Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/DbwPJTPlOhhfV4grVq8Lfnc8Wwg.roa
File: DbwPJTPlOhhfV4grVq8Lfnc8Wwg.roa (raw, json)
Hash identifier: tM4JQwYQh8BdcjsCLpNRZ6Ud/XANWKDWIZDaI5Czmqo=
Subject key identifier: 0D:BC:0F:25:33:E5:3A:18:5F:57:88:2B:56:AF:0B:7E:77:3C:5B:08
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 018775111D67EDC62C9233BD85BEFA3130EA
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/DbwPJTPlOhhfV4grVq8Lfnc8Wwg.roa
Signing time: Wed 12 Apr 2023 10:44:28 +0000
ROA not before: Wed 12 Apr 2023 10:44:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 2.59.181.0/24 maxlen: 24
45.156.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:11:1d:67:ed:c6:2c:92:33:bd:85:be:fa:31:30:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Apr 12 10:44:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dbc0f2533e53a185f57882b56af0b7e773c5b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5e:c9:b8:4d:51:0b:69:50:97:e4:25:e5:15:
da:9d:1c:b9:d3:8b:2f:31:c4:bc:5e:72:c7:92:03:
82:10:60:a2:48:bd:28:19:96:aa:f5:a8:07:dc:67:
4b:e8:2a:f1:e1:02:15:15:99:b8:9f:1a:4c:61:82:
e1:32:40:52:74:82:e7:26:1e:0e:df:1b:48:59:a4:
98:52:f8:36:0c:e8:e9:15:67:af:c8:fd:d2:f1:7a:
0a:d0:65:a6:ff:20:b6:ad:d7:1c:c5:3c:70:ac:0b:
4f:0d:ca:94:44:93:3b:87:ff:59:d5:1a:72:3d:8c:
17:99:34:ed:f2:97:51:2e:40:c3:69:f8:1f:79:b0:
3c:85:c5:24:16:b9:2c:7a:47:b5:eb:4b:41:25:3b:
d8:30:a7:4d:43:cd:22:23:ba:38:bf:03:3b:48:56:
7b:2f:96:cd:26:74:05:4d:56:9d:c7:4e:4b:be:e9:
fe:00:95:ee:95:35:0d:3c:d8:36:43:e2:a8:df:41:
9a:e1:23:8f:ff:1d:3d:89:a1:93:1f:01:69:36:20:
6c:ff:a9:85:e4:8f:ac:6c:a0:33:b9:9f:c1:1c:06:
fd:82:ff:05:9d:c5:22:20:b8:d3:e1:91:fd:c2:71:
1d:01:33:00:58:57:42:a0:9c:42:f3:8f:97:07:37:
4d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BC:0F:25:33:E5:3A:18:5F:57:88:2B:56:AF:0B:7E:77:3C:5B:08
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/DbwPJTPlOhhfV4grVq8Lfnc8Wwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.181.0/24
45.156.144.0/24
Signature Algorithm: sha256WithRSAEncryption
00:c7:7c:8e:85:50:ef:a3:77:f4:f0:e3:4f:02:2d:62:02:3e:
03:31:f4:89:c4:79:f2:57:8b:1c:37:5d:0d:f6:8f:41:72:58:
20:74:c9:7e:16:0a:55:91:6f:1f:87:ec:1e:ee:88:20:87:10:
1a:39:d2:11:24:f6:39:fb:c1:e3:25:49:9a:9d:b0:c3:c8:5a:
dc:04:3c:61:43:8d:1d:60:7c:4c:57:8a:94:4f:49:44:51:2d:
26:82:c0:e7:c1:59:45:d3:09:6b:78:8c:19:68:9e:1a:7b:36:
fc:93:80:9b:33:cf:4f:d2:e9:ee:32:e1:76:07:42:4c:fe:27:
84:25:c4:65:7b:0a:a7:fc:7b:b9:5e:04:16:b2:87:50:d1:43:
0b:88:47:74:9b:bb:f9:2c:44:4b:d1:b9:b5:3a:cf:1d:75:36:
9a:f3:80:12:c3:c4:f7:72:96:5c:37:86:1c:7a:a4:18:03:3f:
47:e9:f4:5c:17:3f:48:be:4c:2c:1b:12:e1:6a:21:f7:f0:e1:
e2:c7:a5:2e:10:71:7a:8b:b3:63:26:02:61:68:8d:cf:5f:b2:
da:14:a4:a7:fa:85:0d:e7:eb:a4:71:df:86:40:52:d9:8e:95:
32:37:7c:a7:74:50:c4:11:54:23:53:2b:29:b6:9b:4c:7b:ae:
de:2b:8c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:27:20 2025 by rpki-client