Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djQG4L2pQOZulPB0L4Thtb5LK-s.roa
File: djQG4L2pQOZulPB0L4Thtb5LK-s.roa (raw, json)
Hash identifier: nrZw8Nr5BVH3mktF5IA9OMgCrJwIT2q0/WcPv6s0Grk=
Subject key identifier: 76:34:06:E0:BD:A9:40:E6:6E:94:F0:74:2F:84:E1:B5:BE:4B:2B:EB
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01882396CE19DE0E8D73E7607621C917827C
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djQG4L2pQOZulPB0L4Thtb5LK-s.roa
Signing time: Tue 16 May 2023 08:04:25 +0000
ROA not before: Tue 16 May 2023 08:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199470
IP address blocks: 194.103.166.0/24 maxlen: 24
194.103.164.0/24 maxlen: 24
194.103.162.0/24 maxlen: 24
194.103.160.0/24 maxlen: 24
194.103.165.0/24 maxlen: 24
194.103.163.0/24 maxlen: 24
194.103.161.0/24 maxlen: 24
194.103.170.0/24 maxlen: 24
194.103.168.0/24 maxlen: 24
194.103.172.0/24 maxlen: 24
194.103.169.0/24 maxlen: 24
194.103.167.0/24 maxlen: 24
194.103.171.0/24 maxlen: 24
194.103.178.0/24 maxlen: 24
194.103.176.0/24 maxlen: 24
194.103.174.0/24 maxlen: 24
194.103.179.0/24 maxlen: 24
194.103.177.0/24 maxlen: 24
194.103.175.0/24 maxlen: 24
194.103.173.0/24 maxlen: 24
194.103.184.0/23 maxlen: 24
194.103.182.0/24 maxlen: 24
194.103.180.0/24 maxlen: 24
194.103.183.0/24 maxlen: 24
194.103.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:96:ce:19:de:0e:8d:73:e7:60:76:21:c9:17:82:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 16 08:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=763406e0bda940e66e94f0742f84e1b5be4b2beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:74:68:bf:e9:05:c8:48:71:ad:89:63:5f:63:
a6:82:80:be:9d:70:21:b1:dd:67:13:8d:87:32:49:
34:d1:e8:8a:89:fa:7d:eb:de:ae:b1:74:00:58:1d:
c0:68:3a:13:d9:88:4c:ce:dc:a4:70:29:f6:e7:d3:
6e:c1:b2:be:0b:0a:f1:36:e7:5e:da:6e:12:f2:08:
c5:44:e9:29:05:3a:04:e4:37:a8:81:79:a4:4e:3d:
ef:4d:01:73:fe:83:35:8b:3b:6f:2d:0a:01:80:aa:
a6:77:be:7b:a9:8a:fe:a4:b9:36:38:98:c7:bd:9c:
ab:f9:cc:08:81:dc:5a:56:63:a6:34:8b:a2:86:3b:
bc:f1:c5:a7:32:c6:8a:f4:6b:a0:50:bb:eb:8b:a1:
67:f7:8a:31:86:0b:71:df:e8:2c:e8:3b:80:18:27:
f2:76:86:fc:61:8f:cb:81:7f:06:c7:88:64:7c:e4:
40:12:b1:4f:42:38:64:5c:5d:50:a8:77:5c:67:13:
68:1e:1d:47:e1:73:aa:cd:9a:ab:c8:a3:fb:f0:a7:
60:96:47:fc:a7:2d:fe:45:10:69:74:10:ba:6f:bc:
53:f4:83:a6:7b:0e:38:7d:32:a0:56:f2:66:0f:35:
a6:f9:1d:2c:cc:2b:be:71:b3:5f:ee:bc:ee:2d:4e:
6a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:34:06:E0:BD:A9:40:E6:6E:94:F0:74:2F:84:E1:B5:BE:4B:2B:EB
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djQG4L2pQOZulPB0L4Thtb5LK-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.103.160.0-194.103.185.255
Signature Algorithm: sha256WithRSAEncryption
55:71:00:73:6b:27:26:98:7a:20:90:32:ff:55:4a:cf:7d:a9:
78:b4:19:dd:f8:a1:5c:e1:a0:da:88:b4:41:62:0c:f1:1d:8c:
d2:b5:10:5e:8a:36:e4:3c:7d:e2:8c:91:c1:0f:0d:31:32:7b:
f4:98:da:36:44:32:f9:b5:18:6c:b4:87:b4:c2:1c:21:46:84:
ee:dc:ef:17:80:09:8f:69:b3:60:e5:62:b2:42:a9:2a:b6:71:
be:d2:1d:bf:ab:2f:b4:4e:17:92:d1:26:81:f8:b1:eb:a0:25:
44:db:b1:51:22:d0:f1:d1:ea:1e:ed:3b:66:d2:31:07:c0:59:
1e:c7:18:e7:b0:19:51:14:db:a0:3f:b8:5a:be:b2:3f:cc:60:
8c:96:57:2d:95:9c:6a:45:c7:7a:d5:79:fe:19:82:42:5c:dc:
c6:52:c2:61:42:cf:2d:ca:c4:4a:3f:be:98:74:e0:2f:8f:05:
81:95:7a:f7:62:eb:41:5f:9d:81:c3:86:b3:f4:33:38:df:7c:
4e:b0:54:ec:07:99:88:0b:25:3e:c1:11:8f:ff:b0:54:56:fb:
c3:f1:a5:de:da:5f:f3:a9:46:ba:92:af:c1:0f:8a:14:b3:92:
2c:65:21:23:85:05:b8:5a:0a:29:87:02:d4:69:e7:a6:13:81:
a6:45:23:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 16:37:35 2025 by rpki-client