Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/Cb-_yqWYobqpcy-SskpqkvCSovI.roa
File: Cb-_yqWYobqpcy-SskpqkvCSovI.roa (raw, json)
Hash identifier: u8O29ndBxLEKjFAPVOyBPRyJZIadk2vnQO49GcpHKKY=
Subject key identifier: 09:BF:BF:CA:A5:98:A1:BA:A9:73:2F:92:B2:4A:6A:92:F0:92:A2:F2
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 0188CEDA2A116C5BF9F5195E8E80067C8D59
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/Cb-_yqWYobqpcy-SskpqkvCSovI.roa
Signing time: Sun 18 Jun 2023 14:13:03 +0000
ROA not before: Sun 18 Jun 2023 14:13:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210016
IP address blocks: 188.72.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ce:da:2a:11:6c:5b:f9:f5:19:5e:8e:80:06:7c:8d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Jun 18 14:13:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09bfbfcaa598a1baa9732f92b24a6a92f092a2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:58:f1:6a:36:6d:79:b1:de:5d:0c:27:6f:97:
46:e1:f9:60:f8:2c:25:dd:21:56:d1:38:21:eb:3d:
dd:50:8f:5a:d0:89:86:3f:83:33:f4:61:9a:1d:50:
db:55:8f:c7:a9:69:f6:c2:4e:a0:4d:44:7c:27:6c:
63:d9:06:07:81:71:90:66:e7:86:e4:9f:44:fd:7b:
d3:82:28:4b:d1:ce:7c:19:87:00:45:24:19:f4:e2:
2c:f3:53:ee:15:4c:c3:24:42:f8:f9:aa:2b:98:27:
62:52:02:ab:1a:49:be:b2:36:66:cb:c4:1d:fa:5a:
e6:1b:20:8c:e8:e8:08:e1:03:8d:d4:ec:78:9a:91:
9a:99:27:1d:34:a9:95:41:cb:1c:12:5f:73:aa:2d:
f0:76:14:87:aa:b9:71:98:af:c6:df:15:3a:14:bb:
4c:a3:30:c2:3d:36:0a:e6:21:3f:7a:ed:01:0e:d5:
8f:6d:d8:46:83:19:d8:c7:d3:25:be:d1:7d:03:84:
c5:62:8e:0c:0b:43:3d:95:4e:76:d2:bf:81:09:fc:
59:a2:58:4f:5e:2d:af:0c:41:81:c9:39:b7:6e:a2:
13:4e:52:99:c0:c7:8f:fb:73:90:b5:8d:7e:b9:eb:
50:ab:dd:bf:27:59:6b:9e:9d:d7:42:0a:b8:ee:43:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BF:BF:CA:A5:98:A1:BA:A9:73:2F:92:B2:4A:6A:92:F0:92:A2:F2
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/Cb-_yqWYobqpcy-SskpqkvCSovI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.13.0/24
Signature Algorithm: sha256WithRSAEncryption
69:0c:5d:35:15:cc:89:7e:a9:fa:97:94:3d:1d:f6:7d:d1:36:
56:14:ac:e1:b3:e9:89:ef:5e:9c:0a:70:91:95:77:81:5f:e3:
31:17:5e:d1:8c:34:6c:20:ba:3d:f6:31:e8:ea:3a:2b:f9:6e:
32:26:90:d3:49:05:3f:da:6b:75:df:2f:b2:39:f8:fb:2a:e5:
30:7f:d0:04:21:78:46:59:cf:cf:96:f0:57:d4:aa:cb:cc:e7:
d6:32:d4:e1:05:33:f9:35:17:99:1a:c0:ac:84:ef:19:0a:1c:
fd:02:b6:cf:61:6c:79:11:3c:88:e3:74:8d:88:34:95:1c:1e:
aa:04:e5:cf:9b:08:86:c8:2d:9d:a3:92:53:71:19:67:62:1d:
6f:4d:4c:0b:8c:bc:ab:a0:53:39:57:d1:a0:b8:cf:dd:bb:9d:
3f:99:34:b7:c4:ee:5a:a0:c4:2e:a9:f9:4b:98:52:ac:43:9d:
93:fc:71:96:cf:e3:79:cb:02:e1:8b:96:ec:ac:ce:49:b9:2a:
b1:bb:ae:f9:f3:c8:8b:1f:b0:16:87:e3:be:23:22:96:0a:1d:
c1:ca:60:a4:63:e9:46:b2:d4:f2:3d:d2:91:2d:09:e7:22:69:
f3:75:87:45:37:b8:bf:bf:3e:84:eb:d5:e8:1b:23:4e:38:c9:
11:cb:23:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:31:12 2025 by rpki-client