Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/u6RI2ZXwnkVZOo2ueg0_6XWN5Xg.roa
File: u6RI2ZXwnkVZOo2ueg0_6XWN5Xg.roa (raw, json)
Hash identifier: uzA/DTCUxlZaLjuu2yEExnFS8wmbiussmTpmlqpkvsc=
Subject key identifier: BB:A4:48:D9:95:F0:9E:45:59:3A:8D:AE:7A:0D:3F:E9:75:8D:E5:78
Certificate issuer: /CN=97242dba26ed882b380dabebab3c5f3942006ecc
Certificate serial: 0EBBDDD9
Authority key identifier: 97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/u6RI2ZXwnkVZOo2ueg0_6XWN5Xg.roa
Signing time: Sat 01 Jan 2022 11:56:26 +0000
ROA not before: Sat 01 Jan 2022 11:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 109.68.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247193049 (0xebbddd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97242dba26ed882b380dabebab3c5f3942006ecc
Validity
Not Before: Jan 1 11:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bba448d995f09e45593a8dae7a0d3fe9758de578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:38:77:48:f4:61:17:07:73:31:83:64:4f:
2c:7c:18:49:0c:16:4c:de:49:c9:da:33:0d:f0:4c:
df:3a:dc:40:76:93:40:f7:fd:b2:56:35:8e:e7:fd:
a8:75:fd:e1:c8:20:a9:31:f5:5f:24:03:27:cb:76:
09:6f:27:f1:2a:33:d5:4e:60:56:e5:2c:39:69:55:
b5:2e:9b:86:e9:b3:c4:ab:22:74:6b:0d:05:a5:74:
b3:8c:58:b5:b1:4a:58:e6:1f:4f:20:f6:bb:94:55:
a8:e9:48:88:8b:50:6a:84:21:c2:66:e3:72:93:83:
85:e3:bb:f0:e4:a0:f6:96:ed:4e:b4:3c:62:5f:3b:
1d:55:9f:b5:bc:eb:72:4e:05:79:7d:72:37:1d:77:
3e:75:8e:5a:d7:68:a5:5e:4c:00:d8:21:5f:29:91:
c3:20:8d:95:0b:1e:81:25:f0:73:22:8b:86:3d:4d:
fe:80:5f:e0:98:ea:9d:53:b0:38:15:49:7f:79:93:
79:d0:03:c2:76:41:94:e8:fc:5a:f9:8a:a0:17:32:
de:99:d6:c5:3f:a8:bb:4a:b6:c1:de:5c:2f:a0:47:
52:67:24:62:a7:df:c7:80:77:62:9d:4f:f2:13:9d:
0f:94:d0:3d:38:1a:dd:ca:3d:c8:a1:34:03:e6:2a:
75:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A4:48:D9:95:F0:9E:45:59:3A:8D:AE:7A:0D:3F:E9:75:8D:E5:78
X509v3 Authority Key Identifier:
keyid:97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/u6RI2ZXwnkVZOo2ueg0_6XWN5Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/lyQtuibtiCs4DavrqzxfOUIAbsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.248.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:50:83:d7:b8:d1:47:a5:3d:23:06:16:bf:ce:26:16:34:2e:
14:ca:79:9f:28:eb:b3:dd:37:ec:89:ad:7b:ca:2f:dc:1f:7a:
f6:ca:ba:25:df:22:47:33:83:67:bd:47:5c:bc:d0:63:7e:20:
c7:77:9c:07:10:7d:12:52:a7:93:83:68:9d:37:ca:67:3c:9f:
6d:c6:23:9a:e8:53:be:58:40:41:f8:12:32:8d:f0:40:94:f5:
44:3e:df:cb:25:60:bf:20:33:76:2c:98:53:26:31:b7:34:eb:
12:ac:49:6e:24:65:bb:a6:72:e6:bf:b6:24:6b:90:f3:f9:8c:
2a:12:04:6e:4d:d4:e7:6b:89:bf:36:94:03:d5:81:8b:83:72:
43:c9:93:fb:09:34:08:27:de:f4:3c:4c:18:3d:84:55:28:99:
22:37:2e:5a:55:db:07:df:6e:37:58:89:e2:d7:37:6e:52:ae:
e7:1e:28:2e:46:be:4b:62:20:0a:42:23:ef:0f:db:ec:0a:36:
48:9f:66:43:bd:2b:97:f3:81:dd:68:38:bc:c3:b4:d2:59:46:
a5:cc:32:10:95:7d:61:81:48:1b:cc:09:dd:05:6d:f2:cd:80:
ea:3e:85:9b:0f:03:79:b5:de:58:8e:04:72:fc:98:f4:cb:15:
f7:95:6b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:40 2025 by rpki-client