Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/OyioalYou-VzaIhepOAo4kW0Yaw.roa
File: OyioalYou-VzaIhepOAo4kW0Yaw.roa (raw, json)
Hash identifier: REH/8wW38rmidpYsfOCbRCb06QC9NxM2IoQNFSbpfBk=
Subject key identifier: 3B:28:A8:6A:56:28:BB:E5:73:68:88:5E:A4:E0:28:E2:45:B4:61:AC
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 0188BA75D1EEE510C4884F23AE58CE55E64D
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/OyioalYou-VzaIhepOAo4kW0Yaw.roa
Signing time: Wed 14 Jun 2023 15:11:03 +0000
ROA not before: Wed 14 Jun 2023 15:11:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210392
IP address blocks: 178.239.151.0/24 maxlen: 24
178.239.152.0/24 maxlen: 24
185.26.32.0/24 maxlen: 24
185.26.33.0/24 maxlen: 24
178.239.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:75:d1:ee:e5:10:c4:88:4f:23:ae:58:ce:55:e6:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jun 14 15:11:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b28a86a5628bbe57368885ea4e028e245b461ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e1:97:87:90:60:81:35:6b:32:8b:d8:3c:21:
5d:c3:52:d2:d5:09:17:32:67:e4:40:1b:84:9c:47:
3f:86:f1:e0:ae:bf:fb:0e:58:97:07:63:ab:38:fb:
5d:af:84:c6:e7:48:4e:26:92:99:7c:dc:08:71:49:
1e:2b:14:41:2c:aa:05:42:c3:73:a4:59:7d:98:b3:
84:64:d9:81:fb:c3:af:fe:96:51:4a:b5:1a:12:d0:
63:88:9e:06:45:19:ec:b0:49:17:32:cb:3b:cc:94:
3b:14:93:0e:4e:9c:8b:cc:90:16:26:2f:f7:fc:6d:
8c:48:1e:2d:38:71:46:64:45:8d:aa:cb:17:9a:14:
a0:7d:b8:ff:ed:45:f0:83:5e:07:05:93:5e:54:6f:
32:c1:90:56:ce:b3:8b:75:ea:a1:90:b3:c4:9e:f3:
5e:56:7e:79:68:de:cb:a9:28:5d:46:e7:41:bd:f8:
16:3b:84:2b:28:84:2b:e5:16:5c:2a:59:12:f2:40:
ce:48:0f:c3:48:05:93:2b:0f:15:2a:9c:58:5a:c8:
ea:8a:7c:64:24:0e:0d:d1:03:7d:43:1a:0a:85:8e:
7a:07:98:09:6f:d8:dc:d9:8c:bf:42:8d:d6:fe:1b:
dc:a8:2b:82:70:dd:a0:14:2e:d4:97:a4:f3:6d:13:
f3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:28:A8:6A:56:28:BB:E5:73:68:88:5E:A4:E0:28:E2:45:B4:61:AC
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/OyioalYou-VzaIhepOAo4kW0Yaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.151.0-178.239.153.255
185.26.32.0/23
Signature Algorithm: sha256WithRSAEncryption
23:7b:f7:ae:2b:7d:8d:22:9e:14:af:d6:8b:53:d2:62:d4:76:
8f:5b:ba:90:1e:15:f1:6a:41:4a:21:3f:e5:27:c4:e1:5c:7e:
11:b8:7b:79:32:18:2f:73:f4:58:4b:8f:43:ca:ba:2c:94:96:
06:c9:d6:dd:84:0b:22:08:ff:06:76:35:3a:41:d8:03:b5:66:
3f:4f:0b:06:97:1e:6c:50:1b:5f:f8:60:dd:20:01:09:21:d1:
13:3d:c9:9d:ee:31:61:d4:9b:32:72:ff:2a:5b:96:65:de:18:
91:7e:ab:d8:f0:05:85:e2:82:92:e9:44:f4:0e:2b:73:51:ac:
9d:81:0a:47:f2:4e:ef:25:a4:1a:13:45:2d:56:17:78:d2:57:
cd:de:9f:a1:95:fd:1a:4e:e7:81:55:03:9c:bd:06:87:d7:7d:
cd:df:d2:42:cc:2c:5e:77:68:88:82:f6:b1:74:aa:01:01:54:
ca:d1:df:91:65:1e:94:2e:32:3e:61:34:96:8f:b7:1b:44:5f:
18:7f:b4:29:a2:0c:bd:e4:22:8d:2f:29:06:31:83:4a:d8:a0:
9b:e1:ed:4a:f2:f0:d4:6c:a5:b2:6b:aa:ef:83:a9:27:63:ae:
13:a3:7c:4c:89:f1:2f:2f:6d:09:f8:cb:2b:48:a1:80:e4:bc:
12:df:1d:63
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 15 04:02:18 2025 by rpki-client