Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/pMgQwz8HEaSGj3U2GJo8KPm6Gwg.roa
File: pMgQwz8HEaSGj3U2GJo8KPm6Gwg.roa (raw, json)
Hash identifier: k2a6U8JmjlFpqguxP+4d9z0oEQ/rrDHXZ4QkEer1fiM=
Subject key identifier: A4:C8:10:C3:3F:07:11:A4:86:8F:75:36:18:9A:3C:28:F9:BA:1B:08
Certificate issuer: /CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Certificate serial: 019B100C
Authority key identifier: EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/pMgQwz8HEaSGj3U2GJo8KPm6Gwg.roa
Signing time: Sat 01 Jan 2022 02:01:50 +0000
ROA not before: Sat 01 Jan 2022 02:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49539
IP address blocks: 217.78.56.0/24 maxlen: 24
212.106.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26939404 (0x19b100c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Validity
Not Before: Jan 1 02:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4c810c33f0711a4868f7536189a3c28f9ba1b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:07:8b:46:19:e9:21:22:aa:4c:b1:81:af:cf:
ca:3e:f9:24:8c:20:f7:de:be:c0:8e:d2:0f:c6:af:
d2:5a:83:61:d6:cc:d5:df:01:69:69:7d:44:65:5c:
ac:85:92:2d:cc:d8:6b:42:a0:72:5f:50:bb:57:39:
31:96:6c:2c:d8:07:2a:e2:1c:51:86:f0:c9:6e:f1:
73:c8:65:b6:7d:a7:71:79:4c:b2:12:0c:e0:8c:5d:
3b:3f:cb:ac:c9:3b:af:8b:7c:02:de:11:6c:4c:63:
0e:3e:b1:ca:7f:c1:f4:c4:ca:5e:b7:82:12:dd:b4:
c2:40:97:12:f9:7b:52:7b:16:f5:04:2b:0b:60:aa:
1e:86:81:0e:10:b1:8a:5c:26:93:07:4f:eb:30:a2:
d4:25:6e:20:29:a3:66:ba:bb:54:f8:e1:65:c1:26:
88:5d:86:03:2a:17:ba:c7:70:d4:f8:08:c7:a1:31:
bf:91:3f:ea:95:3a:fc:0a:3b:44:16:94:95:8e:9a:
32:dd:e1:f5:8d:3d:7a:6d:35:a5:97:54:18:ce:cd:
50:06:1d:2a:29:1f:88:9f:1b:90:a4:3e:2c:f6:04:
33:ac:4a:4c:5c:25:81:46:52:88:92:13:9b:7a:81:
81:3c:1c:09:55:2b:89:63:30:70:17:0d:c6:bf:45:
09:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C8:10:C3:3F:07:11:A4:86:8F:75:36:18:9A:3C:28:F9:BA:1B:08
X509v3 Authority Key Identifier:
keyid:EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/pMgQwz8HEaSGj3U2GJo8KPm6Gwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7DpjPvLAglGlhgNWLlaqbvqT7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.106.73.0/24
217.78.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a6:4e:e0:eb:3e:75:e9:39:94:12:2b:5d:fe:75:46:6c:f0:
c8:4d:77:76:00:e8:dc:44:1b:23:38:79:38:a0:86:e1:dd:50:
77:eb:15:64:67:d7:3b:58:fa:05:c3:71:74:77:60:df:e4:d3:
af:69:b2:fa:1f:b5:eb:e4:34:2f:0b:77:1f:13:47:ea:88:7c:
da:29:a8:6f:5e:74:39:f5:fc:9a:af:31:01:5c:8d:aa:fa:62:
6d:ad:48:68:3d:b1:b9:74:ef:39:e8:8b:10:56:0e:40:63:a1:
c2:bd:44:19:c2:57:c9:99:4e:fc:da:3d:64:9f:06:01:5b:68:
56:b5:95:0d:d6:d1:b8:56:fb:c0:0a:ad:67:07:c9:65:fe:37:
88:26:a5:13:a3:cf:24:09:2d:82:97:16:25:37:26:23:e3:dc:
00:81:2f:68:1d:7a:d3:ea:54:12:66:c2:ca:2e:22:29:25:fc:
f8:6a:ea:f7:17:75:a5:b7:c8:1c:8e:f6:38:2f:c5:f4:26:79:
66:c8:4a:b4:10:fb:d2:8a:74:4b:5b:ff:d0:a8:4d:30:fe:40:
c4:4d:60:14:c0:25:8a:71:b7:73:a4:96:b9:f5:98:f7:51:7a:
b5:4d:0b:14:7c:0a:de:fe:b6:ea:41:f8:71:33:78:ea:06:a4:
b4:12:75:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:48 2025 by rpki-client