Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/xU4Ca0L8anKlvTK6O3TUmiyjqnc.roa
File: xU4Ca0L8anKlvTK6O3TUmiyjqnc.roa (raw, json)
Hash identifier: hJNohXNH7kMFQWjTbIws0UvA3Yo3DYhkEQWMmue1Cbk=
Subject key identifier: C5:4E:02:6B:42:FC:6A:72:A5:BD:32:BA:3B:74:D4:9A:2C:A3:AA:77
Certificate issuer: /CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Certificate serial: 39176189
Authority key identifier: ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/xU4Ca0L8anKlvTK6O3TUmiyjqnc.roa
Signing time: Tue 12 Apr 2022 22:57:00 +0000
ROA not before: Tue 12 Apr 2022 22:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202664
IP address blocks: 81.92.240.0/22 maxlen: 24
217.196.64.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957833609 (0x39176189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Validity
Not Before: Apr 12 22:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c54e026b42fc6a72a5bd32ba3b74d49a2ca3aa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:66:53:95:61:00:30:8e:c4:36:b0:4c:98:59:
0f:51:ac:dd:2b:a2:61:4c:2d:83:a6:9d:69:85:ce:
87:ae:f1:d3:6f:2e:6f:90:1e:06:8e:8f:8a:f0:25:
76:aa:cd:eb:21:15:08:f4:51:6a:2b:bd:a5:1a:f6:
9f:f4:27:05:f4:22:85:2f:05:bc:12:5f:e4:0f:1e:
f9:01:8d:6f:80:7d:11:0b:0f:7b:b2:88:dd:1c:91:
3d:7b:67:48:f2:2e:68:59:36:1e:96:5c:98:57:c4:
e5:a6:27:4d:6b:90:6b:b6:84:20:46:fb:7a:02:6e:
74:f5:d8:a4:30:1c:0a:80:f5:ff:83:93:98:b2:55:
98:7e:b2:ee:07:04:a1:a5:54:ef:54:a8:d4:cb:8a:
51:44:1c:9e:3d:06:3a:ec:9f:a6:10:ce:66:5e:12:
5c:a9:9a:30:5e:6c:7b:25:d4:36:c1:95:ff:e0:af:
47:ba:04:88:47:32:c0:5e:83:88:27:df:6f:9f:74:
c1:30:28:e1:0a:33:3d:8e:2f:23:66:1a:84:26:7d:
b5:2b:f5:5a:be:57:69:8f:55:5c:fd:d8:5c:f1:fc:
be:e5:2d:e6:7a:40:31:71:b2:5f:ca:3a:72:04:ab:
1e:8f:4f:f2:1f:7f:75:60:f2:2a:8e:09:21:14:80:
02:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4E:02:6B:42:FC:6A:72:A5:BD:32:BA:3B:74:D4:9A:2C:A3:AA:77
X509v3 Authority Key Identifier:
keyid:ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/xU4Ca0L8anKlvTK6O3TUmiyjqnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/7cIhOMCvgcXL9DpPjd18jeE8cjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.240.0/22
217.196.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:60:2f:81:48:63:66:da:d2:e0:56:7c:01:c9:57:fb:66:a9:
a8:59:8b:31:a8:b5:78:49:d0:f6:51:69:d3:b3:c2:bb:69:b4:
cb:71:22:b0:a8:50:34:cf:98:9a:f6:89:6f:2d:0a:d8:69:b4:
06:09:08:4b:b6:f8:05:6b:8b:4a:b1:fa:45:15:3d:a0:dc:92:
37:f4:9d:5c:c0:fc:0c:df:2d:5d:90:e9:08:d5:b5:cc:b2:8f:
c5:55:dc:43:d0:30:ff:d1:9b:16:27:c8:d2:f2:7a:6a:bf:75:
c0:40:02:bf:81:63:98:bf:5f:25:67:2f:4c:99:b2:f4:09:f5:
0f:b2:62:5d:b6:56:a2:77:6f:94:7c:e5:92:8f:d7:16:99:ca:
13:f6:c7:f1:71:6b:f8:98:3b:85:0c:cf:81:de:a9:d6:f4:c9:
f2:51:b3:64:ca:7d:36:53:f3:5c:0d:3e:fc:f4:33:04:4c:50:
0b:64:32:9a:3a:13:15:02:8b:ec:a3:fe:59:8e:79:d0:cf:d3:
90:c5:70:e5:d2:cc:c7:c1:db:c6:fb:08:64:03:f2:2f:06:de:
54:f3:5e:7b:08:d8:fb:f7:b4:cd:11:80:4b:77:cb:9b:75:13:
5a:8f:3f:78:e3:9d:7d:6c:b8:a0:ea:ba:7f:da:af:30:d5:50:
9a:7b:8e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:40 2025 by rpki-client