Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/DMo5PwbpuhvZhVAfrB56onVK9r8.roa
File: DMo5PwbpuhvZhVAfrB56onVK9r8.roa (raw, json)
Hash identifier: stnGsyIOo6wxlLNc0dddCHbGEGgm4pHpfAjBMDC2Trw=
Subject key identifier: 0C:CA:39:3F:06:E9:BA:1B:D9:85:50:1F:AC:1E:7A:A2:75:4A:F6:BF
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 032ECC9E
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/DMo5PwbpuhvZhVAfrB56onVK9r8.roa
Signing time: Sat 01 Jan 2022 13:07:49 +0000
ROA not before: Sat 01 Jan 2022 13:07:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199669
IP address blocks: 83.217.9.0/24 maxlen: 32
83.217.11.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53398686 (0x32ecc9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 13:07:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cca393f06e9ba1bd985501fac1e7aa2754af6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:49:2b:1f:b7:3e:54:29:71:8a:c0:84:65:96:
23:59:52:92:9d:75:f9:40:f9:8e:48:47:e2:48:de:
5e:d6:f2:0f:88:7f:65:9a:61:21:1d:3f:ce:9d:67:
1d:14:a3:a0:4a:ce:46:54:7f:35:7a:04:2b:10:39:
18:8c:84:03:b1:8f:54:a6:e6:18:38:87:1a:c9:0d:
ca:1f:26:b5:3e:4a:65:52:b6:d4:89:47:4b:53:c4:
db:3b:10:41:c7:c7:3d:79:f9:d2:45:a3:31:a3:c1:
39:ee:22:bb:3e:ba:ba:20:af:e3:97:92:68:9b:85:
b6:c5:10:de:dd:05:60:3c:02:0f:70:bc:8f:af:48:
ac:9f:01:75:bc:56:c2:e1:ec:51:5a:df:e6:4a:a6:
e2:64:95:6b:d2:bb:20:65:a4:02:d4:1f:1d:80:5a:
97:85:b3:b8:b5:c4:68:07:86:a3:3a:58:dc:d6:69:
95:29:b5:5f:a0:8e:f7:0a:cc:3b:8b:6e:4e:66:c3:
8f:39:ef:70:a0:fe:b7:bb:9b:bf:83:5e:96:6d:e7:
9c:4e:26:c3:ef:e8:0d:49:f0:d4:ce:7e:1f:fc:ac:
26:7a:b5:50:56:bc:ab:15:b8:9a:53:38:3e:5e:c7:
f2:cc:6c:f6:ab:96:35:ea:ac:97:ba:8a:f2:cf:67:
f8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CA:39:3F:06:E9:BA:1B:D9:85:50:1F:AC:1E:7A:A2:75:4A:F6:BF
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/DMo5PwbpuhvZhVAfrB56onVK9r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.9.0/24
83.217.11.0/24
Signature Algorithm: sha256WithRSAEncryption
24:8c:a9:f6:70:e0:6e:88:b2:f7:9e:f5:4c:10:b8:04:ac:6f:
fe:ae:a3:83:fd:3e:67:0a:ea:ad:c1:74:c8:b4:67:18:71:ea:
95:f3:bc:16:e7:74:24:ad:90:ac:89:b9:0f:90:c1:17:05:08:
a0:4f:96:65:5c:fb:1d:9d:f6:e3:2b:d2:97:74:81:45:5f:fd:
da:42:cb:1e:9c:55:5b:ee:31:e6:04:19:4f:d2:cd:82:07:96:
7a:9e:4f:af:b4:b8:99:a1:71:c7:3d:da:11:74:36:51:6e:36:
64:85:12:ce:46:ba:18:73:ff:d7:97:d0:4d:8c:43:ba:60:fc:
ef:bc:ea:b8:d5:e1:cf:e7:99:94:87:dc:c0:5c:03:2b:6e:c6:
78:47:3e:b2:e6:69:23:38:c1:ec:a5:97:99:67:9f:fe:22:6e:
06:c1:af:7a:38:24:97:78:2d:95:78:65:7e:89:e9:8f:33:dd:
95:55:3b:9c:93:c2:66:7d:23:93:d1:c6:6d:78:e0:de:44:a8:
77:a6:aa:ed:6e:e0:cd:66:2a:34:3b:5c:fa:3c:9b:3e:74:0c:
ef:81:81:8a:09:12:ca:a5:16:30:b5:6f:02:f7:d9:55:db:82:
15:0a:37:01:ce:48:e3:f3:6b:22:17:bb:92:15:70:62:a1:62:
c4:ad:33:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:25 2025 by rpki-client