Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/1kR1PcYcJeSmLSVOiAlZPUxA4_o.roa
File: 1kR1PcYcJeSmLSVOiAlZPUxA4_o.roa (raw, json)
Hash identifier: RliUtsxuQHZLMb3PEBaZj5iNYBQm0TGvN88Fb5Fu0xA=
Subject key identifier: D6:44:75:3D:C6:1C:25:E4:A6:2D:25:4E:88:09:59:3D:4C:40:E3:FA
Certificate issuer: /CN=0ca71ff956ab8f8f7e7f59d409ac7af7a2b0a864
Certificate serial: 076808E5
Authority key identifier: 0C:A7:1F:F9:56:AB:8F:8F:7E:7F:59:D4:09:AC:7A:F7:A2:B0:A8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKcf-Varj49-f1nUCax696KwqGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/1kR1PcYcJeSmLSVOiAlZPUxA4_o.roa
Signing time: Sat 01 Jan 2022 02:58:36 +0000
ROA not before: Sat 01 Jan 2022 02:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208207
IP address blocks: 193.151.229.0/24 maxlen: 24
2001:67c:27f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124258533 (0x76808e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ca71ff956ab8f8f7e7f59d409ac7af7a2b0a864
Validity
Not Before: Jan 1 02:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d644753dc61c25e4a62d254e8809593d4c40e3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ff:d8:d2:bf:b8:24:ed:42:a1:4a:9f:d2:03:
6e:c8:6d:eb:58:f3:f2:9b:ac:59:bc:2b:6d:75:a1:
16:8a:c0:2c:49:44:22:b9:74:d0:f4:a0:65:65:90:
87:09:3f:98:f2:18:4a:15:af:f2:56:30:01:a2:c7:
fd:76:60:a8:19:78:f0:d9:18:07:ef:43:1c:e5:c6:
a6:ee:09:08:8c:f3:51:b3:fa:75:41:38:ae:2e:bb:
6e:15:17:13:e9:c4:02:17:1d:79:5d:35:ac:3c:56:
1a:5d:d5:5d:d0:09:90:9c:b9:f4:b3:c8:f7:2d:b0:
c3:4d:39:a3:0f:06:da:af:28:ee:91:d3:76:5f:96:
b4:5b:1b:ab:96:a9:7e:bd:a8:d8:9f:7f:ba:a6:0e:
73:26:f0:cd:b2:6e:dc:67:ea:aa:24:30:2d:ee:90:
17:62:bd:6f:f1:36:04:95:18:48:fe:de:cf:8e:c2:
be:f2:94:e6:46:bd:e1:3c:8d:12:7b:b5:64:f9:a2:
24:d9:16:0d:1b:dd:c2:b6:fd:45:98:a7:64:ad:b1:
2a:8b:bd:2d:6f:62:49:17:c1:5e:56:a6:5f:62:8d:
85:3a:3d:ed:b0:cc:0b:10:d1:6c:fe:9a:a9:b9:91:
44:dd:e5:83:6b:cd:e1:33:f1:9b:d8:2f:c5:f8:e4:
20:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:44:75:3D:C6:1C:25:E4:A6:2D:25:4E:88:09:59:3D:4C:40:E3:FA
X509v3 Authority Key Identifier:
keyid:0C:A7:1F:F9:56:AB:8F:8F:7E:7F:59:D4:09:AC:7A:F7:A2:B0:A8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKcf-Varj49-f1nUCax696KwqGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/1kR1PcYcJeSmLSVOiAlZPUxA4_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/DKcf-Varj49-f1nUCax696KwqGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.229.0/24
IPv6:
2001:67c:27f4::/48
Signature Algorithm: sha256WithRSAEncryption
ed:50:7c:19:05:8c:a3:2c:3a:90:ef:a8:d8:c8:87:84:a7:90:
6a:bb:76:2b:30:09:0f:39:2b:94:63:69:1e:81:b3:2a:48:ba:
3b:c4:67:a8:3c:f5:1d:80:41:4e:b4:52:dc:25:c3:ba:90:0a:
ba:62:1e:a7:d1:cc:be:bd:1f:b0:c0:a7:c5:60:45:f7:ea:70:
0f:9e:7a:09:e5:8e:23:95:f4:26:bd:38:72:20:3d:1e:91:70:
e0:57:39:6b:f6:2f:ae:74:8c:d5:6c:fc:ca:db:ef:2a:e3:3e:
1f:d9:0b:0d:d2:37:36:ce:a5:60:a1:11:83:75:c4:b9:2a:70:
53:13:f8:54:9b:29:fd:7c:5d:a1:9f:d3:50:e9:72:e8:41:c5:
5a:62:c3:bd:0b:ff:9b:53:1b:44:7b:b1:72:e0:6f:70:41:61:
c5:bb:b4:e1:87:c9:28:f4:a9:1d:f9:ae:cb:5e:5d:1e:ef:22:
71:3d:bb:3c:17:66:c2:0b:a9:c3:50:53:02:c7:19:10:49:0a:
21:3a:4d:73:59:73:f4:0f:38:ac:db:76:1b:89:d1:c9:9d:83:
25:12:2d:76:83:e0:24:0c:41:f2:e2:94:b4:48:32:fd:2e:3f:
05:04:04:81:c7:7e:07:6f:c1:7a:20:40:7d:80:89:cc:be:b7:
fd:a5:1c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:18 2025 by rpki-client