Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/n63x-j5-lxVBO9eYvrRpBCU7atQ.roa
File: n63x-j5-lxVBO9eYvrRpBCU7atQ.roa (raw, json)
Hash identifier: KuzP94Pq7Gc5JwNAI0NHualPt+1AJDiQH/wp3VD3onQ=
Subject key identifier: 9F:AD:F1:FA:3E:7E:97:15:41:3B:D7:98:BE:B4:69:04:25:3B:6A:D4
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01856E41E41A9CFD182C112BFFCDFFC00217
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/n63x-j5-lxVBO9eYvrRpBCU7atQ.roa
Signing time: Sun 01 Jan 2023 16:54:50 +0000
ROA not before: Sun 01 Jan 2023 16:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202637
IP address blocks: 188.213.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:e4:1a:9c:fd:18:2c:11:2b:ff:cd:ff:c0:02:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fadf1fa3e7e9715413bd798beb46904253b6ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d6:28:f6:64:9f:83:0f:8d:d2:c8:51:d3:23:
a8:22:35:3f:89:fc:91:65:0d:09:cc:1d:86:20:ed:
c8:9b:bb:aa:c7:0f:9b:3b:2f:e5:b9:c0:49:66:b7:
3d:ea:ca:d6:1d:c0:b7:cc:82:26:df:53:c5:c0:80:
8a:48:3b:6a:a0:0e:4e:b1:67:42:98:39:5c:d2:61:
00:c1:97:4b:0a:08:a7:05:bb:ab:13:6a:00:07:24:
f7:12:04:4a:9e:97:8e:f3:76:d9:9d:79:17:98:e0:
cb:cc:40:68:87:9e:bb:99:b6:a8:1f:3b:a2:cb:ef:
ac:b4:1c:00:5a:fb:bc:f6:47:d9:d1:b4:aa:6f:e4:
62:36:97:d8:e1:e4:0a:7d:33:8b:90:35:c5:9d:a1:
55:ee:d7:79:76:d2:de:a0:ca:0d:5b:97:bf:21:21:
36:9e:e8:da:1d:d6:69:76:e4:de:68:96:b8:8a:71:
ea:39:7f:40:a1:84:1c:d7:6b:fc:bf:a4:00:98:0e:
fd:d4:ad:fe:41:f7:70:0c:f8:14:ce:84:74:86:59:
21:05:23:74:1e:aa:4d:f1:d6:9f:0f:6f:37:bc:8d:
bd:55:e9:f1:a3:2c:bc:85:a5:34:88:c1:61:38:10:
10:9a:b8:56:c2:7d:0b:eb:4e:b3:cf:68:8b:61:23:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AD:F1:FA:3E:7E:97:15:41:3B:D7:98:BE:B4:69:04:25:3B:6A:D4
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/n63x-j5-lxVBO9eYvrRpBCU7atQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:bd:49:f6:52:2d:50:08:46:ad:83:b5:4c:64:47:80:94:d1:
cd:f0:e1:7a:4d:58:11:24:8d:6e:8b:a4:e4:b8:27:11:b8:d0:
7d:4d:12:b5:16:d7:9c:4c:6e:e1:18:1e:c0:3b:0e:ac:d0:f8:
18:42:f9:bc:17:bc:b9:10:25:da:8b:17:2a:99:46:ba:6b:51:
f6:45:a0:de:61:ae:ab:fe:23:3d:e6:74:5e:c4:ee:4d:22:53:
92:7a:3c:e0:72:cf:b2:25:e6:00:f0:55:88:9f:ae:1d:6f:c0:
69:9a:8a:c0:89:67:82:04:a9:89:2f:f2:d4:d2:8f:aa:ed:92:
c7:65:eb:08:70:cc:6d:33:0d:b8:5f:36:40:9d:21:e5:15:8b:
f1:c9:08:00:84:50:26:a6:06:f4:6f:bc:aa:8c:62:45:fd:bb:
72:6b:1a:3c:e9:5d:47:ec:28:39:20:30:e9:eb:1b:f5:44:6a:
03:25:cb:15:88:6a:2a:8f:67:fd:11:21:71:26:bc:17:09:3f:
75:29:98:be:91:b3:de:20:e8:07:57:f5:5a:67:bc:48:18:4d:
85:56:49:a4:70:80:7c:de:b3:0c:7a:14:5e:26:64:bb:69:01:
81:1b:d2:c2:28:95:9a:9d:9f:c1:0e:62:23:25:1d:0c:9a:7b:
de:c1:50:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:54:18 2025 by rpki-client