Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1DCCNWnIm5vOk_ke-SG7mABPuT4.roa
File: 1DCCNWnIm5vOk_ke-SG7mABPuT4.roa (raw, json)
Hash identifier: KmGsV8Ue5vD4+LMyTe1fM3LekktmI2EX+ZboF8oCBK0=
Subject key identifier: D4:30:82:35:69:C8:9B:9B:CE:93:F9:1E:F9:21:BB:98:00:4F:B9:3E
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018894C61EADA5DBD06566FA5E19FB0FEF8D
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1DCCNWnIm5vOk_ke-SG7mABPuT4.roa
Signing time: Wed 07 Jun 2023 07:33:11 +0000
ROA not before: Wed 07 Jun 2023 07:33:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43752
IP address blocks: 213.176.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:c6:1e:ad:a5:db:d0:65:66:fa:5e:19:fb:0f:ef:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 7 07:33:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d430823569c89b9bce93f91ef921bb98004fb93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:06:55:a6:3f:1d:fe:29:c7:d5:1f:4a:a0:
2f:6a:05:f1:5c:e4:e9:88:66:aa:c7:e9:64:fc:f1:
ba:f3:0f:36:ac:35:d4:36:f1:d6:b0:d5:27:e9:95:
e9:38:a8:13:c4:9d:72:68:c3:01:9a:21:62:8a:d3:
39:e3:78:0e:79:19:14:f0:32:7d:7e:d5:e2:f1:db:
74:f7:e7:8a:af:64:13:d9:dc:b9:42:26:1a:93:6c:
e4:43:31:fb:7c:c6:56:ca:94:f3:9c:81:09:b1:ff:
cc:8f:b4:a3:6b:d9:c6:3a:66:6f:ee:cd:a9:e6:0c:
20:e4:c1:cb:63:20:ea:89:91:ea:f3:09:cd:a0:4d:
f8:b5:2c:e4:63:7c:95:8f:b8:66:a5:53:7d:29:6c:
4b:15:fe:f1:a0:bc:cf:f0:e8:db:b4:2f:2e:93:e1:
3a:1e:b4:d4:78:c2:9a:6e:16:3a:37:4a:4c:69:b6:
e6:85:9f:96:8f:f9:af:f2:f8:64:31:af:21:ca:06:
5b:96:9c:ba:e1:f7:1b:82:e6:49:31:68:92:42:21:
b6:0e:40:ce:ac:36:3f:20:3b:6d:f8:63:cc:cb:b6:
e1:2d:68:bf:e4:8d:24:71:01:20:e0:81:a2:68:bf:
ef:d8:9e:1b:5f:04:55:58:cd:ca:e3:9e:04:8c:af:
c2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:30:82:35:69:C8:9B:9B:CE:93:F9:1E:F9:21:BB:98:00:4F:B9:3E
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1DCCNWnIm5vOk_ke-SG7mABPuT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.0.0/24
Signature Algorithm: sha256WithRSAEncryption
83:26:8e:10:56:09:6e:ef:8a:45:3b:0e:6b:a5:20:8f:c9:6f:
31:26:46:5c:2d:16:80:34:71:34:7b:3f:03:5c:a4:dc:40:08:
58:8d:cc:8c:41:bb:57:3e:6f:0b:7a:a7:bd:8f:9b:17:8d:cb:
f8:81:39:c4:c7:81:a4:f3:cc:da:04:23:ad:20:8c:c6:a0:4b:
0b:95:00:b4:a9:52:5d:a9:7e:04:45:89:38:91:de:17:41:99:
f5:f7:54:8a:d5:5a:71:e6:2c:af:2e:1c:77:a9:ee:f9:cd:2d:
77:a7:07:a0:ce:df:be:61:53:b9:8f:7c:87:51:df:d2:9e:3c:
66:53:4c:1a:74:69:40:8d:be:20:e0:b9:b2:c7:b7:21:29:e2:
53:ab:fd:ad:ec:59:79:4e:b8:34:a1:bc:20:44:85:05:5d:eb:
a0:01:0f:6d:eb:97:ca:24:fa:37:f2:df:7b:06:13:6a:5a:0a:
4b:19:f5:47:8e:e1:23:64:6c:75:c0:49:3a:30:de:16:76:79:
ce:ed:c6:a0:90:58:8d:68:d5:c9:d8:e3:0c:3e:a5:e1:ab:85:
2d:8a:ff:07:51:a6:2f:fa:76:22:6c:e9:1c:cc:4b:ca:a4:83:
e0:c2:01:f1:a4:4e:c1:cf:07:65:25:6e:6e:16:8c:6c:ba:15:
bb:30:d7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:41:15 2025 by rpki-client