Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/SLs0jWx6C4ForIUpwBvEunv-ksg.roa
File: SLs0jWx6C4ForIUpwBvEunv-ksg.roa (raw, json)
Hash identifier: kAMrCeTqRzd3V0cqmScn8WDu0eoWHj3Cp5M0Rf4+jhU=
Subject key identifier: 48:BB:34:8D:6C:7A:0B:81:68:AC:85:29:C0:1B:C4:BA:7B:FE:92:C8
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 175F31B6
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/SLs0jWx6C4ForIUpwBvEunv-ksg.roa
Signing time: Sat 01 Jan 2022 16:04:00 +0000
ROA not before: Sat 01 Jan 2022 16:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213240
IP address blocks: 188.215.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392114614 (0x175f31b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48bb348d6c7a0b8168ac8529c01bc4ba7bfe92c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ea:37:ba:ef:e6:7d:89:ab:0d:2b:7c:f6:17:
32:b8:3b:96:26:b0:c8:0f:1b:a9:91:be:1a:01:d9:
ee:1d:07:05:b9:70:17:72:ec:68:f7:e6:6c:8e:bf:
79:78:5e:9f:eb:a1:91:f4:a2:6d:68:a5:52:2d:fc:
68:aa:67:fd:88:fd:25:be:ee:02:0c:80:e3:37:9e:
79:17:ea:f9:67:8d:5d:86:a5:02:c0:9d:fa:9b:68:
a3:bc:c6:c0:fe:e5:37:b7:6c:8d:b0:02:9d:38:cc:
b2:5d:cc:6b:87:d9:de:b3:31:ed:d6:f8:40:1f:9e:
8b:d3:a0:8e:26:93:9e:1f:e0:14:93:e3:d9:7e:f2:
2a:aa:0f:16:e5:27:2b:82:4e:2f:9b:9f:a8:f3:0a:
9f:22:ff:6a:ab:c8:14:a6:ce:ed:5c:4d:b2:30:70:
a5:b3:8f:50:66:0f:19:90:a8:b9:30:07:2e:a5:40:
90:50:01:98:7b:14:b4:0c:9a:0a:c5:8c:59:6e:4a:
ac:c3:6d:cd:95:10:e6:e9:d5:88:86:d3:fa:cf:2e:
a1:0c:c0:0f:34:eb:e4:c5:38:cf:56:d6:38:15:71:
94:0e:58:f7:ad:7b:42:79:c5:30:b1:bf:96:ff:cf:
70:34:76:4e:18:24:0e:6a:a0:07:0d:21:99:64:f9:
41:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:BB:34:8D:6C:7A:0B:81:68:AC:85:29:C0:1B:C4:BA:7B:FE:92:C8
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/SLs0jWx6C4ForIUpwBvEunv-ksg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.246.0/24
Signature Algorithm: sha256WithRSAEncryption
21:73:5f:eb:47:6a:bb:86:67:db:98:3a:ea:e3:9a:65:b4:e0:
24:56:6a:64:6e:a1:c4:8b:f5:40:2d:00:32:e1:82:4e:74:c4:
2d:bd:af:4e:08:72:07:31:85:e8:29:da:09:5b:02:3e:3c:80:
a2:23:7a:c0:c9:9a:33:54:65:74:9c:e5:95:02:61:5d:f8:5c:
82:ab:29:18:0d:6d:21:d0:ef:d7:2f:ff:78:fc:82:92:6e:45:
20:5c:87:a3:a2:79:be:dc:bf:bf:b8:6e:6f:06:fe:f9:ef:9c:
10:b3:c5:9f:46:5b:24:57:cb:36:c9:c6:55:dc:09:9f:c6:77:
8b:d7:4f:9d:f9:41:16:3b:3a:9e:3f:9e:29:5a:ef:98:6e:f4:
0b:36:1a:9d:7b:1d:c5:91:59:0d:6c:77:cc:40:40:ab:20:fa:
8d:07:a7:19:76:17:c8:c7:95:b3:47:9a:bb:cd:79:63:df:98:
f3:df:e0:de:f7:40:7b:a3:75:ce:56:2f:42:15:7f:b0:45:eb:
f2:1b:9f:c7:3e:f0:0b:93:24:3a:9b:1a:23:98:16:e5:2d:04:
24:be:de:75:3d:cd:09:52:5e:c3:73:71:07:10:7c:60:f6:d0:
63:38:8e:37:4b:85:be:ed:db:e9:cd:16:66:4a:ab:78:bc:f0:
c8:8e:d3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:10 2025 by rpki-client