Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/_-e9AHH6lqWcPieLfILEOMXQLIw.roa
File: _-e9AHH6lqWcPieLfILEOMXQLIw.roa (raw, json)
Hash identifier: 83kkVYPzltWcEKSg+IkDpVjUZ0CYfkx22hqH+ZvScgk=
Subject key identifier: FF:E7:BD:00:71:FA:96:A5:9C:3E:27:8B:7C:82:C4:38:C5:D0:2C:8C
Certificate issuer: /CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Certificate serial: 018BBAC99D910DA09F8913B8B9B9744E4DB9
Authority key identifier: 63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/_-e9AHH6lqWcPieLfILEOMXQLIw.roa
Signing time: Fri 10 Nov 2023 19:50:57 +0000
ROA not before: Fri 10 Nov 2023 19:50:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205359
IP address blocks: 194.31.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ba:c9:9d:91:0d:a0:9f:89:13:b8:b9:b9:74:4e:4d:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Validity
Not Before: Nov 10 19:50:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffe7bd0071fa96a59c3e278b7c82c438c5d02c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:24:a0:69:27:96:70:ca:d4:d2:ba:15:21:4f:
01:b1:11:17:5a:98:45:34:92:46:c5:fc:5c:75:85:
09:28:61:b0:3e:8e:8a:c4:84:a4:f1:75:28:c9:02:
84:7e:85:28:a1:17:e9:1a:24:2e:f5:e3:69:bb:aa:
02:83:6b:79:86:da:65:78:26:89:16:97:11:4d:fb:
62:97:18:5f:88:61:82:8c:d3:e9:75:0c:61:fc:2f:
3b:6c:c0:d6:79:2c:a9:6e:64:b9:e0:f8:01:d7:47:
d4:13:ba:76:50:ab:c3:30:c1:1b:84:fe:77:54:82:
13:78:5b:a3:d6:cc:0d:7a:cc:18:1f:fb:60:76:ff:
1c:ec:23:c0:4f:74:6a:56:c0:58:81:f7:1b:53:79:
f4:3b:41:d7:3d:b7:14:3c:b8:ec:87:74:47:2d:71:
64:cc:66:f5:a6:5c:4a:02:6d:c0:49:c1:07:5f:d3:
ce:88:7e:c6:d2:42:cd:65:51:e6:c0:89:3f:1b:e1:
b3:0b:c7:8b:59:df:bb:ff:e4:be:c0:c9:2a:c3:da:
a2:11:c3:3d:cc:80:f5:53:15:8d:6b:10:ce:38:b9:
d4:49:0e:de:d6:1d:a5:09:72:4e:89:b0:8b:35:2f:
59:e3:16:13:7e:d1:3a:f0:ff:0e:62:08:b0:cc:ec:
4d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E7:BD:00:71:FA:96:A5:9C:3E:27:8B:7C:82:C4:38:C5:D0:2C:8C
X509v3 Authority Key Identifier:
keyid:63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/_-e9AHH6lqWcPieLfILEOMXQLIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.99.0/24
Signature Algorithm: sha256WithRSAEncryption
04:be:8e:d1:00:3d:ef:ad:a6:e3:d5:b0:e4:89:a4:8a:bf:b3:
8f:09:4f:56:d6:bf:06:36:61:10:16:90:08:51:0d:db:c6:a8:
d8:54:95:93:bf:39:3d:91:49:b8:93:f6:bf:0c:6a:63:26:07:
56:7f:56:c8:d0:52:87:5d:34:7e:ca:b2:88:46:14:8b:b4:9c:
8c:04:7e:93:ed:75:9e:18:f3:4e:f9:0a:80:9f:20:96:73:a1:
47:e0:ff:9c:53:d7:ef:a3:14:7e:a2:c2:18:3e:3c:e4:8d:79:
07:21:18:4a:5e:de:61:8f:31:db:52:6d:97:0b:8a:9d:1c:58:
7b:94:01:f1:d2:81:ae:1b:d1:8f:e2:2c:67:da:47:88:24:fd:
84:dd:9a:5e:b4:54:b7:1e:b0:78:42:ec:e3:4f:99:8a:65:9b:
66:fa:dd:c8:c8:62:85:a9:ba:98:ef:85:6e:cd:e7:bf:ec:d6:
53:56:e1:15:fd:52:09:53:e9:e8:9e:84:79:84:af:07:62:78:
dc:f7:af:d8:73:9e:68:17:50:51:9e:40:2c:16:e1:06:a6:49:
70:4b:11:07:3a:e1:36:28:28:af:e4:ec:c9:73:e5:62:54:38:
de:ba:4e:aa:f8:af:89:63:b6:0b:b0:3d:bb:04:5a:58:79:77:
dc:18:33:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:30 2025 by rpki-client