Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/1-CcnVQFHKzFpMqHiUuvH5-H9pa8.roa
File: 1-CcnVQFHKzFpMqHiUuvH5-H9pa8.roa (raw, json)
Hash identifier: /Gx7bhMpatzEiyrMxLy010ccEyKCMdHtBFyWk+Z4U4g=
Subject key identifier: F8:27:27:55:01:47:2B:31:69:32:A1:E2:52:EB:C7:E7:E1:FD:A5:AF
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 25BCD1
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/1-CcnVQFHKzFpMqHiUuvH5-H9pa8.roa
Signing time: Sat 01 Jan 2022 00:57:12 +0000
ROA not before: Sat 01 Jan 2022 00:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 193.16.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2473169 (0x25bcd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jan 1 00:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f827275501472b316932a1e252ebc7e7e1fda5af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:05:95:bc:24:5b:d3:1e:fa:f0:12:b7:49:17:
30:d1:55:f3:26:05:d5:8b:ec:4e:3e:16:e0:a3:42:
61:d9:4d:47:ff:7c:fa:fb:cb:09:2a:d0:40:f3:b6:
6d:bb:bc:f4:a9:41:44:4d:2f:5f:61:88:ba:d8:f9:
ab:b2:1f:f6:08:cc:a6:4d:6d:50:49:97:3b:d5:26:
6e:9f:cb:8b:58:8f:40:ce:a2:27:14:a2:f2:b6:2d:
39:9a:88:92:a1:ff:01:84:43:87:6c:70:16:b9:56:
d6:26:a5:bd:92:c6:4e:06:5c:d3:f1:5e:64:15:8f:
83:96:c4:2d:04:35:d8:7b:50:e2:57:6c:6f:d1:6b:
ae:aa:f6:a7:51:63:6d:f7:0e:ef:b3:9b:37:a8:1b:
b1:85:ff:9a:be:16:13:51:65:be:07:08:77:8d:22:
78:43:f6:6e:21:3a:db:24:75:19:43:1c:d3:f3:6e:
f5:95:bc:20:f7:25:b3:80:99:5c:da:de:2e:fb:75:
35:a6:38:55:79:ab:25:10:b3:db:ac:8e:71:e2:2b:
9f:2e:8a:3d:a1:3a:4e:5a:18:7f:9f:be:a6:b1:d6:
2b:5c:5a:43:5f:0f:05:72:db:95:c3:72:d4:da:04:
48:f7:2a:96:fb:60:e2:dc:97:09:54:79:e7:55:d0:
ff:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:27:27:55:01:47:2B:31:69:32:A1:E2:52:EB:C7:E7:E1:FD:A5:AF
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/1-CcnVQFHKzFpMqHiUuvH5-H9pa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.63.0/24
Signature Algorithm: sha256WithRSAEncryption
17:fb:36:63:48:9e:4b:a0:8c:35:ec:80:cc:5c:3e:26:43:26:
8c:16:75:21:73:62:bd:be:fb:7b:31:08:99:af:78:c7:17:0f:
7c:27:b5:61:bd:11:22:69:ac:f1:34:74:70:20:55:d2:ea:bf:
a5:c7:ab:4e:4f:c7:4a:13:f6:43:df:3f:90:ec:b8:5e:3d:11:
15:c9:9c:3b:07:4b:96:a5:ad:da:0e:9d:72:0d:1d:22:fb:74:
8e:69:4a:9c:23:70:9b:28:13:bc:36:0d:0f:5b:33:c1:cf:0c:
5d:20:ae:39:8c:67:cb:c1:6f:2f:61:43:27:df:5b:2c:47:de:
40:8f:23:98:62:3e:f1:b4:db:5d:08:ff:1a:f0:7c:54:25:62:
d9:ce:4b:c2:f0:bf:f8:bf:90:35:fc:30:c8:2b:7b:83:7b:d8:
3b:3a:cc:59:be:c9:2b:96:5d:1a:1d:0f:8d:ac:63:3e:8b:ae:
d2:6a:0e:22:ea:ec:09:a5:35:ac:fb:1c:c5:4d:9e:c5:03:a2:
4d:88:7f:a1:9b:4b:45:8c:0a:bc:8e:60:d4:fb:8c:0f:1e:14:
3a:5d:25:80:99:5c:8b:b1:ab:3a:8b:96:5a:7a:68:82:c4:85:
43:10:16:ae:6b:c6:df:c8:06:2c:ec:06:e7:a1:6c:ee:18:99:
0a:ce:18:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:25:48 2025 by rpki-client