Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/efKGPBhSEpyuByjWteEYTFyQrJc.roa
File: efKGPBhSEpyuByjWteEYTFyQrJc.roa (raw, json)
Hash identifier: p0/jnlDSHwF8rcXjdM1jkIjddG3sukNhkMdVkVhC9EU=
Subject key identifier: 79:F2:86:3C:18:52:12:9C:AE:07:28:D6:B5:E1:18:4C:5C:90:AC:97
Certificate issuer: /CN=7beca4012bf7b5056e2e0a161eb4618876c9112a
Certificate serial: 018516FDE65C2D61D329BB74498008E4D981
Authority key identifier: 7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-ykASv3tQVuLgoWHrRhiHbJESo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/efKGPBhSEpyuByjWteEYTFyQrJc.roa
Signing time: Thu 15 Dec 2022 18:13:36 +0000
ROA not before: Thu 15 Dec 2022 18:13:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60672
IP address blocks: 82.192.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:16:fd:e6:5c:2d:61:d3:29:bb:74:49:80:08:e4:d9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7beca4012bf7b5056e2e0a161eb4618876c9112a
Validity
Not Before: Dec 15 18:13:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79f2863c1852129cae0728d6b5e1184c5c90ac97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:22:d8:10:a4:ff:07:4c:69:32:a1:f9:d2:65:
68:49:99:ac:6a:45:99:73:09:05:24:d1:90:31:2f:
df:a7:b7:97:32:eb:78:44:0f:44:f2:cc:7a:4c:bc:
81:b4:d5:a3:c7:1c:20:f5:3c:3d:13:66:ca:c2:27:
63:35:a6:6b:af:b0:b8:32:ce:95:85:a5:8a:b8:c7:
10:3b:ae:20:9f:8a:d0:dd:5c:6a:78:5a:dc:20:3b:
44:9b:82:8a:fd:02:cc:50:62:c3:9b:8f:d1:7d:2b:
c7:d5:74:00:65:b1:70:a8:ed:b2:59:3d:3d:f4:c6:
09:99:64:c5:2c:e3:aa:98:4e:39:d0:e7:10:ed:05:
5b:82:16:4b:fd:b0:f9:4e:96:cb:f1:a1:53:50:08:
c2:f1:c2:ad:4f:a5:a1:ca:c0:3b:84:a7:f9:2f:23:
bc:c2:ec:9b:ed:f6:70:0c:d9:bb:20:2e:51:e4:ec:
9b:3f:a8:91:fd:9e:0e:dd:ca:f1:14:41:45:fe:50:
bc:68:bb:a8:4b:f1:7a:21:30:06:a2:ed:f1:fb:ef:
a7:ff:de:e5:be:3f:0d:18:19:9d:5c:be:d1:85:05:
17:be:ec:ac:af:19:98:b8:80:b1:c3:01:73:7d:38:
33:62:be:f4:82:e1:35:83:56:6a:4f:fd:33:7c:d5:
d2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F2:86:3C:18:52:12:9C:AE:07:28:D6:B5:E1:18:4C:5C:90:AC:97
X509v3 Authority Key Identifier:
keyid:7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-ykASv3tQVuLgoWHrRhiHbJESo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/efKGPBhSEpyuByjWteEYTFyQrJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/e-ykASv3tQVuLgoWHrRhiHbJESo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.192.106.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:aa:91:71:ac:4a:e3:39:77:0f:16:26:49:a5:1c:bc:00:3e:
8c:fe:42:38:42:a4:bb:65:3f:db:d8:13:ef:11:bb:97:b9:c6:
02:7f:31:a7:6b:83:cf:de:88:8c:40:b0:38:2e:52:50:fb:2e:
a0:4b:ad:76:99:f0:fa:5e:99:e2:92:6e:e6:cf:4d:7d:0e:fe:
7b:0a:c7:a2:f3:76:02:4d:7c:13:91:97:0c:c3:63:2a:dd:be:
18:b4:17:b1:17:d7:41:0a:11:34:9d:fd:31:3f:45:e5:28:6c:
f0:57:c7:38:41:4a:62:da:b2:2d:30:73:83:c9:b4:d0:f9:e3:
aa:3e:f4:74:96:1a:a3:96:41:31:78:19:ec:b6:62:4a:be:23:
62:88:10:54:f8:1d:cf:9a:12:53:94:12:e4:05:cf:e3:e0:44:
8d:1d:35:5d:2f:dd:69:8e:5a:5f:6c:8d:ec:87:10:f1:a4:6e:
b0:29:8a:eb:11:0b:ea:8b:70:d0:0d:96:5e:d6:ad:8d:5c:ac:
38:3d:e4:ea:d2:d8:24:5a:b2:ba:4b:6a:0e:91:2b:39:83:32:
8e:76:2d:8f:e1:67:c0:de:77:b7:94:42:67:a6:63:ac:33:2a:
3a:e0:4a:62:8d:07:dc:c7:57:3c:b1:b3:26:fd:99:ba:bb:ef:
1e:95:dc:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:22 2025 by rpki-client