 1 13:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bab5d50da92ae47ec82b1e2dfa300cf4aa01af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c3:16:80:02:55:e6:a3:4b:d5:cf:c8:a6:0b:
13:a4:43:a0:23:d5:11:12:2b:d7:24:4f:37:d7:99:
a7:2f:85:85:ab:1f:a7:35:cb:37:01:39:32:96:1c:
2d:89:b1:24:89:71:b2:bc:fe:e4:a7:fe:90:df:4b:
d0:72:81:9a:0c:a8:32:90:a6:f1:cc:3e:a1:04:83:
c2:74:4a:b4:0f:d7:b9:10:b4:6e:7a:30:7f:5b:18:
bd:b1:df:a4:00:c6:46:ee:8c:aa:02:37:7b:4d:75:
ff:b4:4c:8a:f0:b3:40:7c:d2:5f:e1:c0:da:02:3d:
bb:e8:1d:39:aa:8a:cb:c5:c4:b2:4d:29:4d:c5:49:
f3:be:e3:9a:b8:a8:b9:f3:06:a5:ac:44:43:34:ff:
0f:90:c5:67:fa:e2:de:ed:4e:e4:cc:eb:b3:ff:ba:
ec:b9:6e:33:6d:62:dd:5e:2b:7a:a3:9e:d8:cb:4c:
62:b9:27:e1:a1:ea:a7:c6:b1:de:cf:15:14:72:d9:
7d:83:e6:f3:42:20:66:5d:ab:95:d4:a5:9c:fc:bd:
af:23:2f:12:75:41:a3:5f:59:ca:5a:63:ca:68:78:
71:96:a8:5b:48:6f:d9:03:06:47:e0:15:15:55:f9:
52:c5:21:9a:1f:28:1a:c4:b5:86:2c:12:d7:2d:8d:
4e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AB:5D:50:DA:92:AE:47:EC:82:B1:E2:DF:A3:00:CF:4A:A0:1A:F0
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/i6tdUNqSrkfsgrHi36MAz0qgGvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.76.0/22
89.19.42.0/23
93.114.10.0/23
Signature Algorithm: sha256WithRSAEncryption
31:f9:d2:a3:7e:79:a9:b5:96:ad:e3:fe:3a:5f:80:09:ae:3d:
05:6b:cd:98:5e:81:bf:b5:98:0d:d2:c1:f5:85:2d:14:dd:10:
94:b7:84:cb:ce:e3:ea:e4:9e:91:ba:4b:ff:bb:64:9f:1e:01:
6f:6e:ef:f4:67:c7:07:08:1d:85:39:79:c8:b4:43:95:60:43:
45:04:81:91:0e:ea:e9:9e:38:4b:e4:fe:2d:27:4a:e0:e7:c5:
fc:b9:17:cf:4e:26:1f:fc:3c:2c:c9:43:3f:f3:b3:9f:95:9b:
89:15:a0:44:3f:92:33:61:88:4b:dc:9e:22:03:d1:da:62:19:
ef:3b:b8:91:22:a7:d9:98:7b:63:cb:6b:a8:3c:5f:2d:81:3b:
13:ab:f1:d3:72:23:cf:18:7f:5c:ea:15:de:6c:a6:12:d9:14:
a6:ec:21:b6:df:aa:dc:86:cb:8c:2b:93:41:df:c9:79:8b:59:
fb:e8:2e:54:bb:f8:a1:f7:09:52:42:01:f1:04:07:b3:17:1e:
fc:18:e3:c8:d2:12:0a:63:1a:f7:d3:b8:af:7e:63:ee:5f:4e:
c4:28:a9:b3:01:37:21:8b:52:2a:bc:d6:06:b0:45:fa:f6:02:
2d:d7:1a:2d:ac:c5:81:e6:4a:41:e3:1b:2b:85:ac:12:25:db:
de:70:3f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:30:32 2025 by rpki-client