Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/1tssHb5bN29uliEH8ILfSMNpLBM.roa
File: 1tssHb5bN29uliEH8ILfSMNpLBM.roa (raw, json)
Hash identifier: 5Hji1XnZv6vYTRgKHbVl7JTLm6TwWgVcTRPthyjp544=
Subject key identifier: D6:DB:2C:1D:BE:5B:37:6F:6E:96:21:07:F0:82:DF:48:C3:69:2C:13
Certificate issuer: /CN=0d04913d043dbb117cf6b9323c8ab247cb52e251
Certificate serial: 19409B9D
Authority key identifier: 0D:04:91:3D:04:3D:BB:11:7C:F6:B9:32:3C:8A:B2:47:CB:52:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQSRPQQ9uxF89rkyPIqyR8tS4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/1tssHb5bN29uliEH8ILfSMNpLBM.roa
Signing time: Sun 10 Apr 2022 16:08:53 +0000
ROA not before: Sun 10 Apr 2022 16:08:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2586
IP address blocks: 176.124.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423664541 (0x19409b9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d04913d043dbb117cf6b9323c8ab247cb52e251
Validity
Not Before: Apr 10 16:08:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6db2c1dbe5b376f6e962107f082df48c3692c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:00:75:b2:f4:49:dd:06:b8:21:e9:dd:70:af:
7b:70:40:db:d6:56:d9:46:06:ae:5e:a0:92:5d:4e:
05:fa:93:2a:39:06:1d:5e:d3:2c:65:7d:ba:93:68:
2c:d5:05:35:54:45:91:ed:81:79:d5:dc:cc:6f:3a:
0a:b8:84:ca:9b:8b:04:23:3a:33:1d:77:3b:d3:96:
29:cc:f8:af:8a:98:fe:3a:e5:44:9b:df:6a:82:55:
58:a1:8f:99:93:63:8c:bb:91:1d:5e:8c:02:44:2c:
5c:77:86:6e:33:d7:4d:b7:ae:27:92:2c:ec:a7:29:
fd:84:b3:aa:c8:cc:25:e8:30:bf:fb:42:2b:b2:5a:
27:33:a5:88:68:88:f8:6c:40:c6:4d:40:be:b1:f8:
21:81:9c:f5:43:e2:54:b6:9b:8d:86:9a:0e:72:c5:
37:0b:b1:cb:23:d1:e4:71:86:15:17:28:cb:5f:ba:
fa:73:a5:b0:ca:52:c8:32:d1:02:c1:8f:82:4f:89:
67:b6:e0:16:a5:d9:45:ae:28:d1:ac:59:da:ad:6a:
0d:c5:ac:31:ad:7f:5d:5d:93:6e:9a:b2:e4:44:be:
bf:d9:cf:71:10:ee:79:db:86:c8:27:54:47:bf:40:
da:bd:12:e3:d0:7e:25:40:a0:df:13:f2:f8:ac:48:
a6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DB:2C:1D:BE:5B:37:6F:6E:96:21:07:F0:82:DF:48:C3:69:2C:13
X509v3 Authority Key Identifier:
keyid:0D:04:91:3D:04:3D:BB:11:7C:F6:B9:32:3C:8A:B2:47:CB:52:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQSRPQQ9uxF89rkyPIqyR8tS4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/1tssHb5bN29uliEH8ILfSMNpLBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/DQSRPQQ9uxF89rkyPIqyR8tS4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.247.0/24
Signature Algorithm: sha256WithRSAEncryption
22:1d:76:a9:00:f3:10:e6:5f:a4:61:07:d4:6b:df:c9:dd:c9:
c5:94:00:9a:f5:b7:ea:ca:06:b4:67:75:fe:b6:b5:2f:6b:17:
4b:73:9a:8d:1f:6f:cb:21:84:21:73:f1:24:ef:fe:91:0c:4c:
cd:9d:73:9a:02:31:47:77:91:06:3e:fe:d0:00:88:98:2a:a4:
68:4e:72:ab:b6:43:5d:ce:e5:4e:7b:cb:e3:df:d4:4a:1e:ad:
14:c5:83:c3:3b:00:ce:7d:f0:2a:ba:f3:c0:33:b7:01:7e:65:
e0:66:a3:5c:30:aa:36:f2:d1:0e:e6:a0:0f:57:ef:de:66:7a:
dd:f2:8b:c9:f6:42:b4:66:d4:e5:c3:77:3a:35:fc:ba:5c:61:
e8:ef:32:bf:22:a4:6b:67:f7:93:0d:14:33:93:89:dc:78:25:
f5:b3:54:8e:86:73:4a:94:12:95:45:a4:95:61:c1:60:2e:1d:
28:3a:75:3b:68:a4:b7:90:13:bb:87:03:f6:a3:93:88:b9:b2:
e3:7e:38:27:26:74:c0:7b:05:e0:49:ba:29:06:88:d5:93:18:
b3:71:42:bb:59:fb:27:e3:f9:54:b9:24:88:6c:c8:6e:a6:e9:
5c:08:8c:d0:93:ed:a0:fe:4a:57:2a:4d:06:da:e9:08:8a:21:
3b:b6:7d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:06 2025 by rpki-client