Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A8LFInHhLLhUTrVV8330jHy-bTc.roa
File: A8LFInHhLLhUTrVV8330jHy-bTc.roa (raw, json)
Hash identifier: g4OX/9jpHC6oF68SoJ3ZxFV2KiKJQLSZM6COaDTf/ow=
Subject key identifier: 03:C2:C5:22:71:E1:2C:B8:54:4E:B5:55:F3:7D:F4:8C:7C:BE:6D:37
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01877769E65464BFBB31C35118BC79FD6180
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A8LFInHhLLhUTrVV8330jHy-bTc.roa
Signing time: Wed 12 Apr 2023 21:40:41 +0000
ROA not before: Wed 12 Apr 2023 21:40:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 194.146.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:69:e6:54:64:bf:bb:31:c3:51:18:bc:79:fd:61:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 12 21:40:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03c2c52271e12cb8544eb555f37df48c7cbe6d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c7:a7:31:cb:f7:61:84:d6:f1:90:e2:38:b5:
c7:29:ed:c8:5a:f2:cd:e8:0f:ef:8c:70:11:d6:ed:
67:27:63:18:5d:f0:06:33:3a:66:9f:e4:51:3f:5e:
f8:20:9d:9e:84:08:08:3f:41:a2:d0:d3:6e:82:5b:
8d:45:a7:5a:ae:bf:9e:4e:48:3b:87:04:44:51:48:
e6:dd:94:8f:9b:ff:1a:4b:96:9b:1f:e9:43:07:81:
7a:4c:19:7b:13:52:e3:64:1c:ab:04:44:c6:f3:d1:
20:95:58:1f:7e:df:5d:69:d9:75:10:cc:f0:4d:80:
5e:27:d8:fc:c0:cd:62:ed:e6:a8:07:50:87:78:9c:
2a:09:1e:43:ea:fc:b6:4d:b8:54:a8:54:1e:c1:71:
fd:90:f3:eb:50:14:ba:10:69:a7:a3:80:15:77:1d:
bb:17:1c:cb:03:cb:fa:b2:e2:a3:a4:96:88:ec:34:
b7:dd:00:cd:41:07:09:bc:ca:ab:cb:e7:c0:5c:c7:
ca:d7:79:d5:e8:2a:26:fe:da:2f:ec:4e:0f:5d:20:
99:07:41:71:7b:05:47:d8:62:13:d3:07:8c:50:90:
3f:f8:8d:d1:de:3d:e0:aa:20:9d:8b:47:db:60:b6:
00:4b:70:16:08:c9:c3:ee:2c:8c:21:cb:0c:04:b1:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C2:C5:22:71:E1:2C:B8:54:4E:B5:55:F3:7D:F4:8C:7C:BE:6D:37
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A8LFInHhLLhUTrVV8330jHy-bTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:48:20:1b:81:28:89:6e:02:53:c5:eb:57:69:b1:b4:f4:ac:
e4:a3:f3:05:84:4d:3f:77:31:42:5d:32:8e:4b:5a:fb:58:c2:
0d:d6:33:92:2c:90:6d:54:e5:66:cd:7b:71:e2:b0:c9:e5:90:
36:28:5f:b3:63:0e:d3:bb:54:cb:a9:ee:ba:3d:34:4f:21:57:
82:85:74:da:56:b7:77:c5:fb:4d:9d:ac:17:e6:dd:4c:c9:0e:
af:a3:ba:c1:bf:a6:e3:a8:55:78:8c:08:4d:86:4f:8c:c0:fb:
97:ab:18:af:6a:c7:76:0b:20:60:5e:73:b8:3c:4c:2c:22:48:
94:d5:fe:97:0f:55:d2:3a:06:62:14:88:8d:7e:a9:37:82:63:
79:bd:0b:b5:3e:8c:bb:b7:b8:be:88:44:64:b7:9c:15:03:3e:
f7:a9:dd:98:f6:90:61:b7:a0:62:83:0a:e0:11:53:d7:8b:17:
37:07:07:ed:dc:3f:cc:40:5e:af:58:a1:a2:8a:40:03:b6:66:
b7:08:25:9a:ae:72:14:e3:f7:2c:d1:63:30:75:91:30:4d:4e:
a7:f1:27:32:95:13:3a:92:37:09:e4:81:4b:9a:12:b7:54:a7:
8e:a4:b6:ac:94:57:43:94:32:93:e5:d9:6a:ea:ee:21:bc:81:
51:d9:ba:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:45:59 2025 by rpki-client