Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/mNB3IhGQgnoJpE1Ak7N2Ixp_o3Q.roa
File: mNB3IhGQgnoJpE1Ak7N2Ixp_o3Q.roa (raw, json)
Hash identifier: wGwQJD9sRjcceuRoTnLDoEqfy+VtZFgTP4VCR8KhJnk=
Subject key identifier: 98:D0:77:22:11:90:82:7A:09:A4:4D:40:93:B3:76:23:1A:7F:A3:74
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 427CF1E5
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/mNB3IhGQgnoJpE1Ak7N2Ixp_o3Q.roa
Signing time: Sat 01 Jan 2022 14:03:21 +0000
ROA not before: Sat 01 Jan 2022 14:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 193.235.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1115484645 (0x427cf1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98d077221190827a09a44d4093b376231a7fa374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:13:6f:33:11:29:32:2e:e5:2b:11:c4:de:cc:
90:6c:0e:71:42:aa:9a:0b:7d:8e:8a:18:42:3b:21:
ac:66:de:5f:38:06:bc:36:78:bc:14:36:cc:e1:04:
78:f5:fc:df:5a:a8:72:98:30:e9:f8:0d:51:7e:af:
34:9d:a7:22:84:17:6b:3f:92:48:29:a3:c5:f2:a6:
c8:be:36:19:98:33:f2:3d:0b:38:f0:52:93:cc:56:
1b:e5:fa:89:fe:96:c5:ba:4c:fe:ba:7f:02:07:b5:
62:1e:9d:89:a8:fd:a3:bd:fe:b6:c9:33:cc:6c:2b:
06:3d:f7:7e:27:74:04:14:48:29:c1:e5:38:5f:a7:
37:5f:1d:8f:36:6b:d6:82:7a:f5:90:59:fb:6a:a2:
e3:16:52:99:2f:06:b4:01:7d:12:84:ff:e5:6d:eb:
63:73:02:da:4f:a8:61:2a:ae:63:ce:57:4d:86:ef:
d5:5e:b8:59:ae:95:8e:a5:34:b4:d9:b6:1d:d5:66:
94:ee:a0:e5:b2:be:1d:a8:1a:6e:d8:f0:70:16:cd:
be:8e:e3:bf:23:ad:4e:c2:cd:08:52:7f:33:b3:d6:
a2:6f:44:70:79:0f:c0:7b:9e:4e:e4:3f:f7:ae:b4:
24:70:8d:d2:f4:c6:c1:ee:03:cd:5f:08:2f:a6:ec:
eb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D0:77:22:11:90:82:7A:09:A4:4D:40:93:B3:76:23:1A:7F:A3:74
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/mNB3IhGQgnoJpE1Ak7N2Ixp_o3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.235.32.0/24
Signature Algorithm: sha256WithRSAEncryption
06:68:a6:ef:49:ff:85:62:f0:56:39:a9:63:6e:0a:2a:8c:6d:
d3:53:39:db:a0:6a:67:ae:bc:2a:ea:d6:86:ee:c2:6c:42:63:
00:6d:be:c4:4c:e3:f8:9e:29:2f:c1:2b:7c:05:70:97:39:e0:
83:5c:f4:5f:8b:33:bb:b6:04:af:8d:85:92:a4:3c:56:e4:a3:
06:62:10:c9:ea:f5:c8:6d:1f:84:53:a0:3b:56:ed:f7:44:20:
89:26:c5:11:e7:c0:d9:bd:72:54:53:c6:6a:d1:93:76:49:09:
d2:11:19:23:6d:c1:e2:98:a8:f7:d2:4e:c4:70:44:6e:9e:87:
cc:7d:d4:0b:52:03:6e:e1:68:b4:73:85:b7:fc:c3:e7:80:53:
45:9d:fa:26:93:4f:aa:09:9e:81:8c:75:9a:1d:02:c2:2f:ae:
e7:50:1a:78:fe:59:a3:07:6e:bf:b4:71:15:e1:11:46:f1:28:
4f:55:89:3d:21:96:5c:7d:fc:67:4f:58:b5:48:d5:3e:45:6d:
db:34:b8:e5:82:90:04:47:8a:da:ee:29:2c:d3:20:90:e4:1f:
c4:30:b4:16:6f:32:cd:f7:32:0c:3e:e5:5a:34:ca:95:7f:95:
c8:96:08:42:e9:2c:07:19:32:66:63:e6:36:2c:5f:3d:f1:0c:
16:f4:0b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:29 2025 by rpki-client