Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0f6d4a-1166-4d2d-a921-e143faaa0b82/1/bGByKv8vkem-x1vVTVO6ECwuaGs.roa
File: bGByKv8vkem-x1vVTVO6ECwuaGs.roa (raw, json)
Hash identifier: DlYgLnMN44ZNaV4qOoMjCIWE8gxV4wdUNFgiXrnMDCE=
Subject key identifier: 6C:60:72:2A:FF:2F:91:E9:BE:C7:5B:D5:4D:53:BA:10:2C:2E:68:6B
Certificate issuer: /CN=93758f92a7fd7359ba2848125a84dfcc42d14b6c
Certificate serial: 09372769
Authority key identifier: 93:75:8F:92:A7:FD:73:59:BA:28:48:12:5A:84:DF:CC:42:D1:4B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k3WPkqf9c1m6KEgSWoTfzELRS2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0f6d4a-1166-4d2d-a921-e143faaa0b82/1/bGByKv8vkem-x1vVTVO6ECwuaGs.roa
Signing time: Sat 01 Jan 2022 09:02:46 +0000
ROA not before: Sat 01 Jan 2022 09:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52080
IP address blocks: 193.105.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154609513 (0x9372769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93758f92a7fd7359ba2848125a84dfcc42d14b6c
Validity
Not Before: Jan 1 09:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c60722aff2f91e9bec75bd54d53ba102c2e686b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:33:9b:24:80:79:e3:7a:59:c8:50:29:f9:2a:
8a:89:f8:ce:2d:ae:10:7f:b0:14:0b:a7:d1:0a:62:
01:0e:3f:ce:cf:97:de:df:9c:9a:52:f5:f8:84:bd:
e9:7c:5b:fb:dc:10:ce:9f:97:e0:93:21:e1:91:87:
a7:61:7a:ca:45:ed:7b:e8:7d:11:85:67:63:1c:00:
5d:8c:99:97:9d:98:48:c7:54:24:62:1b:9b:df:07:
5b:09:6b:04:61:a6:0c:42:7f:39:81:19:77:08:69:
b1:e1:21:a4:71:c7:b9:be:dc:39:4b:cc:f0:ae:f5:
4f:23:89:db:23:46:4e:dd:2e:1b:57:47:fa:1a:4f:
4d:62:bb:5d:ec:e9:61:72:3d:0b:83:c4:36:aa:57:
11:3a:3d:0e:5f:10:ba:4f:c1:a9:bf:26:48:8b:b5:
33:17:7c:a5:81:25:b1:f2:6e:11:e1:69:d9:9f:31:
54:4c:88:83:f2:93:ad:39:ec:33:81:8d:91:37:a8:
89:0b:f2:10:d8:19:42:64:26:93:7e:54:5e:07:55:
0a:32:16:fc:55:54:d9:9e:d3:ca:0a:30:4e:9b:56:
68:f4:28:ba:4b:6b:96:99:c0:02:6e:f0:27:98:1f:
15:76:76:64:a8:20:19:06:6d:4b:05:e0:e6:dd:b5:
cf:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:60:72:2A:FF:2F:91:E9:BE:C7:5B:D5:4D:53:BA:10:2C:2E:68:6B
X509v3 Authority Key Identifier:
keyid:93:75:8F:92:A7:FD:73:59:BA:28:48:12:5A:84:DF:CC:42:D1:4B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k3WPkqf9c1m6KEgSWoTfzELRS2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0f6d4a-1166-4d2d-a921-e143faaa0b82/1/bGByKv8vkem-x1vVTVO6ECwuaGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0f6d4a-1166-4d2d-a921-e143faaa0b82/1/k3WPkqf9c1m6KEgSWoTfzELRS2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.110.0/24
Signature Algorithm: sha256WithRSAEncryption
04:9d:da:2a:98:87:5d:b7:d4:1b:d9:b3:97:69:9e:d0:d0:ba:
58:e5:11:c5:a1:d5:3e:5b:cb:7e:76:57:9b:a0:41:a2:7f:a3:
f0:98:1b:b1:c7:bf:11:73:7f:df:0e:75:33:59:54:3b:ef:4d:
7a:a8:4e:87:b1:38:f3:44:99:97:f4:03:68:89:1c:f0:db:b6:
b3:20:29:7d:70:23:73:b4:66:12:e9:07:2c:aa:36:2c:13:55:
0d:a1:f2:cf:3a:60:a9:e2:e7:e8:da:38:1d:d8:e9:47:35:d0:
0d:a8:3f:8e:d7:2e:4d:08:49:3d:22:05:ce:0a:d6:aa:55:b3:
e5:57:c9:6b:c7:27:1f:3b:09:e3:a2:15:84:32:16:7c:f6:c5:
28:a7:fe:74:67:e6:49:86:e5:d8:2b:ea:02:22:68:67:f3:c4:
20:b3:b0:7c:74:a6:8b:30:1d:3d:11:d5:cb:61:1a:a4:79:68:
91:f0:7b:c1:69:9c:ac:64:c0:be:4e:6b:7c:6b:c8:73:1a:1c:
27:ee:0e:13:5c:46:3e:d4:0b:2b:c5:a1:3f:b4:12:88:d9:98:
d8:c0:78:f0:8a:13:ee:9f:ad:ee:07:27:1c:20:5a:d8:f2:8e:
cd:0b:bc:76:9d:92:a1:ac:40:94:f6:12:9b:09:be:5b:ac:b2:
9f:37:95:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:56:59 2025 by rpki-client