Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y8TLTjmedm5vKYtnkoQj3ytOxR4.roa
File: y8TLTjmedm5vKYtnkoQj3ytOxR4.roa (raw, json)
Hash identifier: 8bpE5s3H0CxmJbaWGWXYmVHsI3bfkV4nZyaCcsIVJkA=
Subject key identifier: CB:C4:CB:4E:39:9E:76:6E:6F:29:8B:67:92:84:23:DF:2B:4E:C5:1E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42979C9A
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y8TLTjmedm5vKYtnkoQj3ytOxR4.roa
Signing time: Sat 01 Jan 2022 14:03:33 +0000
ROA not before: Sat 01 Jan 2022 14:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211551
IP address blocks: 194.71.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117232282 (0x42979c9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbc4cb4e399e766e6f298b67928423df2b4ec51e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9c:4a:3d:70:91:cd:41:6a:99:84:e3:35:da:
92:5a:52:f1:96:98:4f:b0:32:14:34:6a:cc:db:84:
b3:ee:76:72:bb:f2:2c:24:71:a1:6a:d8:ce:c5:3e:
8c:0b:60:c0:78:f6:4e:e2:44:e9:2e:c6:e0:6f:2a:
75:9b:2d:91:58:dd:2a:c3:29:64:44:2c:39:b2:57:
23:6e:75:ec:e2:d3:e3:4f:bb:c5:f0:13:1c:ec:08:
65:f7:e7:01:5c:a4:28:ec:25:fd:65:e0:a2:09:d5:
b8:ed:21:dc:93:f4:42:26:98:74:58:57:0b:60:17:
88:0c:76:97:b7:b3:c0:b4:be:94:5b:31:e0:c3:48:
58:d7:88:79:f0:31:65:e9:25:29:00:71:17:af:5b:
05:72:47:1c:f9:7b:fe:ac:cd:ae:7c:bc:88:51:c0:
04:ad:68:ae:64:37:30:82:13:da:68:bf:98:3e:fb:
61:db:1e:6a:52:4b:03:8e:76:da:73:54:61:e7:2f:
6c:05:d6:81:20:2c:b8:33:d4:5d:e7:96:52:80:f9:
f7:22:4d:0d:a0:f2:c8:0e:2a:53:c5:88:11:42:f8:
b2:ab:d3:2f:2b:58:3d:4b:b8:be:06:f5:cf:e7:e5:
ef:d0:67:93:5b:ba:e3:cb:69:5f:dd:ab:90:0c:0d:
17:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C4:CB:4E:39:9E:76:6E:6F:29:8B:67:92:84:23:DF:2B:4E:C5:1E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y8TLTjmedm5vKYtnkoQj3ytOxR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.139.0/24
Signature Algorithm: sha256WithRSAEncryption
15:52:fd:c5:76:53:59:a7:fa:3d:43:0c:86:3d:61:4a:cc:36:
48:ab:d3:bb:dc:09:cc:19:52:8a:32:4b:34:10:4d:b2:69:e2:
14:5d:c4:fc:bc:9b:3a:a1:72:13:95:4d:dd:f7:6b:16:3b:6d:
f2:6c:13:09:cd:1c:48:25:2a:27:01:e9:78:aa:82:71:c5:a2:
a3:3e:12:bf:03:45:cc:e3:2e:8b:68:3c:1c:cd:60:c0:ef:00:
cc:09:ed:e3:03:5c:3b:06:ff:8d:86:10:72:64:cd:22:ef:dc:
23:25:33:5c:79:a2:4b:ed:12:61:85:79:1f:02:10:2f:eb:24:
94:a3:2d:7c:87:d7:e2:29:4b:09:6e:05:46:a5:0e:16:12:dc:
10:11:0e:5d:4c:58:24:48:ee:4a:6a:68:fa:2e:85:27:8a:d3:
23:67:ef:8a:ad:7b:d2:0b:45:2e:2f:80:63:b1:97:7f:d8:06:
db:b7:f6:90:67:7d:42:f1:bb:60:b4:dc:29:aa:1d:ec:dd:d1:
de:8e:a3:c6:48:f4:c6:8f:dc:bd:85:6e:6d:42:ff:5c:b2:f8:
d1:b4:ff:c2:b1:a6:e6:4e:c6:33:bc:e5:8e:92:b6:a6:fb:87:
2e:84:67:7e:7d:8a:8c:67:1a:17:74:55:29:08:1b:a6:76:c9:
db:36:57:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:35 2025 by rpki-client