Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/sdoKG1Z3BV5V4STLIQYs4Wn7pvM.roa
File: sdoKG1Z3BV5V4STLIQYs4Wn7pvM.roa (raw, json)
Hash identifier: lBqVmhsi3c+ZDrxXZx1TUJIvLBoV1kHDXMTOyO/3FXA=
Subject key identifier: B1:DA:0A:1B:56:77:05:5E:55:E1:24:CB:21:06:2C:E1:69:FB:A6:F3
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 0189ED54639FF18BDD73976E0D09D1DE729B
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/sdoKG1Z3BV5V4STLIQYs4Wn7pvM.roa
Signing time: Sun 13 Aug 2023 05:17:57 +0000
ROA not before: Sun 13 Aug 2023 05:17:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210016
IP address blocks: 188.72.14.0/24 maxlen: 24
188.72.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:54:63:9f:f1:8b:dd:73:97:6e:0d:09:d1:de:72:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Aug 13 05:17:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1da0a1b5677055e55e124cb21062ce169fba6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:94:4b:7f:eb:39:43:9e:0b:27:8e:3c:30:07:
c4:41:35:8e:a4:5c:47:45:a4:22:d3:94:c5:f8:a4:
6e:94:33:3e:a0:f9:07:b5:80:4e:b6:89:96:51:dd:
40:a1:85:f6:90:7f:7b:e6:cc:6f:5d:13:dc:54:eb:
d9:17:4d:7f:f7:f1:23:58:e5:b6:c3:3e:83:dc:1d:
ac:7b:ad:e2:5d:a4:1e:6e:e9:59:2e:47:f1:49:0e:
9c:7f:de:8d:cc:4a:f9:82:c3:26:18:b3:8c:39:c8:
17:55:a6:1a:80:88:5a:ff:54:07:7d:10:9d:e6:bc:
70:bd:6a:98:94:42:e2:ab:e2:53:a5:b1:d3:58:9c:
a2:1c:0a:2b:70:a2:04:ff:03:4d:8b:46:9d:60:cc:
29:d1:d4:67:23:27:fd:75:21:9e:e5:58:c4:a6:05:
b4:ac:4d:ed:5a:ed:1f:bc:7d:83:75:55:27:70:5a:
18:18:0e:45:d7:8a:cb:83:6c:4f:14:9b:6d:22:df:
25:72:a1:10:10:d5:9d:65:d0:ed:6f:20:20:3c:db:
f1:ca:b5:ad:cc:32:73:81:4f:97:47:51:43:d4:cc:
12:81:3a:3f:da:2f:58:cb:e9:25:70:21:fe:8c:dc:
33:5c:97:7c:52:29:d0:3b:fd:2b:e7:7e:c1:03:8f:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:DA:0A:1B:56:77:05:5E:55:E1:24:CB:21:06:2C:E1:69:FB:A6:F3
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/sdoKG1Z3BV5V4STLIQYs4Wn7pvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.13.0-188.72.14.255
Signature Algorithm: sha256WithRSAEncryption
6c:30:82:3a:10:c1:b8:27:33:d3:db:8d:29:65:5f:5e:16:92:
25:d6:11:d7:b5:8c:6e:c8:c2:a3:dd:47:05:7a:0d:b7:27:c9:
92:2d:06:bd:96:d4:46:83:bd:85:54:e7:ed:89:de:96:8e:c7:
7f:45:35:60:74:3b:92:bc:a2:d7:7f:a7:53:cb:35:9e:db:99:
63:13:28:13:b4:1e:32:eb:f0:dd:84:f6:41:27:23:12:4a:cf:
8e:09:98:ab:a5:80:2b:16:d0:90:c2:2f:df:e0:9e:c1:74:17:
e6:e0:29:55:7f:a5:79:c8:a4:ee:ab:4b:ec:01:d5:4c:97:f5:
bd:da:99:44:b6:7e:ae:77:3a:f2:aa:25:bd:9c:17:4f:6c:5b:
92:1f:ec:fb:8a:36:07:b4:e6:d0:f2:d4:7e:5f:90:7f:4c:cf:
dd:19:84:16:6e:61:88:2b:15:84:ad:b8:e8:38:c3:11:33:49:
e3:00:ce:01:ec:07:22:b9:d0:08:c9:b7:82:fc:a0:95:50:e2:
48:54:48:84:8b:20:1e:ac:a2:3e:74:c1:da:5c:a5:7a:94:22:
a3:08:1d:43:53:c7:94:e5:93:2e:fa:c4:68:2e:77:e1:5f:d7:
46:a0:b7:e2:2c:1b:75:36:35:bf:4e:7d:24:91:88:9c:4a:f1:
59:51:ad:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:33:03 2025 by rpki-client