Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/1-4fJdZVQuSmVO5Vmmxxs8fV4KkM.roa
File: 1-4fJdZVQuSmVO5Vmmxxs8fV4KkM.roa (raw, json)
Hash identifier: EmMyGqCytSWivKQbme07qMWDdtuB/l71ZFuGl+KMSIE=
Subject key identifier: FB:87:C9:75:95:50:B9:29:95:3B:95:66:9B:1C:6C:F1:F5:78:2A:43
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 0185707988D704407FE2F9B97A7944E09C79
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/1-4fJdZVQuSmVO5Vmmxxs8fV4KkM.roa
Signing time: Mon 02 Jan 2023 03:14:50 +0000
ROA not before: Mon 02 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396073
IP address blocks: 193.228.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:88:d7:04:40:7f:e2:f9:b9:7a:79:44:e0:9c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Jan 2 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb87c9759550b929953b95669b1c6cf1f5782a43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a4:ae:87:99:59:09:dc:bf:81:ff:35:a0:1a:
52:84:93:8b:e5:51:53:2f:5e:2e:57:5a:17:eb:2c:
fa:27:65:a5:d8:6c:0c:59:f2:60:54:d3:bb:19:2e:
79:2c:b1:7f:d9:2a:f6:86:c4:2a:f4:0a:52:60:64:
a9:ea:5a:77:5d:2d:ef:0e:83:93:91:4e:43:24:b9:
a9:95:5f:a2:cc:56:e0:26:a7:aa:46:04:60:78:32:
c9:eb:be:8b:e3:fa:48:33:20:9e:86:ce:c5:36:8a:
78:ab:8a:32:1f:8f:86:76:13:f4:70:05:f6:d7:32:
f9:a2:b7:e1:2f:30:9a:e7:3f:55:c5:cd:50:8d:9a:
e2:e4:33:e8:57:75:f8:32:bd:20:a3:6a:01:ad:85:
12:41:72:80:bf:29:1b:47:3c:94:ac:c9:90:de:08:
d9:29:27:55:de:ba:33:82:f1:06:29:7d:4d:72:38:
dd:6f:57:6c:e3:dc:1e:c6:5d:e0:37:ba:4d:b5:9f:
2a:9b:36:23:d4:c7:3e:88:e6:50:ad:81:52:5d:3d:
d1:33:2d:41:df:54:22:e8:51:ec:bd:72:e2:05:be:
56:91:23:53:b6:68:03:7c:43:2d:2e:b7:68:be:80:
2a:bb:3f:fc:a3:a4:31:a7:85:05:73:0b:d4:a6:90:
6a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:87:C9:75:95:50:B9:29:95:3B:95:66:9B:1C:6C:F1:F5:78:2A:43
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/1-4fJdZVQuSmVO5Vmmxxs8fV4KkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.169.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:87:56:be:6c:b2:3e:39:c1:b5:d6:34:33:26:34:79:02:21:
dc:9e:7e:d5:80:c5:8d:57:16:b7:32:54:ea:d6:f4:5a:8e:44:
58:9a:21:bf:29:fd:ad:22:d0:78:cb:8d:d9:c0:18:da:78:eb:
3e:dc:44:86:25:7d:61:06:c3:bb:b8:de:e2:14:c6:7c:f3:ef:
27:3b:98:2f:8f:92:7e:b0:da:74:fa:ff:fc:16:07:17:09:1b:
4b:b9:18:bc:e9:ad:16:f2:b0:43:d8:c8:2b:77:87:b9:3d:85:
9f:41:8a:9a:da:a0:44:10:fb:c1:34:72:e5:3d:95:90:78:16:
c2:25:8e:0c:3c:c2:32:14:8a:c1:47:1d:b8:38:86:4f:1a:fa:
94:26:26:a5:e9:a0:f6:4c:d4:49:4c:88:1f:5a:1c:ce:58:4e:
bb:e0:a7:a5:79:16:dd:14:b5:6a:f9:d7:14:d6:e7:6a:61:08:
ba:af:10:67:93:7b:9e:e5:8a:7c:8f:c6:81:07:65:b3:03:e6:
37:41:9c:dc:cc:d9:9b:28:82:24:fd:5a:d1:ff:6b:6b:5a:fe:
90:67:3a:79:5d:5e:f5:df:95:d9:b9:0f:19:52:d5:c0:58:da:
65:c5:60:74:16:f3:13:95:73:23:92:1b:e7:70:81:bf:f3:08:
93:96:0f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:48:59 2025 by rpki-client