Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/l93RPN4llB15K4zxMMz8Cp5fxvw.roa
File: l93RPN4llB15K4zxMMz8Cp5fxvw.roa (raw, json)
Hash identifier: 1A/ekENkm2f7Za6zFfnvnPwfh1vq+hlwPQrUgt13+6M=
Subject key identifier: 97:DD:D1:3C:DE:25:94:1D:79:2B:8C:F1:30:CC:FC:0A:9E:5F:C6:FC
Certificate issuer: /CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8
Certificate serial: 01837E9B4B4BAAC8132A7AD4FDFD68FDA1D3
Authority key identifier: E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/l93RPN4llB15K4zxMMz8Cp5fxvw.roa
Signing time: Tue 27 Sep 2022 11:00:50 +0000
ROA not before: Tue 27 Sep 2022 11:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49801
IP address blocks: 78.111.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:9b:4b:4b:aa:c8:13:2a:7a:d4:fd:fd:68:fd:a1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8
Validity
Not Before: Sep 27 11:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97ddd13cde25941d792b8cf130ccfc0a9e5fc6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fb:c3:9d:2d:3b:7d:c5:73:91:18:54:3a:a7:
d9:ff:5e:a7:f8:d6:0a:d2:a0:33:0c:94:b0:d1:29:
19:c2:f6:14:db:5f:1e:ba:01:1a:eb:c9:fd:24:2d:
88:5b:71:f3:9e:84:7f:78:73:b1:41:90:f3:5d:25:
05:cd:07:c2:21:f0:ec:17:b0:cb:a9:db:70:fb:a2:
9f:b5:c7:c8:b4:e5:0b:24:24:d5:28:8b:8f:9e:70:
fa:e5:91:16:04:99:83:d6:a4:eb:79:cb:60:5a:70:
90:b7:95:51:21:b9:30:8f:43:cf:c9:12:62:31:4a:
5f:e2:ae:38:9f:e0:aa:59:eb:75:2b:6f:bd:fd:cd:
f7:cd:fe:a0:15:4a:a9:87:9d:4d:3f:40:8e:c8:38:
ed:20:24:ad:c4:29:dc:d1:ad:c1:78:e9:96:57:55:
7e:b2:90:46:1e:0e:be:5f:8a:80:e7:aa:5d:d8:a4:
ef:3b:64:6c:cb:0b:e9:ef:73:77:22:e5:a8:3e:7f:
58:fa:97:49:8a:19:e8:8f:ea:ae:8c:5a:6c:99:ab:
cf:d2:0e:47:16:18:f8:99:9d:95:17:14:9f:57:ac:
a5:78:1d:a8:16:3d:b7:d0:bd:b7:1e:5d:76:91:5f:
31:be:5a:06:ec:b2:6c:68:cf:b7:e3:01:4f:5e:6e:
3b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DD:D1:3C:DE:25:94:1D:79:2B:8C:F1:30:CC:FC:0A:9E:5F:C6:FC
X509v3 Authority Key Identifier:
keyid:E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/l93RPN4llB15K4zxMMz8Cp5fxvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/6Ul4d56TDgH7_n4MX8tBYREp1Og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.111.0.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:99:43:29:bf:92:e3:54:2e:dc:84:df:f8:8a:bc:27:2c:63:
86:ca:e6:7e:01:c5:a1:d2:b9:bb:ad:83:a5:9a:c8:06:51:1a:
0e:1f:48:34:37:b3:89:38:4f:75:4b:f3:0e:75:79:a7:87:12:
b9:2d:ea:54:83:85:80:a6:45:a1:f6:91:02:6e:67:53:5a:34:
da:fa:53:c7:8c:58:15:c0:71:c9:13:25:26:08:04:d8:26:ae:
66:9a:1c:42:ad:4c:eb:a2:91:38:c1:e4:22:a1:c8:b5:ac:7a:
51:36:f5:88:be:a7:4e:dd:38:8a:10:7b:84:a3:e1:54:d7:11:
66:d0:18:4c:ab:5b:5e:87:bd:f5:72:b7:72:cc:21:31:f9:5e:
dd:ce:53:c1:7c:dc:ec:c4:89:4e:35:2c:c9:c1:0b:a1:6c:1f:
6f:6c:63:c7:07:cd:21:a7:be:15:b0:f1:ea:b8:99:bb:4f:4b:
35:03:ad:6c:a5:b8:2e:21:c9:54:7f:5b:f0:09:a6:b6:da:5c:
36:33:d0:63:78:fd:b3:89:02:60:7e:b1:4c:6b:61:b9:72:e4:
30:be:51:31:a6:eb:cb:43:77:33:62:0d:d2:56:51:18:7a:37:
87:e7:c7:83:34:5d:37:9b:26:0b:d4:ae:51:61:fa:62:b2:49:
dd:db:55:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:09:55 2025 by rpki-client