Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/DAnPMmkkFOeE5EX_RsQTsmzGh4I.roa
File: DAnPMmkkFOeE5EX_RsQTsmzGh4I.roa (raw, json)
Hash identifier: IlDzt6aVei32H1vSuuWdMt1UCFzT4UZvZ5b21dnBd2Q=
Subject key identifier: 0C:09:CF:32:69:24:14:E7:84:E4:45:FF:46:C4:13:B2:6C:C6:87:82
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 01860BB85AB6C341C3FF9366F39A179E6AE1
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/DAnPMmkkFOeE5EX_RsQTsmzGh4I.roa
Signing time: Wed 01 Feb 2023 06:44:36 +0000
ROA not before: Wed 01 Feb 2023 06:44:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205384
IP address blocks: 188.241.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0b:b8:5a:b6:c3:41:c3:ff:93:66:f3:9a:17:9e:6a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Feb 1 06:44:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c09cf32692414e784e445ff46c413b26cc68782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:f5:5c:99:b3:f5:c3:aa:e2:fb:b6:b2:68:42:
f4:da:24:0a:e3:9e:39:fe:99:49:8d:c9:e8:20:1b:
b0:16:46:bf:7b:79:20:15:1b:fb:55:cf:b3:c3:6d:
db:85:aa:29:05:20:97:37:22:a2:40:db:b2:64:1d:
c8:61:b5:ee:b9:71:ba:da:db:5b:57:2c:f0:bd:c6:
d0:5c:19:49:78:4e:06:a8:c3:43:be:a4:33:62:8c:
cc:5b:e7:fc:7f:6e:6e:01:d7:83:2f:ac:b9:97:85:
e8:1d:9a:08:5b:63:72:8e:ee:4f:8c:7a:51:65:08:
59:8f:6d:3a:d0:c7:d3:71:42:95:b8:b7:64:f6:d5:
9e:f8:d6:8f:df:13:60:4b:23:a1:72:fc:77:02:7b:
f9:96:91:c9:2c:95:40:d4:b7:0e:d3:07:86:39:94:
25:f5:44:67:07:97:2e:0f:43:e3:90:62:b5:ad:7e:
7a:95:96:44:82:b8:79:4a:c8:75:54:40:ab:93:bd:
15:98:57:1b:56:46:41:76:c2:b9:75:4f:f7:34:95:
d3:26:18:e1:d4:fe:37:7e:79:fa:01:f4:fc:a6:aa:
ef:5a:e7:3c:c3:1c:09:03:d2:db:2a:1a:67:ae:e8:
08:f4:f6:b1:38:6a:62:6c:19:af:d1:2f:54:83:89:
ab:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:09:CF:32:69:24:14:E7:84:E4:45:FF:46:C4:13:B2:6C:C6:87:82
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/DAnPMmkkFOeE5EX_RsQTsmzGh4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.24.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e5:15:c8:49:d1:6b:2b:61:25:49:e7:de:22:af:7c:b3:e2:
0d:97:e2:cd:2c:f3:01:e7:c3:b5:18:bb:ce:14:38:4d:d7:6a:
43:a5:42:80:8a:1b:b0:aa:0b:4e:35:57:9f:26:01:f7:97:7b:
07:90:cf:d7:de:1b:87:f4:8f:00:9f:1a:bf:d1:f6:db:6b:11:
ab:52:9a:4b:3e:61:50:a4:76:e7:2d:45:4c:30:7e:67:c2:42:
fa:c3:fb:5e:26:fc:19:e4:b6:de:01:69:0f:13:e2:b3:3d:34:
02:d3:c8:a0:90:46:72:6f:61:2d:29:d9:df:d1:63:16:c3:b1:
d3:43:7e:8c:4f:21:07:cf:9c:23:53:75:08:d8:41:d8:f6:74:
6b:4e:b0:16:9f:e7:e0:7f:95:c9:a5:18:80:68:ff:44:30:0e:
a5:bd:35:55:51:73:fb:44:c4:49:8f:d8:a1:93:10:e9:d5:7e:
a5:2a:01:ac:09:b5:21:ee:23:2d:c4:a6:09:ca:d2:38:ee:f3:
43:f4:28:c9:4d:63:71:3e:25:80:2f:a9:a9:c1:e6:d6:58:0b:
10:77:04:4c:aa:a9:20:64:40:e7:c2:41:b2:c2:d3:bb:fc:96:
20:70:35:b6:80:bd:6c:b0:16:ee:07:6c:77:49:ef:9e:63:ff:
d4:db:f6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:01 2025 by rpki-client