Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/TleEzrlGjsI4iyREPQRobuymWpI.roa
File: TleEzrlGjsI4iyREPQRobuymWpI.roa (raw, json)
Hash identifier: j++Gg8DRtSH/iB56R3F4MC9kdVNiUCSDQbyjNCcYEPM=
Subject key identifier: 4E:57:84:CE:B9:46:8E:C2:38:8B:24:44:3D:04:68:6E:EC:A6:5A:92
Certificate issuer: /CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Certificate serial: 01856FF93E41F5E20924B58245165B7E9D96
Authority key identifier: F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/TleEzrlGjsI4iyREPQRobuymWpI.roa
Signing time: Mon 02 Jan 2023 00:54:43 +0000
ROA not before: Mon 02 Jan 2023 00:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 193.200.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:3e:41:f5:e2:09:24:b5:82:45:16:5b:7e:9d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Validity
Not Before: Jan 2 00:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e5784ceb9468ec2388b24443d04686eeca65a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6a:e6:7e:0f:70:97:58:96:8c:87:f3:9b:97:
ff:94:ea:59:31:53:a0:df:bc:70:c2:f3:86:e9:65:
39:bf:be:a9:5f:26:8c:08:4f:2a:d6:a4:34:db:9f:
b0:5d:a5:a2:ea:e4:9e:25:1a:29:2a:4c:9c:a7:10:
74:e2:4c:52:39:41:21:cb:9f:b8:99:ae:f6:72:0b:
da:dd:ad:bf:55:00:54:4f:8f:89:ca:ce:58:42:7d:
6d:aa:14:1e:99:6f:74:08:a6:c6:f2:cc:b9:e0:82:
04:83:84:56:3d:f1:d3:1d:27:a4:c4:90:1d:4a:09:
d4:28:60:af:1f:7a:a7:d0:29:ad:e2:80:d6:e8:0f:
40:25:ff:b4:e0:a3:e3:be:e9:93:32:9b:a3:82:eb:
d9:64:bf:8b:6e:43:13:c8:68:17:1a:d7:e6:ce:3c:
bc:86:c1:c3:67:c6:fd:42:cf:72:88:e4:41:c9:7e:
4b:6d:8a:15:78:4c:cb:7f:2c:9c:7a:f5:08:25:70:
77:df:11:2e:2a:f3:10:6f:93:4b:c6:1d:b8:ed:33:
de:99:a8:5f:7a:ce:d4:34:3a:d8:5a:59:38:a7:69:
a9:c0:dc:7b:d4:99:da:a4:bf:03:b8:f2:89:6b:20:
e2:33:ca:91:9f:5a:cf:0d:5f:54:66:5a:47:77:b0:
c4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:57:84:CE:B9:46:8E:C2:38:8B:24:44:3D:04:68:6E:EC:A6:5A:92
X509v3 Authority Key Identifier:
keyid:F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/TleEzrlGjsI4iyREPQRobuymWpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.60.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:df:44:63:0d:db:b6:87:a3:0c:20:1d:38:55:5c:aa:49:07:
db:94:cd:21:41:61:39:b9:7d:26:4d:59:00:e9:87:1e:fc:05:
70:d9:90:c3:0d:a9:78:9f:c8:55:95:85:cd:43:b0:ed:45:80:
5b:21:26:a7:68:90:cb:20:4d:a7:db:f7:27:48:a2:88:61:70:
ed:fc:09:1e:a6:69:31:90:a5:16:24:90:d9:a6:84:82:1a:15:
dc:98:b0:98:82:eb:3f:7a:b4:f1:24:4b:8b:e0:bd:8b:ab:fd:
57:22:ee:05:32:29:d1:c4:12:d9:54:ba:7a:67:f6:b4:99:95:
5d:5e:ab:87:e8:a1:ac:9d:28:06:d7:fe:6d:6a:4a:3c:53:a2:
bf:ce:f2:c3:ba:26:87:5f:a8:7f:30:79:99:28:6b:04:84:eb:
30:b1:42:7d:5a:66:65:e6:56:6f:59:d5:46:ce:48:23:ba:89:
77:d1:37:51:d7:b3:b6:91:ed:58:cd:57:b6:e7:ba:53:e3:b0:
b5:8d:34:dd:80:50:75:5d:6a:36:d1:ef:0b:eb:55:04:30:90:
e6:11:4f:c0:ef:32:b0:22:20:70:a3:8b:88:b5:d1:8a:92:4d:
09:da:c0:af:c0:73:dc:8a:2e:75:0a:e8:dc:0b:97:bd:f7:5c:
7b:42:c7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:42 2025 by rpki-client