Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/p82jfLbYa_8e4EnYX_3dEeiEnUc.roa
File: p82jfLbYa_8e4EnYX_3dEeiEnUc.roa (raw, json)
Hash identifier: 9vB38Zoc72NkdiQ/WAVq+sN+MlP7gctCNv863ELjdvA=
Subject key identifier: A7:CD:A3:7C:B6:D8:6B:FF:1E:E0:49:D8:5F:FD:DD:11:E8:84:9D:47
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42673B69
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/p82jfLbYa_8e4EnYX_3dEeiEnUc.roa
Signing time: Sat 01 Jan 2022 14:03:09 +0000
ROA not before: Sat 01 Jan 2022 14:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39871
IP address blocks: 192.36.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114061673 (0x42673b69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7cda37cb6d86bff1ee049d85ffddd11e8849d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0a:6e:9e:2a:93:1b:a4:53:ee:7b:3e:f2:7b:
b9:34:84:19:69:40:b2:a1:1f:26:f5:c0:51:30:2c:
34:0a:8a:ce:86:7a:78:38:13:9f:93:8d:69:43:53:
37:cf:00:94:16:d3:3d:26:95:81:33:ee:e9:7e:ac:
55:b7:4a:dc:5d:42:1d:f2:f0:ea:a1:ba:96:03:a0:
70:f5:23:7e:c8:13:6a:2e:11:c1:1f:f6:b2:1d:d6:
1c:1f:e3:2c:d2:86:a4:0c:e8:77:4a:7b:e6:aa:80:
aa:9f:72:01:24:38:9e:78:de:10:7f:06:df:3c:35:
91:95:6c:83:08:ac:12:3e:09:f0:eb:47:a4:bf:b1:
8d:fb:d5:78:75:d0:9f:73:f1:4b:e7:89:57:ad:4b:
81:d7:0e:72:5b:1e:8e:79:b6:53:94:d3:a4:27:56:
2d:6f:c9:76:9c:37:a6:d1:f3:e4:8e:74:cf:30:57:
8d:9e:64:94:8a:76:53:4f:75:78:f1:03:2b:79:35:
af:bd:2b:44:6f:13:08:4c:f2:e0:23:89:50:ee:c7:
bc:fa:4c:ac:38:4a:5d:fa:c2:29:ad:ff:88:0b:15:
1a:b3:af:47:56:8f:5c:8f:67:60:fd:2c:97:2a:77:
13:a2:e8:08:68:bd:b1:23:0d:e7:eb:5a:f9:9b:7d:
25:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CD:A3:7C:B6:D8:6B:FF:1E:E0:49:D8:5F:FD:DD:11:E8:84:9D:47
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/p82jfLbYa_8e4EnYX_3dEeiEnUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.133.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c8:55:60:05:51:87:d1:8f:6f:f7:d7:fc:5b:7f:e4:63:dc:
52:ad:b8:76:7a:73:3b:d7:09:db:f0:92:4b:f9:a5:4c:b0:9e:
af:67:e3:2b:99:34:dc:d5:dc:cd:3c:bd:74:15:5f:d9:1b:d8:
c5:b9:cc:b3:a7:a1:d2:38:75:90:f1:cb:22:f6:ce:24:ab:da:
ef:ce:9d:aa:09:43:52:61:86:6c:63:23:65:12:ee:13:4f:65:
c8:f2:6f:ba:fd:af:ce:0c:f0:58:2b:49:8b:78:22:06:fa:7a:
47:fa:be:6f:f9:53:6d:60:6d:51:b7:2e:ad:30:f5:63:3a:a8:
cb:c5:aa:30:f6:21:b4:4f:f6:5e:05:d6:e0:49:29:64:a0:72:
3a:6b:9c:21:7b:46:7e:7f:27:0f:af:ab:c9:1e:32:ee:9e:c3:
24:5e:39:da:0f:55:c6:4d:76:68:95:5d:73:1d:70:55:5e:52:
95:cd:68:3a:3e:44:71:e3:d2:93:ce:47:ee:55:ef:4f:1f:69:
f1:5c:a7:9b:99:b9:c1:13:d2:24:b7:df:76:48:2b:9b:33:37:
d5:a5:6d:5d:e7:d8:9d:a2:58:fc:95:56:ab:33:42:21:fe:52:
8c:85:e8:56:ec:ec:04:81:1a:0e:50:c1:da:41:3f:61:0e:c9:
9b:fd:d3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:32 2025 by rpki-client