Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/TWORh4HzRXad3GtgAU5GMskGeaU.roa
File: TWORh4HzRXad3GtgAU5GMskGeaU.roa (raw, json)
Hash identifier: 4krrGhMMqAg/GuoGqjjSwpmAdKzd9nwOhi2suJNdxj4=
Subject key identifier: 4D:63:91:87:81:F3:45:76:9D:DC:6B:60:01:4E:46:32:C9:06:79:A5
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 0189488F32695A078A8245DA2F95600E291F
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/TWORh4HzRXad3GtgAU5GMskGeaU.roa
Signing time: Wed 12 Jul 2023 05:24:51 +0000
ROA not before: Wed 12 Jul 2023 05:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212460
IP address blocks: 188.72.1.0/24 maxlen: 24
188.72.0.0/24 maxlen: 24
188.72.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:48:8f:32:69:5a:07:8a:82:45:da:2f:95:60:0e:29:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Jul 12 05:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d63918781f345769ddc6b60014e4632c90679a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fd:84:fb:9f:8c:c5:e5:a3:ea:36:c4:17:03:
34:d2:68:74:9e:97:04:48:b8:6f:50:ae:1c:5b:83:
93:16:ca:7d:12:45:32:61:f8:c6:84:27:7e:83:84:
5e:1f:b1:4a:ab:9b:46:b2:39:a4:49:65:46:7f:db:
0a:39:e7:b1:de:43:c3:ee:63:cf:e5:0c:ec:7b:46:
72:db:11:7a:98:de:c3:0d:0f:64:78:af:0c:01:6f:
bf:6d:42:49:07:c3:d9:6a:5f:55:42:76:75:e2:de:
52:3d:93:ae:af:c9:3a:29:f6:eb:91:09:b7:d9:ff:
19:22:ea:3c:40:c5:11:0d:e4:0b:41:7a:e7:ac:1d:
b7:fa:cc:ea:6e:5c:aa:7e:27:f2:ad:60:85:f4:6b:
2c:d9:f2:90:e6:24:7e:06:24:d2:a4:d0:9f:a7:05:
40:63:29:82:3d:38:84:73:98:aa:60:d5:7b:10:8d:
61:6f:3d:99:22:ed:3b:4c:ca:8d:1a:ca:a1:4b:e3:
2c:da:30:d7:ca:5d:1c:46:f4:2a:51:6e:44:88:71:
1c:a1:83:dd:5e:25:d8:80:47:3d:98:ea:91:7c:55:
4d:fb:dd:7b:28:15:40:d1:4f:5a:7b:06:76:04:8b:
bd:48:88:b9:89:7b:8e:de:d3:af:68:82:e9:16:c5:
1a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:63:91:87:81:F3:45:76:9D:DC:6B:60:01:4E:46:32:C9:06:79:A5
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/TWORh4HzRXad3GtgAU5GMskGeaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.0.0/23
188.72.51.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:3f:a0:9d:5d:e1:4c:c0:ae:3a:a9:7e:83:b0:24:4c:68:4f:
72:c7:bd:b5:18:09:7e:0f:6d:e7:21:a6:5d:fb:dd:2f:97:0b:
f1:5a:12:e4:8f:27:7d:16:13:20:e6:28:9a:06:a7:52:f2:74:
02:c0:b4:89:42:d8:27:27:b1:41:57:18:8a:2b:05:21:fe:06:
74:8a:cf:04:85:c2:25:df:6f:47:4f:9a:e0:8a:95:ef:90:a1:
1d:b5:81:45:05:7b:bb:f6:90:78:b9:0d:f4:fb:ec:44:39:d0:
49:a5:de:8f:d8:47:d9:f6:50:f6:5a:e4:7d:c7:f0:0d:21:1e:
c3:7e:75:f0:4a:13:4b:0d:d9:b1:dc:72:75:eb:f7:a2:18:2f:
52:d8:52:64:6f:0b:05:2b:24:bf:9c:b2:3e:9a:42:60:7a:e1:
eb:25:57:2e:b7:f2:e3:d5:ac:dd:95:f7:39:a2:3f:cf:68:50:
51:5a:a4:69:77:f8:45:ce:91:43:b3:b5:f4:2f:b3:0a:e4:ee:
0e:cd:52:03:73:c4:c4:83:36:f5:a5:0d:31:5d:fe:db:24:91:
bd:83:cc:6d:ce:02:84:2a:a0:f4:9a:b1:35:f2:09:4d:0a:9c:
16:01:93:9b:cb:44:93:f9:ae:40:b5:24:d8:a5:b1:12:0d:15:
46:25:29:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:19:53 2025 by rpki-client