Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/6ef23e-99ba-4c69-92e3-6bb7080409b4/1/o7GT2pQcCgOW8lIAvYh-H8pick4.roa
File: o7GT2pQcCgOW8lIAvYh-H8pick4.roa (raw, json)
Hash identifier: ehel9+mBHZMW/y9XpA3vAGegguZWAdswSFYq5f3C1Ow=
Subject key identifier: A3:B1:93:DA:94:1C:0A:03:96:F2:52:00:BD:88:7E:1F:CA:62:72:4E
Certificate issuer: /CN=4fb3a8a4a0d8c5ae01a9695b041ed2c6d0296a9e
Certificate serial: 01933B
Authority key identifier: 4F:B3:A8:A4:A0:D8:C5:AE:01:A9:69:5B:04:1E:D2:C6:D0:29:6A:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7OopKDYxa4BqWlbBB7SxtApap4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/6ef23e-99ba-4c69-92e3-6bb7080409b4/1/o7GT2pQcCgOW8lIAvYh-H8pick4.roa
Signing time: Thu 21 Apr 2022 10:31:35 +0000
ROA not before: Thu 21 Apr 2022 10:31:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56970
IP address blocks: 176.124.56.0/24 maxlen: 24
176.124.57.0/24 maxlen: 24
2a0e:fa40:1::/48 maxlen: 48
2a0e:fa40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103227 (0x1933b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb3a8a4a0d8c5ae01a9695b041ed2c6d0296a9e
Validity
Not Before: Apr 21 10:31:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3b193da941c0a0396f25200bd887e1fca62724e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:9e:0d:72:41:c4:9c:d1:c1:e2:9e:d7:4a:
ab:be:65:98:41:8b:6b:25:5a:ff:76:a3:66:3e:7e:
cd:81:b8:26:f2:27:47:55:5d:3c:5a:93:77:de:f5:
eb:4c:fb:7c:ff:26:97:33:73:da:7f:68:8c:2e:3a:
c4:2a:ff:8a:42:70:bc:88:31:80:a0:31:8a:3b:8d:
13:55:08:c2:e1:5f:e1:b8:59:ed:c8:3d:d4:c2:ae:
59:25:01:d8:66:91:88:af:3a:a6:bc:3c:35:24:a3:
c2:76:b9:12:c3:0d:b4:b0:9f:ff:fe:c3:d8:95:88:
ad:11:4b:37:d1:1e:0b:cd:90:05:0b:06:1e:7e:a0:
8e:18:18:76:1a:42:e9:f5:b3:d8:7f:6f:c6:f1:16:
a4:4a:ac:91:5a:ce:c5:57:78:aa:83:a9:7f:4c:b3:
d6:38:f1:8e:c0:90:39:66:7f:77:f2:a6:bf:eb:ae:
d9:bd:20:c8:32:6a:67:4d:88:7f:3d:aa:86:54:14:
5d:34:08:b8:ac:fc:08:a3:0c:30:63:13:0a:1a:1c:
f8:09:c0:5b:86:a3:2f:de:e7:5d:fd:2d:75:eb:cd:
66:d7:fe:01:e5:0d:18:27:77:f1:83:55:3b:44:29:
52:2c:8a:fa:fe:66:41:40:08:23:09:e4:bc:b9:dd:
79:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B1:93:DA:94:1C:0A:03:96:F2:52:00:BD:88:7E:1F:CA:62:72:4E
X509v3 Authority Key Identifier:
keyid:4F:B3:A8:A4:A0:D8:C5:AE:01:A9:69:5B:04:1E:D2:C6:D0:29:6A:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7OopKDYxa4BqWlbBB7SxtApap4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6ef23e-99ba-4c69-92e3-6bb7080409b4/1/o7GT2pQcCgOW8lIAvYh-H8pick4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6ef23e-99ba-4c69-92e3-6bb7080409b4/1/T7OopKDYxa4BqWlbBB7SxtApap4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.56.0/23
