Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7JbKf45bKFUEmx1cHpIb_Hv1NW0.roa
File: 7JbKf45bKFUEmx1cHpIb_Hv1NW0.roa (raw, json)
Hash identifier: odF+I7M4lfPG3YLSZNk68SBuCRURpHKK3yaOQkn9QFc=
Subject key identifier: EC:96:CA:7F:8E:5B:28:55:04:9B:1D:5C:1E:92:1B:FC:7B:F5:35:6D
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 3579D190
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7JbKf45bKFUEmx1cHpIb_Hv1NW0.roa
Signing time: Sat 01 Jan 2022 06:54:18 +0000
ROA not before: Sat 01 Jan 2022 06:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12353
IP address blocks: 80.173.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897175952 (0x3579d190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Jan 1 06:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec96ca7f8e5b2855049b1d5c1e921bfc7bf5356d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:07:9d:37:11:e5:e0:3f:25:53:16:ba:01:58:
b6:5b:7f:b8:4f:15:6d:8b:ab:b6:7e:31:52:c2:1f:
ad:fd:52:05:2a:49:af:b3:f9:a7:92:10:ef:02:c2:
96:46:45:4e:bf:4f:f5:75:4e:4a:00:7a:9c:f2:4b:
1e:74:f5:20:b4:c0:2e:de:9d:c6:27:20:7c:f2:3d:
0f:89:0c:3a:9f:f2:07:ae:20:66:a4:50:10:75:52:
10:5f:68:92:87:63:01:1c:c9:e1:16:e9:97:35:2a:
e7:d7:80:3f:0c:70:00:79:a4:1d:19:f9:45:5f:e8:
e4:1d:3b:79:c0:3a:b6:71:26:f7:c8:8f:3c:4f:46:
26:e7:0d:7d:14:ae:19:4c:75:fa:b9:85:b8:8d:38:
59:49:e3:07:e3:b1:70:bf:68:f9:07:27:5c:d1:15:
cb:5f:d0:5f:3f:d3:f0:a3:b9:6d:b3:fa:bb:d6:e9:
80:ea:83:21:92:13:b9:ea:14:fb:33:8d:11:8b:f3:
44:f3:ea:d9:ec:c0:21:e4:57:67:19:77:a9:8d:55:
91:92:ad:14:83:9d:ee:b5:ba:f7:2d:94:7b:65:f4:
5e:4b:d9:4f:76:7d:8d:f7:75:6e:94:b1:ad:e6:db:
6f:22:85:64:14:77:92:10:8b:4b:a9:43:c2:4f:3c:
d3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:96:CA:7F:8E:5B:28:55:04:9B:1D:5C:1E:92:1B:FC:7B:F5:35:6D
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7JbKf45bKFUEmx1cHpIb_Hv1NW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.173.128.0/17
Signature Algorithm: sha256WithRSAEncryption
65:0d:53:08:26:a3:d7:bc:d6:70:93:7b:d6:a9:ea:a9:38:1b:
c0:5a:0a:e7:0d:19:fc:ea:71:20:eb:af:31:5d:89:04:6a:7b:
d3:33:d7:d8:5d:c5:e5:6f:6a:32:d2:cb:93:ce:cb:c2:2a:8e:
d8:50:58:da:73:fc:d2:92:27:8b:db:44:40:71:8e:b1:48:92:
31:2c:52:e6:51:8a:28:6e:c0:8e:b2:15:48:20:f6:20:d0:7c:
07:e0:4c:7d:35:b7:6a:8f:bc:49:69:29:20:07:49:9a:0e:57:
53:30:4a:d1:cc:38:f2:ad:9e:a7:ce:fd:a2:df:ff:8c:37:68:
1b:42:b6:fc:8c:e2:09:a4:4d:39:a3:03:48:1e:c2:ad:65:0c:
6d:cd:d1:fc:51:5e:d1:fb:72:13:a9:4c:90:c4:4b:e7:16:01:
c6:9a:d4:bc:aa:65:5e:c2:f2:ce:ce:0c:0d:8a:1c:72:12:68:
2d:84:33:e3:bc:35:d8:64:ea:04:11:e7:db:9b:7d:e3:5b:9a:
de:1e:f8:1a:cd:7e:56:68:56:43:ba:e1:7c:ed:31:94:3a:63:
2c:3a:19:24:f0:2d:1b:a3:0d:f7:ae:ed:5d:31:65:d2:af:46:
cd:96:09:ec:3c:3a:f2:b2:a7:e2:50:c0:34:81:d5:26:9a:ee:
21:fd:52:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:32 2025 by rpki-client