Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4pAnSiPjd82-P8jeuz9o7YmMHOQ.roa
File: 4pAnSiPjd82-P8jeuz9o7YmMHOQ.roa (raw, json)
Hash identifier: aJmwetRGPBsaSzWBgbFNi7PkH6qcEH6Z7wHDBhbki44=
Subject key identifier: E2:90:27:4A:23:E3:77:CD:BE:3F:C8:DE:BB:3F:68:ED:89:8C:1C:E4
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01856ED4F1488E658DB84F8147966A1D83BE
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4pAnSiPjd82-P8jeuz9o7YmMHOQ.roa
Signing time: Sun 01 Jan 2023 19:35:27 +0000
ROA not before: Sun 01 Jan 2023 19:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59530
IP address blocks: 5.8.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:f1:48:8e:65:8d:b8:4f:81:47:96:6a:1d:83:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 19:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e290274a23e377cdbe3fc8debb3f68ed898c1ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:7f:53:67:9b:4f:bc:fe:4c:c3:08:a8:81:
99:a5:f0:b8:31:f9:66:8f:77:7f:39:d8:53:6d:70:
af:df:43:05:03:b8:c9:7a:4d:0f:16:c5:22:de:97:
b9:17:13:20:eb:8b:e6:f2:32:6b:06:fa:c2:5b:cf:
99:16:ea:78:65:20:ce:21:c8:12:1a:1c:ff:dd:26:
4c:91:55:42:ec:ff:09:4a:ea:e1:5a:e4:be:62:b2:
59:62:ba:28:ac:2a:8a:30:2e:05:7a:5f:1a:91:b4:
03:06:70:62:22:60:0e:f0:bd:99:1e:d8:18:a7:49:
fb:fb:c4:a8:a8:d6:af:d6:0f:79:6e:36:df:af:29:
0e:0c:46:78:0b:7b:be:af:cd:da:ce:6c:3d:39:89:
b1:90:7b:c8:ad:d7:d1:5a:72:dc:e8:03:72:fa:5f:
43:63:fc:3a:26:35:49:e4:6d:7d:31:db:c9:fa:9d:
2b:ad:d4:3d:2e:18:a4:60:1f:d7:60:13:68:b7:1d:
bf:f6:3c:c9:ca:f0:02:86:30:c7:8e:75:8e:0e:e3:
7c:14:26:d8:00:e3:a7:54:14:be:90:e3:57:c5:46:
de:0f:2c:dc:c9:f1:aa:6c:30:b8:23:b8:2e:42:5e:
ba:28:1f:20:18:39:fe:f8:d6:be:cf:62:5c:19:a4:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:90:27:4A:23:E3:77:CD:BE:3F:C8:DE:BB:3F:68:ED:89:8C:1C:E4
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4pAnSiPjd82-P8jeuz9o7YmMHOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.182.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:4e:dc:65:64:81:0e:5b:48:e3:ef:cb:10:51:75:be:00:87:
36:f7:9c:76:e5:71:f9:35:38:11:b1:61:3b:a7:c7:37:8b:d3:
97:15:bc:15:da:9e:73:2a:01:54:ca:58:98:3f:12:7c:b4:37:
6b:cc:8b:94:5b:35:8d:4e:09:53:96:18:e5:3d:5a:f8:0a:4a:
0c:5d:c2:71:16:3a:93:cc:9b:95:cb:0b:0c:56:e2:4c:1c:cd:
3a:5f:63:55:e3:68:a3:53:bc:50:1b:58:9a:e5:e2:ee:46:eb:
c9:69:72:d5:3a:7d:94:c7:ec:47:32:f1:d6:dc:d0:72:5c:d0:
38:1f:57:36:ee:3f:4b:4c:13:6b:3f:c4:72:b4:08:cf:b4:ff:
3b:a9:d6:36:ba:14:74:a0:9d:49:f1:c6:e4:0e:98:0b:fa:bc:
50:21:3c:0f:22:ff:7d:2e:23:38:49:e2:1d:c5:ce:0f:1e:59:
b9:d6:22:c8:6c:b3:17:83:f1:e4:a2:eb:14:ce:da:c8:db:d8:
2c:b0:ed:b4:07:e6:d6:0f:09:4c:da:9e:03:79:b0:67:ac:13:
eb:ea:79:a1:dc:53:ee:3e:0b:de:4b:3a:2d:92:88:72:73:73:
05:89:99:21:9f:89:13:63:75:cc:a5:de:65:65:29:c0:3b:53:
0f:7a:b7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:36:10 2025 by rpki-client