Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/fUkQvt934NJimUvMOnyi5KoFLd8.roa
File: fUkQvt934NJimUvMOnyi5KoFLd8.roa (raw, json)
Hash identifier: hSLaFG5ZSp0dJhwKDixHIk81s+mzjfKxnivam/ECD0c=
Subject key identifier: 7D:49:10:BE:DF:77:E0:D2:62:99:4B:CC:3A:7C:A2:E4:AA:05:2D:DF
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 173CC727
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/fUkQvt934NJimUvMOnyi5KoFLd8.roa
Signing time: Sat 01 Jan 2022 16:03:43 +0000
ROA not before: Sat 01 Jan 2022 16:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 93.114.97.0/24 maxlen: 24
86.104.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389859111 (0x173cc727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d4910bedf77e0d262994bcc3a7ca2e4aa052ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:04:5d:00:e1:86:1b:42:28:3f:90:f4:1b:
36:c4:4a:1c:cc:a3:6b:32:13:5a:44:ff:c6:b7:0b:
73:48:a6:c3:10:f9:47:f7:00:29:4f:a5:b1:35:f9:
8a:14:bb:2d:46:dc:a1:54:5f:d4:48:3f:61:96:fe:
68:9e:db:d5:c3:2b:b3:ea:16:29:73:9c:bb:54:bd:
bf:3b:6c:7b:b3:3e:91:9a:d0:16:b3:bf:07:81:90:
d3:83:fd:8d:57:39:93:d7:a2:da:48:c3:4a:a4:98:
30:53:36:b4:3a:46:fb:26:42:25:58:0b:b5:26:f2:
b2:d3:18:b8:a1:29:d2:83:e6:ab:84:53:ab:88:ef:
6e:fd:7a:75:e2:8a:ce:76:1d:26:49:57:d5:8c:8a:
89:9e:5f:c6:9b:61:2d:03:41:81:90:7a:a8:f4:5f:
3c:93:51:78:7b:48:e1:83:4c:15:95:29:1b:2c:28:
21:3a:60:fe:b2:c4:f8:e3:89:fd:81:5e:e4:d1:b0:
9e:20:cb:35:81:f1:60:f4:ea:3d:95:8e:68:bc:07:
bd:d2:fe:6a:d9:f2:6f:fe:ce:94:c0:78:2a:57:1a:
0d:9a:4c:c8:ba:34:79:0d:d3:15:40:8d:27:34:c5:
9b:f6:59:63:c4:86:4d:7e:1e:bf:0e:d3:c2:33:79:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:49:10:BE:DF:77:E0:D2:62:99:4B:CC:3A:7C:A2:E4:AA:05:2D:DF
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/fUkQvt934NJimUvMOnyi5KoFLd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.9.0/24
93.114.97.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5e:2a:86:db:2d:39:03:f4:84:0f:65:73:bc:5d:1d:4f:02:
aa:48:c8:8c:2e:e7:23:cd:05:89:3a:a7:40:f4:28:5c:31:8c:
d8:9a:e9:1e:58:c6:24:a4:d7:92:b0:df:5f:5e:19:5b:f2:90:
1b:91:8e:92:a2:ba:cf:4f:d5:cb:79:da:c8:28:70:a9:96:02:
9c:5e:81:8e:f8:f6:cf:f3:e7:c3:f3:f3:e6:57:74:00:37:a7:
8b:b4:70:1c:25:b1:79:43:df:26:cb:3b:76:1e:8a:d4:20:66:
77:0d:b9:da:f5:bb:7b:1d:c0:33:f7:8a:b9:8e:ee:53:30:46:
ab:9d:db:5c:2a:73:5b:4a:8b:dc:e2:0c:a3:96:03:52:77:72:
c9:f4:4d:e7:9e:ae:02:6e:a7:42:e5:30:ee:c2:4f:17:be:6e:
ef:4e:ab:f6:d9:93:24:e9:24:94:a1:c0:f2:3f:a3:cf:0d:17:
c4:63:66:d5:4e:4d:a6:8b:1d:93:49:51:5f:58:91:0d:f6:01:
c4:c8:45:2a:ab:5e:b8:6b:e3:ed:4f:a9:7a:ed:6e:04:cb:e8:
22:99:c9:44:66:d2:be:a6:a8:c2:c0:fb:92:bf:af:3e:59:f2:
e0:72:d3:5d:7b:cd:47:d1:7f:33:55:6b:7e:30:cc:db:cb:58:
ef:2d:cc:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:05 2025 by rpki-client