Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/pxRhfBIGGXLhoY2vnu0ZhCESnMk.roa
File: pxRhfBIGGXLhoY2vnu0ZhCESnMk.roa (raw, json)
Hash identifier: kflfJC6YJaBoyqui/4BLlv2cqREr0DiidHsI5NUbw2M=
Subject key identifier: A7:14:61:7C:12:06:19:72:E1:A1:8D:AF:9E:ED:19:84:21:12:9C:C9
Certificate issuer: /CN=5dedd6b0e36f4bd8f1d57e26cc1c2d18c6993c04
Certificate serial: 01823B73D51BC2B68A9E6FA05F6FB3709BD9
Authority key identifier: 5D:ED:D6:B0:E3:6F:4B:D8:F1:D5:7E:26:CC:1C:2D:18:C6:99:3C:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/pxRhfBIGGXLhoY2vnu0ZhCESnMk.roa
Signing time: Tue 26 Jul 2022 17:00:23 +0000
ROA not before: Tue 26 Jul 2022 17:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8820
IP address blocks: 188.246.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3b:73:d5:1b:c2:b6:8a:9e:6f:a0:5f:6f:b3:70:9b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dedd6b0e36f4bd8f1d57e26cc1c2d18c6993c04
Validity
Not Before: Jul 26 17:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a714617c12061972e1a18daf9eed198421129cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b7:0a:28:ec:14:37:88:3e:b2:a5:71:e1:23:
c1:b9:60:31:c0:8e:cf:5e:64:8a:34:24:d3:50:cb:
89:a6:9d:7c:b6:68:74:ff:1a:d4:df:f1:05:6e:8f:
0c:dc:35:85:6c:30:4b:d4:72:6a:c3:7e:15:40:28:
55:b9:e5:91:66:f4:60:00:8b:54:a0:66:57:d2:c8:
57:78:5e:24:60:6a:73:71:97:a4:70:32:22:94:2c:
a8:d2:2d:c4:98:1d:44:86:71:9a:86:a2:0e:4b:4f:
36:2a:1d:d7:be:67:57:67:9b:ac:e9:ac:ad:7a:13:
af:f4:63:0c:c5:39:e3:ec:30:f7:c8:af:16:18:e9:
d8:57:d7:7f:6a:6f:4b:38:7f:70:4a:05:b8:45:58:
f7:5d:97:54:55:2f:4c:99:91:61:2c:4b:15:59:36:
79:04:d1:a0:b3:27:ed:c6:36:3d:be:69:e0:a2:0a:
93:1d:7b:d7:7b:5d:c7:4a:93:dc:30:77:3e:c4:63:
af:3d:98:5a:c0:3a:d1:7b:4e:48:d2:de:98:7e:dc:
65:82:41:1c:12:15:1c:8a:2e:79:23:58:a6:05:b8:
b3:f4:c5:3f:d9:b6:e5:9c:f5:66:7f:b4:06:01:ea:
0f:31:d9:47:55:61:bf:e7:a6:2a:aa:bd:3c:18:02:
83:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:14:61:7C:12:06:19:72:E1:A1:8D:AF:9E:ED:19:84:21:12:9C:C9
X509v3 Authority Key Identifier:
keyid:5D:ED:D6:B0:E3:6F:4B:D8:F1:D5:7E:26:CC:1C:2D:18:C6:99:3C:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/pxRhfBIGGXLhoY2vnu0ZhCESnMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.246.23.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:cf:db:48:74:ad:00:f6:58:8e:d5:59:59:bf:5f:d2:9d:43:
02:3b:9e:93:f3:38:50:a4:15:f5:28:c6:f1:b1:48:e0:4a:e0:
2b:54:29:1e:96:1c:ee:65:3f:d9:c7:cb:d6:c7:76:0f:79:4d:
dd:77:de:00:12:c6:8a:3b:c6:42:ce:a2:d5:4a:2b:77:df:c6:
56:b0:f5:b5:36:0c:b0:6d:d8:cc:2e:31:43:a5:fd:8c:e6:bc:
ef:04:8e:ac:6e:81:ba:68:2f:e1:15:e6:36:9b:e4:9b:4b:b9:
b5:81:06:e6:b2:e8:96:e4:f2:f0:ba:d8:60:48:14:4a:0a:35:
b8:4a:bd:24:56:55:09:22:42:fc:9b:c2:d6:b4:70:75:ee:74:
23:14:aa:1c:a2:c4:9b:52:0b:74:0c:23:a3:8c:30:39:bf:d3:
62:cc:e7:44:84:1d:84:89:11:e7:38:76:06:01:0e:ba:cd:91:
29:d4:83:8b:fe:d6:e6:63:ff:ef:31:f5:87:20:a1:c1:e2:f1:
e4:19:44:35:a4:4d:22:1d:8a:47:41:6b:2d:14:da:4b:88:61:
77:d3:8c:a6:7c:a1:56:4d:a1:fc:2e:0b:b2:45:9a:78:ec:12:
d9:88:fd:8d:2c:f9:83:97:1f:c9:b8:2f:15:4a:ac:1f:ff:88:
40:58:21:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:29 2025 by rpki-client