Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/hsSe9Ri8sS9RsNK9ZJVa4ikqSIg.roa
File: hsSe9Ri8sS9RsNK9ZJVa4ikqSIg.roa (raw, json)
Hash identifier: FzEo9dbgGJ7OLT8x2JKp6RTqcWx5yV8+Y0r2L9PO7L8=
Subject key identifier: 86:C4:9E:F5:18:BC:B1:2F:51:B0:D2:BD:64:95:5A:E2:29:2A:48:88
Certificate issuer: /CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Certificate serial: 1CA34865
Authority key identifier: 2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/hsSe9Ri8sS9RsNK9ZJVa4ikqSIg.roa
Signing time: Sat 01 Jan 2022 11:01:30 +0000
ROA not before: Sat 01 Jan 2022 11:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208167
IP address blocks: 93.157.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480462949 (0x1ca34865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Validity
Not Before: Jan 1 11:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c49ef518bcb12f51b0d2bd64955ae2292a4888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c6:af:8b:80:d4:5c:4f:c4:57:e3:6e:85:2c:
3c:81:52:79:f2:82:25:91:02:ca:f6:81:ff:22:b2:
55:d4:56:72:b0:3b:33:88:a0:c7:95:b5:f7:b5:0a:
23:ce:93:65:65:b2:77:d5:3d:55:7f:9b:cd:39:4f:
5d:19:a0:c3:86:9e:84:0b:71:47:69:8f:38:17:70:
23:84:71:d4:8e:f0:de:5b:13:b5:ab:65:d9:94:bf:
c1:72:e9:5f:c0:f4:68:4f:08:8c:22:62:04:ae:20:
ff:09:e7:1d:5e:38:0c:b7:c1:09:4f:14:54:92:d5:
98:50:12:44:b0:e4:97:ef:5f:e3:96:d0:5c:f3:95:
2e:35:26:41:f4:e3:da:5b:ae:1e:4e:5f:a4:33:66:
81:52:a3:cd:10:96:6c:79:60:bd:8f:88:68:95:02:
99:2f:52:bb:24:1d:f8:c4:a5:69:e8:1f:ec:53:33:
ba:bc:b2:1c:b2:8a:00:07:30:66:22:4b:18:a9:da:
be:ee:b1:e2:6f:5a:8b:c0:17:ea:6b:54:44:17:3c:
ea:52:d7:e8:f3:b0:ed:83:f7:73:ed:2b:58:d4:1c:
29:30:9b:7e:e8:19:6a:96:5a:88:1f:12:ba:d8:65:
aa:fb:d4:dc:c4:0f:ec:b3:50:f6:f2:3f:95:4e:c8:
e6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C4:9E:F5:18:BC:B1:2F:51:B0:D2:BD:64:95:5A:E2:29:2A:48:88
X509v3 Authority Key Identifier:
keyid:2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/hsSe9Ri8sS9RsNK9ZJVa4ikqSIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/LMubibwLwhdSR05lDcNPBp2lwLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.15.0/24
Signature Algorithm: sha256WithRSAEncryption
52:5d:6f:43:3b:b3:8b:a4:8b:85:21:88:77:65:4a:30:7e:b1:
cc:19:d2:15:8e:28:b0:81:8c:81:f3:01:1e:63:4a:61:ff:13:
b2:8b:a7:07:95:e0:02:19:92:1d:1a:88:85:a1:b6:56:40:8e:
61:5e:b3:a7:e0:c3:ef:0f:21:36:38:d5:21:76:c0:ea:c8:a2:
b5:9f:59:1e:40:fa:fc:7d:07:17:99:ca:ea:b2:b8:8a:7b:a1:
36:44:f0:85:32:97:e1:48:be:35:c4:f7:cf:5c:cd:c6:57:56:
0f:e9:bd:22:7e:7e:31:22:95:f7:a1:c6:99:3e:90:12:fe:2f:
4f:61:77:91:cb:5e:60:6e:9a:69:62:35:ae:d8:52:08:f5:c6:
c1:d6:3f:82:c9:f4:d7:0c:6f:16:1b:2c:fa:5a:3f:d0:78:38:
ed:6f:74:14:09:82:10:f1:5f:f0:92:d0:d4:61:5c:c2:ee:3f:
23:2e:a5:09:08:22:84:c5:d0:50:e2:a7:76:9f:b4:3c:c2:a1:
37:fe:95:0b:b7:ac:bb:c2:3b:94:76:a8:cc:67:e5:36:c1:c3:
e1:d7:b9:c7:d2:97:c5:33:66:04:77:aa:8c:c1:b6:46:57:d2:
67:27:0e:c6:f2:5d:8d:06:e9:8c:86:98:e9:44:fb:df:af:70:
11:d2:08:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:06:44 2025 by rpki-client