Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/efbezFbaYczbcTyXRJulhP4niFY.roa
File: efbezFbaYczbcTyXRJulhP4niFY.roa (raw, json)
Hash identifier: l591f6X1oSCxnDPMbi5exCW0kFAJEhpU9JFP5eUbSHI=
Subject key identifier: 79:F6:DE:CC:56:DA:61:CC:DB:71:3C:97:44:9B:A5:84:FE:27:88:56
Certificate issuer: /CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Certificate serial: 01856F4B636A0F36D90BCF2593E3916C0F1D
Authority key identifier: 72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/efbezFbaYczbcTyXRJulhP4niFY.roa
Signing time: Sun 01 Jan 2023 21:44:49 +0000
ROA not before: Sun 01 Jan 2023 21:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207357
IP address blocks: 5.182.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:63:6a:0f:36:d9:0b:cf:25:93:e3:91:6c:0f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Validity
Not Before: Jan 1 21:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79f6decc56da61ccdb713c97449ba584fe278856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:fd:cc:ab:ed:05:77:99:ff:3a:ee:0d:76:
18:9d:a6:62:b5:d6:45:ab:7c:f0:95:fc:c6:89:d9:
f3:49:f6:a5:0d:05:60:21:32:a4:bc:e3:64:7c:cc:
63:fd:1a:fd:f7:86:59:3a:cf:db:71:ec:d3:77:f8:
a8:c0:a9:8f:b2:ab:1f:e4:21:44:5c:87:74:1f:7f:
df:34:32:8b:20:c5:08:49:b0:c2:35:c3:b4:be:ed:
35:d3:b5:7f:e7:e9:9e:ee:09:56:c0:45:9f:c3:c0:
7b:68:36:4e:37:8e:5f:27:a7:6c:d9:c9:6b:3b:34:
35:ca:37:6d:3c:1e:c8:c8:fd:c9:60:78:cc:16:71:
39:49:cb:67:a2:30:db:e3:b5:d4:b8:bb:cf:79:92:
79:0a:4d:64:9f:bf:0c:d2:f9:ed:d2:42:92:a4:15:
57:e2:15:de:b1:2e:39:96:63:2e:8b:5b:45:03:0a:
c5:8a:c2:77:e8:02:23:86:16:94:1d:17:20:d6:25:
82:4b:3e:28:c9:96:b8:8a:60:5f:69:bf:20:84:a1:
23:78:12:d2:55:df:34:a2:ef:19:69:07:7f:c3:1a:
d2:c1:b1:6c:18:30:c9:1b:59:a0:26:db:4c:e1:87:
12:a6:ae:20:58:60:b4:6b:3a:f1:81:18:25:03:61:
d5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F6:DE:CC:56:DA:61:CC:DB:71:3C:97:44:9B:A5:84:FE:27:88:56
X509v3 Authority Key Identifier:
keyid:72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/efbezFbaYczbcTyXRJulhP4niFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/cowr_Wu1A6AdAYYCvaFS1zTtVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.189.0/24
Signature Algorithm: sha256WithRSAEncryption
32:2b:2c:8a:4d:ff:58:54:ea:8b:cd:c5:25:55:4f:85:0d:c9:
2b:8b:b2:89:07:50:3d:e3:7d:f8:c6:c5:cf:3a:11:d1:72:56:
55:b3:4a:ba:57:8a:1e:42:ab:fc:94:b7:cc:9e:31:97:36:41:
4d:6c:a5:10:49:5f:f6:17:d0:7a:d6:fc:94:71:a6:99:f0:b4:
ef:9f:71:14:54:82:a1:6e:c1:4f:2c:14:d1:fb:36:81:13:58:
d7:65:a9:a2:f0:db:59:f7:79:d4:cd:60:b7:29:6c:27:ce:3a:
06:c0:f0:47:8a:34:e4:b0:07:ca:ab:71:99:15:50:48:d1:70:
1f:59:7c:8d:25:7c:1f:59:b2:b7:72:c5:74:1d:ef:bd:7f:f2:
48:e8:da:fc:20:f1:8f:14:7c:51:b1:47:33:4d:68:9a:fa:26:
ec:92:2b:e6:c4:67:cc:ec:dd:93:17:69:78:9e:53:4e:1c:b2:
19:4a:a2:68:c5:21:05:8d:6f:6c:7b:26:c2:ac:fe:6a:2f:21:
87:8b:52:d9:d0:36:43:b7:29:d1:67:e1:54:09:ce:b3:cb:f9:
c2:5f:14:e8:96:70:3f:2d:89:82:23:1e:af:52:38:10:55:87:
9d:77:eb:f6:08:7f:d4:c2:86:93:9e:29:f1:86:73:10:b2:49:
a9:8a:8c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:42:16 2025 by rpki-client