Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/564f3a-52d6-4d09-81e2-efa9391f7d9e/1/c7y3JH2wdRsEptHQrqAgMlYJRgU.roa
File: c7y3JH2wdRsEptHQrqAgMlYJRgU.roa (raw, json)
Hash identifier: sOHmGkn7Qq06ksg9iZwPAqSGZvCkRLIdsB8BHvhDaBk=
Subject key identifier: 73:BC:B7:24:7D:B0:75:1B:04:A6:D1:D0:AE:A0:20:32:56:09:46:05
Certificate issuer: /CN=8bcbdb51eb80226f41477a7bc50e0f961455ed83
Certificate serial: 090A42E1
Authority key identifier: 8B:CB:DB:51:EB:80:22:6F:41:47:7A:7B:C5:0E:0F:96:14:55:ED:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8vbUeuAIm9BR3p7xQ4PlhRV7YM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/564f3a-52d6-4d09-81e2-efa9391f7d9e/1/c7y3JH2wdRsEptHQrqAgMlYJRgU.roa
Signing time: Sat 01 Jan 2022 09:53:57 +0000
ROA not before: Sat 01 Jan 2022 09:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 158.110.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151667425 (0x90a42e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bcbdb51eb80226f41477a7bc50e0f961455ed83
Validity
Not Before: Jan 1 09:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73bcb7247db0751b04a6d1d0aea0203256094605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f7:67:0b:cb:ab:66:89:44:b7:53:5b:d0:f9:
15:a5:6f:9e:c8:81:2e:6e:fb:fc:f7:1d:94:0a:ed:
bc:d6:25:5d:28:85:c8:cc:b2:ec:0d:ea:93:ae:1d:
7f:e6:16:79:df:4b:91:e4:66:1d:af:1e:50:ee:05:
3b:f5:20:53:97:cf:3e:76:6d:5d:e7:af:08:33:91:
ae:69:57:fd:b1:93:5e:dd:95:b1:e6:aa:5d:f6:a7:
cc:e6:0a:a4:de:ec:af:58:b5:55:16:fc:8f:d8:89:
d4:c6:46:84:40:69:51:3f:2e:f3:c8:ce:be:dd:ca:
3a:1b:63:4f:05:21:0e:40:97:91:e8:22:cf:9d:27:
0b:df:8f:36:5d:29:c6:1d:2f:17:c7:78:cb:c9:23:
30:42:1d:ee:77:62:ac:6e:7b:b4:a6:57:65:4d:eb:
d4:72:d2:34:06:a4:e1:46:ea:ab:5a:cf:4e:b7:a6:
5f:4f:97:64:54:94:0f:5e:54:b0:cf:3c:77:24:ec:
cc:35:a2:45:85:e6:0a:0d:d7:92:b1:5c:d5:4c:79:
62:50:36:5f:20:b0:11:3a:45:1f:b1:b2:69:ed:e4:
e5:8c:b9:d3:81:56:73:08:ea:fa:56:91:24:15:ba:
c3:7d:12:3c:f1:89:ed:dd:c1:54:c8:62:ce:70:6f:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BC:B7:24:7D:B0:75:1B:04:A6:D1:D0:AE:A0:20:32:56:09:46:05
X509v3 Authority Key Identifier:
keyid:8B:CB:DB:51:EB:80:22:6F:41:47:7A:7B:C5:0E:0F:96:14:55:ED:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8vbUeuAIm9BR3p7xQ4PlhRV7YM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/564f3a-52d6-4d09-81e2-efa9391f7d9e/1/c7y3JH2wdRsEptHQrqAgMlYJRgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/564f3a-52d6-4d09-81e2-efa9391f7d9e/1/i8vbUeuAIm9BR3p7xQ4PlhRV7YM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:7b:8b:83:5f:cb:65:ab:9f:c6:57:ef:33:0c:7d:e8:aa:5d:
f7:74:97:6d:7f:4d:c6:ec:0a:3e:0e:6c:1f:fd:e7:6a:b1:29:
3b:16:59:68:ef:dd:0c:35:d8:74:df:70:9b:35:6c:d8:5f:21:
32:5d:d8:e1:57:18:c8:1d:22:f6:5c:c4:7a:11:08:47:00:b9:
c7:70:fb:7f:a8:da:b7:3f:55:91:2f:f8:1b:d2:20:6d:56:2f:
f8:1e:80:41:af:88:08:cb:7c:1c:db:68:8b:3c:d6:64:92:52:
e6:79:92:92:7c:3e:3a:0f:17:1b:d8:09:47:0c:91:76:b9:3c:
52:95:a9:ac:b7:87:0a:29:5c:f5:3d:06:d4:4f:20:74:a0:0b:
b2:96:a4:1f:5b:5f:3a:99:d4:0e:f9:a1:be:fa:d8:d5:af:1e:
02:f8:4b:a7:15:43:30:bd:b3:fc:1a:da:25:17:83:84:c4:93:
b7:d2:47:09:4d:02:d3:ed:fa:8f:b9:5b:bb:64:16:2a:22:c7:
2c:78:9a:c2:3f:ba:28:f8:11:a1:9e:b3:e0:2e:c7:3d:6b:ef:
bc:68:4a:34:ae:c9:a5:23:39:dd:cd:cc:8c:29:3d:90:da:5b:
8c:87:88:43:03:92:ad:a3:20:28:36:79:dc:63:7e:76:e9:78:
a3:a0:1f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:08 2025 by rpki-client