Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a89954-ad2f-4a48-a872-3ecf71a7115b/1/Z6ZrvrV40ixJRqTw1WjyVUO1lnA.roa
File: Z6ZrvrV40ixJRqTw1WjyVUO1lnA.roa (raw, json)
Hash identifier: OcOoS1RrD+HYCYd4AOxbWmiGSdAQIKyTXbIJKtVTpEY=
Subject key identifier: 67:A6:6B:BE:B5:78:D2:2C:49:46:A4:F0:D5:68:F2:55:43:B5:96:70
Certificate issuer: /CN=12303a6462dba29517de0ded87397fa9e5c4052e
Certificate serial: 01856DB87B214A25928B0649BAB99925795B
Authority key identifier: 12:30:3A:64:62:DB:A2:95:17:DE:0D:ED:87:39:7F:A9:E5:C4:05:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjA6ZGLbopUX3g3thzl_qeXEBS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a89954-ad2f-4a48-a872-3ecf71a7115b/1/Z6ZrvrV40ixJRqTw1WjyVUO1lnA.roa
Signing time: Sun 01 Jan 2023 14:24:44 +0000
ROA not before: Sun 01 Jan 2023 14:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.39.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:7b:21:4a:25:92:8b:06:49:ba:b9:99:25:79:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12303a6462dba29517de0ded87397fa9e5c4052e
Validity
Not Before: Jan 1 14:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67a66bbeb578d22c4946a4f0d568f25543b59670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:86:bb:9f:fd:a6:62:29:12:3c:bd:ce:19:1e:
e6:56:39:1f:78:17:ed:f6:3c:83:4a:b4:72:6e:1c:
c8:01:fa:91:83:5b:34:70:73:4a:a3:1b:a2:f2:f4:
89:82:ad:b9:c8:38:f6:96:15:ef:09:e5:4f:e1:8e:
02:b4:e9:be:38:19:c4:7d:01:ad:1a:62:cf:d6:6c:
7a:5d:a7:fa:a5:60:bb:67:13:a7:ae:36:80:60:f9:
75:59:1b:84:00:13:02:c4:44:6d:27:72:dc:39:d5:
2b:d3:a3:72:4c:8a:85:c0:8b:4e:43:ac:50:ca:91:
45:10:40:da:e8:2f:bc:1d:df:ff:10:f7:32:64:29:
6a:d0:a1:1b:d7:4b:88:bb:32:a3:24:9e:58:22:93:
ea:0c:f1:4c:3d:cb:2e:7d:dc:5a:ef:4d:92:87:d3:
54:f3:f5:f5:41:77:e0:ba:5a:fc:fd:94:54:6a:db:
dc:da:c5:1e:da:ca:c2:50:5a:56:b7:df:4f:17:52:
d3:ce:c4:b8:b3:13:12:c7:d8:ae:d2:52:23:5b:d2:
a0:c7:81:ff:d4:c5:3c:11:5a:a3:15:e2:e9:13:6b:
4a:c0:ed:79:f9:21:0e:d8:5d:d8:a8:b7:45:fb:37:
be:7a:f1:1a:0d:65:78:22:47:14:27:09:38:c9:1d:
fc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A6:6B:BE:B5:78:D2:2C:49:46:A4:F0:D5:68:F2:55:43:B5:96:70
X509v3 Authority Key Identifier:
keyid:12:30:3A:64:62:DB:A2:95:17:DE:0D:ED:87:39:7F:A9:E5:C4:05:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjA6ZGLbopUX3g3thzl_qeXEBS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a89954-ad2f-4a48-a872-3ecf71a7115b/1/Z6ZrvrV40ixJRqTw1WjyVUO1lnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a89954-ad2f-4a48-a872-3ecf71a7115b/1/EjA6ZGLbopUX3g3thzl_qeXEBS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.114.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ba:0b:33:f6:1b:29:92:56:14:ad:2e:9d:90:4e:df:ac:58:
a0:98:d5:e4:9b:50:25:01:93:59:eb:8b:37:06:0f:26:ea:96:
ce:d1:16:8c:3e:ce:10:2b:c6:c9:b1:1b:1d:36:9f:13:1b:c6:
33:57:3a:12:16:8f:9f:1f:6b:49:45:f6:7b:2b:16:f4:ba:c9:
fc:4a:7d:0c:9f:97:2a:0d:35:14:1c:34:c1:de:c6:23:9b:79:
80:da:89:8d:f4:a9:f2:a0:f1:f1:87:12:74:27:d8:7b:55:eb:
a1:34:1c:22:a4:76:04:8b:03:87:85:a9:01:75:6c:9e:9f:f8:
9e:fa:17:72:0d:5b:a0:5b:0b:1b:95:f1:8f:d1:91:b9:a5:86:
92:9d:bd:d6:30:74:99:20:79:f9:8a:68:cb:6c:c2:47:55:d9:
64:74:8b:02:d0:5a:8f:2c:19:99:a3:e0:02:a8:20:95:04:81:
e1:b1:51:96:81:68:4d:99:03:25:56:ee:3c:a6:8a:ad:26:5f:
9b:f7:7d:0a:9f:30:a3:6e:a5:53:d7:db:86:5e:94:87:e0:8a:
c8:e4:d3:5a:a4:bf:94:df:d4:20:c9:9c:35:4c:8d:9f:d6:a0:
58:44:2c:07:64:ba:9d:5f:c9:82:29:96:8c:df:55:ad:f0:4b:
2a:3b:0e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:21:16 2025 by rpki-client