Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/bTubohh3exHqk_TgS4WoLWRjJZ8.roa
File: bTubohh3exHqk_TgS4WoLWRjJZ8.roa (raw, json)
Hash identifier: L5Lwib02MhW+rtikzMnxeSlOPmw9SFaJeaQTO3kSsds=
Subject key identifier: 6D:3B:9B:A2:18:77:7B:11:EA:93:F4:E0:4B:85:A8:2D:64:63:25:9F
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018649558DFC679C2C59613652254728F8C6
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/bTubohh3exHqk_TgS4WoLWRjJZ8.roa
Signing time: Mon 13 Feb 2023 05:53:09 +0000
ROA not before: Mon 13 Feb 2023 05:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212383
IP address blocks: 94.188.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:49:55:8d:fc:67:9c:2c:59:61:36:52:25:47:28:f8:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Feb 13 05:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d3b9ba218777b11ea93f4e04b85a82d6463259f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:f2:ea:0d:d0:88:2c:d8:d4:1d:c1:c4:8e:
e1:1b:d7:32:39:5c:60:f4:cf:4a:e2:e9:f3:1f:f8:
bb:20:4e:ef:b6:8a:f3:b2:d3:da:95:89:0b:53:28:
08:4d:00:52:c2:67:c3:79:eb:61:49:d8:84:f3:bb:
bc:a8:93:6f:85:00:c8:93:8f:f6:78:32:81:ca:a1:
4e:06:d2:0d:87:01:60:e0:9a:34:0a:40:c7:9a:f3:
e2:9f:51:6f:35:d3:24:5a:18:9b:57:c7:50:06:e5:
4c:d9:ff:13:24:c9:ef:99:3d:2d:bb:4c:f6:eb:58:
88:9b:4e:15:19:7a:a0:46:93:94:6f:69:1c:a2:8d:
75:61:a9:d1:7b:9b:ed:41:dd:9c:47:be:ac:2e:86:
65:ac:11:46:01:41:d6:b4:be:11:97:81:b0:7e:af:
43:c5:6d:0b:11:d5:37:d0:18:ff:66:8b:cb:18:3f:
84:b6:79:0c:04:31:f0:c1:2d:5f:b1:a5:11:02:d4:
d6:4c:bb:13:06:4b:78:41:53:09:b2:04:2c:9d:ec:
b3:1b:7a:a0:96:20:f1:10:48:9b:7d:6c:55:94:10:
92:f9:13:92:f8:67:52:14:eb:41:2f:03:4b:65:9b:
81:bc:33:69:8a:ef:32:99:f4:46:ec:00:71:3e:2e:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3B:9B:A2:18:77:7B:11:EA:93:F4:E0:4B:85:A8:2D:64:63:25:9F
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/bTubohh3exHqk_TgS4WoLWRjJZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.249.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d5:1f:a1:38:4a:0b:55:69:cc:d9:3b:02:33:1d:09:6a:bf:
8c:d2:05:42:24:9f:04:aa:ed:22:eb:49:1c:35:7e:4d:6f:cb:
54:94:4e:63:c7:b9:4b:2e:14:07:45:ab:3b:f3:a8:d9:5c:07:
0c:7b:0b:1f:fc:31:a7:af:30:9d:8f:01:9b:bf:af:99:7b:55:
28:76:f0:c4:ff:e5:3b:8e:98:08:47:5b:c5:02:77:df:ad:29:
8f:3f:04:be:f5:2c:bf:60:36:ab:c9:c8:7c:49:c3:9b:2e:ff:
25:71:e6:2b:de:70:2a:88:89:a7:09:06:37:bd:95:4a:a6:37:
7f:3a:14:70:bf:a1:fd:99:09:02:d8:ae:08:b5:71:ba:4c:a6:
6c:b0:25:f6:ee:ff:36:74:5d:c7:56:66:49:11:73:dd:a6:f2:
7d:97:be:ae:ad:a5:7a:84:be:3c:b6:b0:79:f7:99:bd:df:02:
6a:3b:91:d0:b4:ac:eb:73:a4:16:40:45:c5:a1:fc:62:ec:f7:
76:e2:c5:0c:0a:dc:ba:74:c5:53:16:f8:e9:07:ae:e9:e3:ea:
57:c1:d0:8c:2b:56:07:62:ef:9c:00:0d:93:a2:cc:84:97:a1:
38:95:8b:fc:60:65:84:33:67:fa:a5:e5:de:68:ae:0b:11:96:
28:9e:85:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 10:41:57 2025 by rpki-client