Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/dCSUQRZbVUlFLafzaLBoRFsBRrU.roa
File: dCSUQRZbVUlFLafzaLBoRFsBRrU.roa (raw, json)
Hash identifier: gTJrgMEGR0N8ToYu4eklPqOyA1KDGwx/Vh7DC/S9VbI=
Subject key identifier: 74:24:94:41:16:5B:55:49:45:2D:A7:F3:68:B0:68:44:5B:01:46:B5
Certificate issuer: /CN=66bd82ba1881ad64f524e33ece12ada4b3b5d57f
Certificate serial: 01856E0AE2A2275C358949FC30BB989A3870
Authority key identifier: 66:BD:82:BA:18:81:AD:64:F5:24:E3:3E:CE:12:AD:A4:B3:B5:D5:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zr2CuhiBrWT1JOM-zhKtpLO11X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/dCSUQRZbVUlFLafzaLBoRFsBRrU.roa
Signing time: Sun 01 Jan 2023 15:54:45 +0000
ROA not before: Sun 01 Jan 2023 15:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 132.199.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:e2:a2:27:5c:35:89:49:fc:30:bb:98:9a:38:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66bd82ba1881ad64f524e33ece12ada4b3b5d57f
Validity
Not Before: Jan 1 15:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74249441165b5549452da7f368b068445b0146b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:71:ce:ea:00:7d:3f:65:62:34:9e:ad:a1:15:
11:ae:8b:e3:98:01:05:3f:5d:c2:f2:98:f2:c0:cc:
56:ba:62:2b:f2:ff:0b:e8:d5:8d:d9:e0:81:1f:01:
68:f8:49:c9:d9:3b:a8:f8:b7:59:cb:17:b9:67:aa:
b0:05:a3:ee:ba:92:32:9a:05:3f:f9:6d:80:3b:f2:
b3:65:bd:2e:2f:10:eb:51:47:f7:15:0d:7f:8a:b2:
9d:ad:fd:c2:08:be:26:e4:13:e7:fe:22:0b:7f:a5:
36:07:6a:1d:3b:3f:6a:a6:50:3d:d8:10:8a:4c:f0:
c1:3e:ab:85:d5:66:35:b9:0f:d2:d9:be:88:ed:f6:
8b:83:12:64:a5:c4:04:0a:48:b2:3f:c7:63:85:7b:
00:8c:04:fa:91:1e:72:db:e0:bc:ee:89:e3:bb:e8:
ba:d8:52:bc:87:4d:0f:73:fe:ee:5e:2a:7a:ed:ea:
6d:88:00:2c:85:38:bd:8f:d7:c8:49:20:e4:b3:1e:
32:16:6e:95:1c:63:c1:c6:1c:a8:aa:d7:1a:92:80:
6a:d2:6c:b3:b4:69:b7:fc:55:6d:72:60:a7:70:8f:
3b:93:71:47:3f:26:63:7e:d8:ef:ee:a7:5f:31:78:
95:8e:7c:f3:90:c4:ce:89:59:59:04:20:f2:90:6a:
ba:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:24:94:41:16:5B:55:49:45:2D:A7:F3:68:B0:68:44:5B:01:46:B5
X509v3 Authority Key Identifier:
keyid:66:BD:82:BA:18:81:AD:64:F5:24:E3:3E:CE:12:AD:A4:B3:B5:D5:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zr2CuhiBrWT1JOM-zhKtpLO11X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/dCSUQRZbVUlFLafzaLBoRFsBRrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e1e2a7-fd96-4cf1-82c3-ba2b90d49547/1/Zr2CuhiBrWT1JOM-zhKtpLO11X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9e:a2:de:c1:ab:52:0e:0f:68:3e:66:da:43:25:51:57:a2:9f:
54:97:e1:7b:f6:e2:50:46:4f:83:a2:ba:a5:76:3f:b2:31:e8:
24:7f:02:00:b1:2f:73:5a:f1:6c:8e:4f:0c:e3:eb:48:c1:2e:
9b:32:f4:bf:2c:9b:5d:b3:fe:0c:34:d4:73:2c:f4:55:b8:37:
21:3e:55:ca:cf:f3:b3:fc:e1:f2:29:4a:55:2f:4b:c7:13:00:
b4:70:17:21:47:80:43:34:82:fb:3d:85:5e:64:d1:c5:ae:99:
f2:8a:83:1a:3b:77:a5:00:8a:2a:1d:06:7b:74:4c:66:c2:b3:
4f:92:2d:42:c0:9d:1b:0f:68:00:0f:ea:00:e7:6d:21:fe:79:
14:01:51:41:d6:f9:57:7f:d5:d6:74:b5:c5:bb:2a:af:5e:ee:
ae:a9:15:3b:89:67:97:39:f4:ed:6a:e7:89:dd:6d:93:5c:3d:
38:6b:e3:d3:b3:96:f5:29:b2:d6:59:fa:e2:f9:7d:86:c3:44:
09:b7:46:0c:2a:16:ad:95:d8:5a:fe:7f:97:5d:86:eb:e8:6b:
c2:12:ac:3f:de:4b:ef:51:04:3a:84:0d:f1:3c:a6:3f:cf:db:
aa:14:22:dc:ce:c2:31:ae:d9:54:72:97:29:6f:ef:67:d3:58:
28:f8:80:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:08:23 2025 by rpki-client