Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/MyanTI1pKhJoiYI9DhXaYZvFM0U.roa
File: MyanTI1pKhJoiYI9DhXaYZvFM0U.roa (raw, json)
Hash identifier: DNnZ1YMrTECeY/nk6nJEAfpYSlhoPKs1KwZVY5M4FJw=
Subject key identifier: 33:26:A7:4C:8D:69:2A:12:68:89:82:3D:0E:15:DA:61:9B:C5:33:45
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 01856E6FC7F0E1EA5BC979CA60144E10CE4E
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/MyanTI1pKhJoiYI9DhXaYZvFM0U.roa
Signing time: Sun 01 Jan 2023 17:44:57 +0000
ROA not before: Sun 01 Jan 2023 17:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206813
IP address blocks: 194.113.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:c7:f0:e1:ea:5b:c9:79:ca:60:14:4e:10:ce:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Jan 1 17:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3326a74c8d692a126889823d0e15da619bc53345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:78:da:c4:08:29:e1:69:bf:0c:a4:b7:4c:0e:
d1:c1:d9:8f:37:42:14:93:af:ae:e1:97:3b:f6:ce:
08:f3:62:c0:6a:0d:19:e7:2d:9a:ed:07:2a:7b:4b:
f8:ed:fc:91:37:4c:86:3d:04:06:40:a3:76:8a:2c:
0a:bc:00:60:96:5d:c6:ed:98:9b:5c:99:07:89:86:
38:d6:8e:8b:f6:1f:fa:48:17:78:7d:cc:ff:f7:ea:
bb:ad:52:98:71:f0:76:6a:63:07:97:65:bc:15:55:
25:ec:e1:2e:dd:7c:47:19:f9:59:00:05:97:6d:9a:
99:f5:6e:20:65:e3:bb:4a:b2:e6:97:fc:70:9d:4c:
d9:9c:3f:99:e7:76:3c:0c:e7:89:c5:8b:7d:17:9d:
32:15:10:0e:e1:66:3d:77:ff:de:20:80:60:a1:c6:
cd:9d:cf:47:3d:3b:b4:37:34:d6:cc:85:4c:35:50:
48:41:31:02:46:29:9f:3c:34:50:88:38:13:59:fb:
5d:c1:3b:f8:32:84:24:49:fc:cc:6b:fc:87:7f:fa:
89:6f:fd:d8:78:44:cd:54:4d:3a:ec:b8:a4:39:e0:
cb:88:da:84:d6:80:16:d4:e9:b5:b1:e3:f0:e8:98:
ed:14:09:1a:32:c3:3e:68:18:b8:f7:d6:f5:e1:70:
69:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:26:A7:4C:8D:69:2A:12:68:89:82:3D:0E:15:DA:61:9B:C5:33:45
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/MyanTI1pKhJoiYI9DhXaYZvFM0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.54.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:b4:c4:77:a6:0a:a5:e7:95:4e:78:e3:76:cb:ee:91:00:b3:
61:3c:fc:7a:be:b5:f9:45:47:b2:f1:2c:07:bd:2f:31:3e:66:
ef:8f:78:e5:02:4e:9a:e6:12:90:e5:c1:11:fd:96:76:23:05:
82:83:b7:ca:4c:4e:97:9f:62:c2:11:e7:53:ae:3f:e4:0e:79:
a1:fc:20:dd:f2:45:a8:e7:32:8b:00:22:c9:2c:58:97:79:f9:
e0:17:18:26:56:09:6a:48:d8:58:a6:62:b0:15:30:86:3e:ba:
2e:36:56:dc:4a:e2:df:75:29:cf:d8:10:d7:20:34:58:22:be:
82:6b:af:35:73:99:e0:31:f6:b7:4d:68:b6:22:ef:07:64:2a:
5f:12:8b:29:a9:94:45:1c:4a:77:a8:51:19:a3:97:8a:6e:e5:
f0:3b:73:6e:6d:45:19:61:4c:2a:3f:0f:0d:3c:46:bf:d8:d7:
da:a5:1b:a4:d4:28:3a:ea:f3:f5:6f:0e:12:b7:70:6b:c8:0b:
2f:f7:15:02:9b:61:25:c5:0a:46:ae:04:07:85:3d:fb:24:a2:
97:80:49:56:83:84:28:dd:6a:ad:c7:f8:9a:31:77:fe:04:25:
06:dd:31:4c:4d:16:8c:2b:fd:17:dc:b1:d4:99:c0:be:1d:63:
c2:b1:b7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:37:35 2025 by rpki-client