Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9M_anuIWq-_jOF7cLpxevR4hZyw.roa
File: 9M_anuIWq-_jOF7cLpxevR4hZyw.roa (raw, json)
Hash identifier: umE6Nu45Ab5J/kxiew2/sKo/WdcdiUETOGWiksxI/DA=
Subject key identifier: F4:CF:DA:9E:E2:16:AB:EF:E3:38:5E:DC:2E:9C:5E:BD:1E:21:67:2C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0344A956
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9M_anuIWq-_jOF7cLpxevR4hZyw.roa
Signing time: Tue 12 Apr 2022 19:27:40 +0000
ROA not before: Tue 12 Apr 2022 19:27:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208046
IP address blocks: 109.205.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54831446 (0x344a956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 12 19:27:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4cfda9ee216abefe3385edc2e9c5ebd1e21672c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:69:31:52:4b:37:93:7e:62:fa:61:f2:76:01:
e7:f4:7d:18:b7:3e:86:80:88:3c:ba:60:fa:9e:0e:
fe:8f:1b:9f:80:64:bc:e8:d4:cc:11:29:d6:9f:12:
0e:b2:b5:53:aa:23:7b:89:01:2a:d9:6d:2e:4d:5d:
4e:c7:fb:6a:a1:43:02:e0:ea:f2:3c:29:d7:19:7c:
cd:f2:0e:6d:4c:d9:18:8f:fb:8a:1f:44:8e:15:fd:
c0:50:81:9d:1a:44:24:5d:c4:b6:5a:ac:cb:7f:56:
ea:4c:5b:e5:b1:ed:48:1c:3a:08:cb:62:10:b3:79:
b3:fb:7a:b9:0f:d0:83:3f:52:bb:bf:a9:2b:f8:bd:
e9:77:f3:a2:1e:1b:2e:d2:2a:0c:7f:e9:b8:82:57:
5a:fc:c5:a0:70:f6:82:07:d7:23:45:ab:52:03:c7:
05:94:a0:e3:65:94:ed:f7:09:6a:9a:7e:5d:f2:21:
e2:5c:10:30:f2:f0:c4:eb:8e:60:0f:28:5f:f4:2f:
7a:ec:4b:28:5f:2a:d3:3f:da:03:14:25:2c:19:f5:
46:7d:dd:24:c7:60:1b:81:42:ea:56:b5:ed:e3:9b:
51:7a:9d:a2:25:9c:b4:fc:94:b5:45:b8:e9:9a:bf:
ab:d4:62:48:9e:fb:a1:f9:ee:64:1c:36:db:de:79:
d4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CF:DA:9E:E2:16:AB:EF:E3:38:5E:DC:2E:9C:5E:BD:1E:21:67:2C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9M_anuIWq-_jOF7cLpxevR4hZyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.213.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1f:db:5d:1b:fc:bf:be:87:f4:30:fd:87:0d:bb:f4:24:d4:
00:6f:90:d3:0a:0b:e4:27:d2:9a:19:c2:2f:13:d1:3f:f2:07:
48:3c:f1:30:5e:ea:71:09:97:0e:71:ed:d9:54:48:4c:a5:6c:
ca:4a:f2:00:aa:f6:3a:82:6c:be:ab:9b:bb:a9:05:e4:2f:e0:
75:3b:f0:3e:68:cf:ad:85:71:21:44:14:17:e1:91:33:ea:4c:
90:28:b9:ec:10:35:4c:10:23:ec:4a:b5:3b:f0:cd:2b:70:4b:
2f:ae:30:21:e0:7e:27:9c:ca:b5:ad:19:ef:80:6e:d2:49:b1:
72:33:7e:bd:36:a9:46:f6:b6:46:2b:82:50:ef:70:14:e5:2d:
50:6e:d0:fc:83:54:e8:03:ee:4d:62:9a:17:96:86:c5:47:67:
7a:25:67:f1:93:f5:07:d8:3d:b7:28:58:1c:d8:14:e0:a2:64:
05:ed:ae:eb:1b:94:17:c5:0b:f9:a0:05:db:cc:44:dc:00:f7:
31:c2:31:a3:42:7d:a6:80:e2:8b:01:9a:f3:c8:4e:19:1e:94:
0b:68:a4:28:07:b1:86:26:8d:cb:7b:e3:3f:36:e6:85:35:2c:
d3:78:03:98:dd:56:d0:d5:3c:9e:2d:9c:83:53:e5:1a:82:f3:
66:1f:cd:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:17:30 2025 by rpki-client