IPv6:
2a0e:fa40::/47
Signature Algorithm: sha256WithRSAEncryption
74:18:d1:55:ea:16:32:c8:7b:d4:d7:5d:08:93:a7:dd:37:d4:
cc:93:9d:6b:7a:b2:20:d7:fd:9d:4e:cb:1f:a7:b5:ca:a9:3e:
d4:de:10:62:a7:d2:21:60:d0:9b:27:48:bb:4c:a2:fc:94:b8:
47:a7:52:3e:c7:0d:1f:66:5e:6b:e8:a8:83:3f:e1:25:84:16:
44:2f:74:05:4e:61:e1:a2:84:32:ba:01:c4:c6:47:20:13:2f:
ec:55:5e:16:56:84:05:c2:1d:6c:ba:18:a1:53:4a:ad:f2:4b:
db:74:27:09:ee:8b:15:3b:bd:41:96:76:42:43:d3:da:3c:5c:
61:e0:77:ca:de:9a:98:0a:5f:56:6d:70:c4:3a:31:ec:b3:b2:
d7:42:39:b5:b8:d3:fc:09:43:2f:b1:40:c4:4c:07:c2:73:c3:
76:bd:8e:7b:95:ee:23:a4:52:fe:b5:ff:b5:1a:29:e3:47:36:
c0:c9:f9:78:b9:08:0e:34:15:1c:43:f8:61:0d:98:e1:f2:6b:
41:ca:5c:13:2b:93:24:05:fb:84:74:b0:c4:4a:ab:56:c5:5a:
cf:0c:d7:68:da:7e:74:99:7c:06:db:a3:30:63:7d:00:58:c3:
83:5f:42:c3:74:bd:58:d0:13:46:ee:60:66:db:5b:bf:9f:f9:
4c:e4:92:f5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIDAZM7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRm
YjNhOGE0YTBkOGM1YWUwMWE5Njk1YjA0MWVkMmM2ZDAyOTZhOWUwHhcNMjIwNDIx
MTAzMTM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhM2IxOTNkYTk0MWMw
YTAzOTZmMjUyMDBiZDg4N2UxZmNhNjI3MjRlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAydaeDXJBxJzRweKe10qrvmWYQYtrJVr/dqNmPn7Ngbgm8idH
VV08WpN33vXrTPt8/yaXM3Paf2iMLjrEKv+KQnC8iDGAoDGKO40TVQjC4V/huFnt
yD3Uwq5ZJQHYZpGIrzqmvDw1JKPCdrkSww20sJ///sPYlYitEUs30R4LzZAFCwYe
fqCOGBh2GkLp9bPYf2/G8RakSqyRWs7FV3iqg6l/TLPWOPGOwJA5Zn938qa/667Z
vSDIMmpnTYh/PaqGVBRdNAi4rPwIowwwYxMKGhz4CcBbhqMv3udd/S11681m1/4B
5Q0YJ3fxg1U7RClSLIr6/mZBQAgjCeS8ud15wQIDAQABo4ICGjCCAhYwHQYDVR0O
BBYEFKOxk9qUHAoDlvJSAL2Ifh/KYnJOMB8GA1UdIwQYMBaAFE+zqKSg2MWuAalp
WwQe0sbQKWqeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VDdPb3BLRFl4YTRCcVdsYkJCN1N4dEFwYXA0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iYi82ZWYyM2UtOTliYS00YzY5LTkyZTMtNmJiNzA4MDQwOWI0LzEv
bzdHVDJwUWNDZ09XOGxJQXZZaC1IOHBpY2s0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi82
ZWYyM2UtOTliYS00YzY5LTkyZTMtNmJiNzA4MDQwOWI0LzEvVDdPb3BLRFl4YTRC
cVdsYkJCN1N4dEFwYXA0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAG
CCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBsHw4MA8EAgACMAkDBwEqDvpAAAAw
DQYJKoZIhvcNAQELBQADggEBAHQY0VXqFjLIe9TXXQiTp9031MyTnWt6siDX/Z1O
yx+ntcqpPtTeEGKn0iFg0JsnSLtMovyUuEenUj7HDR9mXmvoqIM/4SWEFkQvdAVO
YeGihDK6AcTGRyATL+xVXhZWhAXCHWy6GKFTSq3yS9t0JwnuixU7vUGWdkJD09o8
XGHgd8rempgKX1ZtcMQ6MeyzstdCObW40/wJQy+xQMRMB8Jzw3a9jnuV7iOkUv61
/7UaKeNHNsDJ+Xi5CA40FRxD+GENmOHya0HKXBMrkyQF+4R0sMRKq1bFWs8M12ja
fnSZfAbbozBjfQBYw4NfQsN0vVjQE0buYGbbW7+f+UzkkvU=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:40 2025 by rpki-client