Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/a4Ae5B-kCHsDYpFEim_c9dp_Qvw.roa
File: a4Ae5B-kCHsDYpFEim_c9dp_Qvw.roa (raw, json)
Hash identifier: jzAHzd4WywA5A/fWkClRexyM7DMJf2oE5rhz0NGc5fw=
Subject key identifier: 6B:80:1E:E4:1F:A4:08:7B:03:62:91:44:8A:6F:DC:F5:DA:7F:42:FC
Certificate issuer: /CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Certificate serial: 0DA15301
Authority key identifier: 9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/a4Ae5B-kCHsDYpFEim_c9dp_Qvw.roa
Signing time: Sat 01 Jan 2022 03:57:41 +0000
ROA not before: Sat 01 Jan 2022 03:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47843
IP address blocks: 194.33.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228676353 (0xda15301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Validity
Not Before: Jan 1 03:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b801ee41fa4087b036291448a6fdcf5da7f42fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:a1:99:71:d8:1b:53:92:be:13:cb:47:08:
0b:ca:f0:94:32:47:ae:73:df:b4:38:36:a5:0b:ec:
0c:85:1c:e9:60:44:3a:f3:7a:b4:d2:cb:cb:a3:91:
f3:ac:85:86:55:87:ef:98:fc:26:af:e4:75:d0:1f:
6f:98:d4:3f:1f:71:b5:be:16:1b:45:f3:a7:45:fc:
1b:5e:70:64:8f:28:5d:42:4b:1d:f0:e8:28:46:7c:
62:f7:fc:c0:f2:0e:83:1c:75:a7:5b:75:f4:2e:68:
6e:d8:b6:d4:44:51:7f:62:13:be:98:1c:fd:d6:02:
69:0b:cc:a4:4a:10:05:23:52:af:79:7c:cb:6e:26:
51:37:c2:da:16:15:a5:a5:7a:d4:ef:bf:27:8c:0b:
e1:b7:4d:96:55:99:9e:0b:fc:37:a5:16:d8:de:86:
a4:df:79:6d:26:3a:c9:e2:68:be:db:33:44:13:98:
c7:22:43:fc:ad:d3:fd:89:bd:b8:1a:2f:a8:9c:61:
c4:1b:b6:55:28:34:d4:5a:20:bb:1c:e2:49:4a:78:
89:bd:ea:2c:3a:0d:91:64:7b:3b:95:fa:a8:71:1f:
34:2b:1b:da:88:b7:7b:40:ff:06:d9:36:ed:b3:0a:
6d:ed:4d:41:1a:dc:8f:74:3c:c1:f4:81:96:40:d4:
8a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:80:1E:E4:1F:A4:08:7B:03:62:91:44:8A:6F:DC:F5:DA:7F:42:FC
X509v3 Authority Key Identifier:
keyid:9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/a4Ae5B-kCHsDYpFEim_c9dp_Qvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/nEfuc8KHgLEvFSz6JZrePYrg0Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.107.0/24
Signature Algorithm: sha256WithRSAEncryption
42:7d:cf:b3:5a:b1:f3:3d:a0:95:87:7f:75:35:09:55:25:c6:
da:82:68:1d:e9:e5:95:0f:3b:51:ee:15:db:4f:b5:8e:5d:6d:
76:63:b9:ac:7d:b1:82:31:17:ed:b8:d9:79:d2:3d:0b:49:a9:
30:cf:53:94:43:af:00:7d:05:be:46:c7:35:e3:37:16:a7:b5:
8f:20:64:0d:00:4c:0d:2c:2a:63:3f:0b:40:fc:8a:91:fb:9c:
e3:1a:a1:2c:87:ea:2d:32:8f:18:46:15:be:ef:e5:bf:f6:34:
bf:fc:11:76:d1:a1:f6:59:43:5c:9f:fa:96:6b:0f:57:ea:ba:
3e:96:6a:78:7b:dc:2d:ca:c4:eb:74:c8:b9:35:08:bd:2f:e8:
55:eb:2b:3c:f5:50:2f:67:73:eb:e1:01:f7:9d:24:61:fa:dd:
4f:b7:f1:9d:21:12:cf:b7:ad:47:a3:44:12:78:29:82:df:80:
7f:14:9b:ed:3d:fc:0b:8f:3f:b3:e8:41:9a:c3:4e:28:37:e1:
98:1b:ee:71:7b:23:9e:b1:de:e6:d2:c6:ff:f1:8c:07:c0:05:
ce:32:c4:35:d3:ae:a4:b0:74:8e:89:9b:2d:b8:5f:98:46:c3:
18:e0:8d:d3:f3:d4:d6:e4:b8:1e:2c:ce:74:9e:4b:8d:7a:5d:
89:a7:80:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:24 2025 by rpki-client