Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/bdiTCuoLK9SMzBq038JzQ0sKYx4.roa
File: bdiTCuoLK9SMzBq038JzQ0sKYx4.roa (raw, json)
Hash identifier: piWOj2jkU8wYF9RRx5TGh99h4iRUqNa69sdb2Rw5p7o=
Subject key identifier: 6D:D8:93:0A:EA:0B:2B:D4:8C:CC:1A:B4:DF:C2:73:43:4B:0A:63:1E
Certificate issuer: /CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Certificate serial: 1A0C8169
Authority key identifier: 01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/bdiTCuoLK9SMzBq038JzQ0sKYx4.roa
Signing time: Sat 01 Jan 2022 15:05:02 +0000
ROA not before: Sat 01 Jan 2022 15:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208128
IP address blocks: 193.108.110.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437027177 (0x1a0c8169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Validity
Not Before: Jan 1 15:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dd8930aea0b2bd48ccc1ab4dfc273434b0a631e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:69:16:2b:c4:b9:ca:44:2e:3d:39:72:26:4d:
7d:e7:40:3f:f6:a8:e9:16:cc:da:54:f9:a6:4b:2b:
c8:c3:1a:9c:76:4c:17:42:da:be:dc:2e:4f:00:a3:
19:55:3d:37:1e:93:77:21:5a:f5:6b:20:42:bc:a0:
f0:b4:17:e5:da:fe:5b:4d:45:21:7c:39:3e:0e:76:
b8:48:72:d9:2a:28:0f:25:09:6c:36:0b:1a:22:d0:
36:ef:5c:2b:52:a5:5c:89:d8:d9:f4:28:fe:15:02:
c2:9e:58:a9:2f:2c:e0:74:81:cf:09:10:57:ab:40:
c9:a7:c7:7f:51:a6:cf:7e:e4:cf:e3:a7:ee:f1:b3:
b1:1f:1a:24:10:93:69:69:ee:1b:bf:53:37:b2:35:
e9:ed:a1:3c:26:bc:e1:23:a2:2e:20:0e:ee:5b:20:
86:98:c2:d1:26:fd:99:df:02:28:15:9e:23:e0:0f:
af:08:b1:c6:07:13:c5:8f:ed:5f:e3:1d:7a:d3:ee:
2c:f6:e1:1b:58:af:d0:5e:45:25:7e:91:d5:8a:2f:
f2:47:48:a5:93:9e:11:69:5a:97:4f:c4:fd:12:13:
e3:98:5f:a4:bf:40:85:0b:e6:56:e9:d3:39:c3:47:
18:99:7e:73:57:00:88:8c:64:21:6a:4c:79:b4:7f:
96:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D8:93:0A:EA:0B:2B:D4:8C:CC:1A:B4:DF:C2:73:43:4B:0A:63:1E
X509v3 Authority Key Identifier:
keyid:01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/bdiTCuoLK9SMzBq038JzQ0sKYx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/AcS3hNgWbovQ9H1yD95frsFkWzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.110.0/23
Signature Algorithm: sha256WithRSAEncryption
23:b2:77:fd:7e:c0:3d:81:8b:4f:df:e8:0c:ef:a7:38:28:af:
be:4e:59:dd:53:01:f8:30:a9:e6:1f:3e:82:bd:87:78:12:b2:
25:c9:fb:ee:a0:21:de:93:83:0f:a1:fd:5f:f4:05:41:81:de:
24:46:fe:7d:10:12:c7:4f:fd:93:57:cf:49:8f:6e:c9:33:c0:
a9:9f:d0:3c:d4:30:10:5d:7f:ce:17:d7:83:4d:bb:3c:11:58:
9c:d2:b8:c5:43:ec:85:ba:b0:73:43:6b:eb:69:47:a1:de:0d:
20:0d:be:cb:2d:e1:3d:62:bb:90:bc:25:50:4c:bf:69:ec:bb:
8a:74:1f:72:fc:72:12:d4:3f:bc:1b:42:6c:22:18:6d:1d:b0:
a8:48:11:16:b7:82:36:d8:6a:52:5a:c1:01:f0:4c:6f:c5:5f:
ed:4f:fb:4b:aa:1d:86:bd:80:dc:2c:7f:e1:eb:55:19:36:56:
91:f2:5c:8a:ec:ae:7d:b4:45:f0:56:91:38:ed:70:0a:8f:56:
4f:99:6d:ed:10:c2:ad:f3:a0:5e:77:54:0a:e9:02:66:c5:bf:
94:e3:34:81:48:ab:fe:47:e4:db:ee:38:73:91:4b:18:72:dd:
a1:19:6e:15:7d:41:71:e2:c6:6b:b1:ef:09:77:e9:4b:56:bc:
36:bf:38:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:30 2025 by rpki-client