Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/5KytQZaK5s95EDD6pErscrI2Mnc.roa
File: 5KytQZaK5s95EDD6pErscrI2Mnc.roa (raw, json)
Hash identifier: B3ufwDnl1u8arM6qbtVIti3t4hSQ1XcWjx/efjPZd7o=
Subject key identifier: E4:AC:AD:41:96:8A:E6:CF:79:10:30:FA:A4:4A:EC:72:B2:36:32:77
Certificate issuer: /CN=9a70b051e5cdf962dbc26b352488d0831bdf9a3c
Certificate serial: 03659F55
Authority key identifier: 9A:70:B0:51:E5:CD:F9:62:DB:C2:6B:35:24:88:D0:83:1B:DF:9A:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnCwUeXN-WLbwms1JIjQgxvfmjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/5KytQZaK5s95EDD6pErscrI2Mnc.roa
Signing time: Sat 01 Jan 2022 10:04:57 +0000
ROA not before: Sat 01 Jan 2022 10:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39756
IP address blocks: 194.126.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56991573 (0x3659f55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a70b051e5cdf962dbc26b352488d0831bdf9a3c
Validity
Not Before: Jan 1 10:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4acad41968ae6cf791030faa44aec72b2363277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:e0:b6:ba:33:9a:7a:6c:14:6f:71:73:c8:
d0:70:a3:b8:8e:09:2c:bd:80:8e:b3:c5:0e:df:42:
6b:15:ba:b2:4a:cf:7e:23:23:05:50:84:5e:19:91:
8d:88:be:24:13:09:3d:86:f3:cf:b2:c6:98:12:92:
eb:d6:d0:ab:a8:3b:af:fc:74:da:b4:22:18:2c:61:
2e:ca:09:c3:02:8b:2d:ec:d4:81:f0:be:ed:ae:c6:
62:44:8a:70:f9:5c:fc:59:43:fd:75:29:e1:6f:6f:
5d:b6:23:64:41:6a:56:12:56:f4:fd:cd:9b:f2:3c:
f7:f4:04:e8:ad:12:94:22:f2:3d:f9:6e:86:16:b7:
0e:43:42:b8:c0:75:e1:84:46:fb:bc:e6:3e:68:9d:
6a:72:40:be:75:e7:0c:00:b2:0b:9e:54:e2:9a:31:
e9:18:74:66:23:3f:48:27:58:44:0b:10:97:b2:35:
80:8b:44:fd:ab:4b:4f:60:dd:01:25:51:13:ad:29:
cf:28:79:12:b0:0b:f2:ab:30:c0:74:dc:b5:ff:5e:
c0:05:20:f9:07:36:00:7b:da:21:78:f3:54:c8:50:
aa:66:f9:2e:1a:6d:3b:9c:29:fe:cc:71:73:1c:37:
45:06:d3:e7:b4:6a:e8:0c:a0:73:14:e9:10:76:40:
80:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AC:AD:41:96:8A:E6:CF:79:10:30:FA:A4:4A:EC:72:B2:36:32:77
X509v3 Authority Key Identifier:
keyid:9A:70:B0:51:E5:CD:F9:62:DB:C2:6B:35:24:88:D0:83:1B:DF:9A:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnCwUeXN-WLbwms1JIjQgxvfmjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/5KytQZaK5s95EDD6pErscrI2Mnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/mnCwUeXN-WLbwms1JIjQgxvfmjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.253.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:20:57:99:01:6d:36:13:76:30:18:47:ef:e0:fe:84:02:5a:
71:80:a7:7b:68:07:a4:0a:29:02:d2:87:a7:fe:d0:b7:64:20:
b7:51:60:0b:3a:51:cd:49:73:5c:ce:4b:e7:cb:08:98:36:32:
02:cf:f2:78:a8:67:4b:20:cf:b1:02:61:4e:cd:d0:8c:63:0c:
27:87:dc:45:9a:30:3d:8e:1d:1b:83:7a:7c:b8:d8:8c:1d:14:
e0:ae:e7:f2:b9:be:d7:27:2c:d3:d5:ab:b7:36:f7:d8:d9:04:
43:4e:6d:9e:b9:d2:97:cd:64:ba:3d:fe:77:7b:c2:e6:80:87:
f9:eb:f2:40:cc:83:c5:84:b4:5b:46:dc:c5:9e:04:f3:7e:dd:
94:67:ec:f7:a7:5a:6b:c1:03:3c:3d:3f:b6:53:44:f9:9f:c7:
11:1b:f2:3a:aa:4f:ee:84:bf:13:d2:e1:93:a1:b0:e8:21:0f:
f6:07:c9:7b:ea:2e:3e:56:8c:3c:3f:d2:e6:9a:55:f0:41:13:
7f:d3:ee:3c:83:5d:5f:d6:7a:19:01:2b:1d:4c:50:e5:41:b6:
45:98:9d:9e:d1:84:4e:ae:33:57:96:6d:90:48:0d:de:62:1f:
a4:07:ad:10:a1:0d:ff:23:60:06:e1:e1:8d:b3:01:02:b4:09:
57:2e:b6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:42 2025 by rpki-client