Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/dYRfgfSPfHxW55GX-p9yIWSTDOc.roa
File: dYRfgfSPfHxW55GX-p9yIWSTDOc.roa (raw, json)
Hash identifier: Voosc3vXt+JERbXMKCP3Psun80WnilRGQYa5GMqMESA=
Subject key identifier: 75:84:5F:81:F4:8F:7C:7C:56:E7:91:97:FA:9F:72:21:64:93:0C:E7
Certificate issuer: /CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Certificate serial: 02EBF3
Authority key identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/dYRfgfSPfHxW55GX-p9yIWSTDOc.roa
Signing time: Wed 26 Jan 2022 20:03:44 +0000
ROA not before: Wed 26 Jan 2022 20:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51964
IP address blocks: 193.38.190.0/24 maxlen: 24
193.38.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191475 (0x2ebf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Validity
Not Before: Jan 26 20:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75845f81f48f7c7c56e79197fa9f722164930ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:64:9c:ce:d5:80:e8:fc:df:28:d8:64:ae:34:
66:f2:18:db:cb:24:10:55:80:ba:6d:d3:92:16:91:
d9:0a:61:b2:2b:e5:4c:58:7b:e4:db:ec:e3:ef:1c:
6e:a2:a9:fa:d1:0c:28:15:65:cf:7e:99:1e:b2:ba:
e3:8f:10:fc:e4:99:04:37:36:02:d9:ae:0c:9d:e6:
5f:14:fe:11:fa:d1:80:72:7b:77:59:76:6c:2e:46:
2e:8a:fc:7a:c8:37:dd:35:4b:0e:05:3c:a6:15:31:
fc:9a:0b:2e:57:36:81:5a:ce:0c:e7:22:29:ad:93:
cb:c1:5d:66:ff:d3:89:ac:d1:42:38:d0:5b:56:4c:
3d:58:55:52:07:d7:44:79:59:43:07:ac:86:0b:08:
6f:4f:b9:45:67:c5:47:87:06:32:3f:49:78:35:2b:
71:13:81:7f:29:0c:56:b5:14:c6:58:78:40:00:6c:
81:f7:02:09:77:ef:97:48:31:6a:fc:65:cc:ae:e6:
f9:36:da:00:7e:91:cb:c0:97:64:b4:b2:8c:2b:88:
8f:97:fc:d6:a1:89:9d:40:bb:f3:fa:a5:1c:df:33:
9b:fd:b2:a7:53:b0:ed:86:8e:e4:50:f3:2f:46:8e:
a8:e7:9d:d9:95:f2:e9:6b:ad:0c:8c:63:e0:21:55:
6e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:84:5F:81:F4:8F:7C:7C:56:E7:91:97:FA:9F:72:21:64:93:0C:E7
X509v3 Authority Key Identifier:
keyid:65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/dYRfgfSPfHxW55GX-p9yIWSTDOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.190.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:c5:60:00:94:51:60:7d:12:10:30:9c:4a:90:85:b9:a5:26:
1f:eb:5c:63:a7:b4:b3:12:4a:49:53:09:d4:ca:e6:75:d5:eb:
c8:1a:4f:25:18:02:7f:20:65:ad:fe:c5:fa:b9:69:cf:a7:df:
3b:55:6d:b3:01:e3:21:45:b7:6c:27:a5:97:2b:24:6a:5f:e1:
63:e0:b1:62:52:34:51:4b:de:ca:84:4b:58:dc:f9:ba:9f:ad:
ec:f4:bc:20:3e:a7:31:1f:97:86:f7:9e:67:9b:48:25:97:0c:
58:61:a6:80:95:57:08:3d:3b:61:a2:f0:d0:09:ab:83:21:df:
ae:26:d7:65:75:9d:1c:fe:ac:c2:61:5f:96:14:f7:96:13:d6:
be:d8:60:6a:f8:20:05:03:35:62:9b:78:ab:ac:04:e6:fe:96:
cb:48:ea:24:cf:f6:f2:ef:fa:4c:96:e0:2d:00:31:e5:be:46:
af:bd:99:e0:98:ab:fb:05:bb:07:7e:c6:84:67:c7:4f:be:3e:
c9:12:1a:94:a9:dd:24:85:1c:a3:cb:24:04:32:ba:22:0d:b2:
dc:b6:69:15:21:29:af:17:c3:14:3d:08:3a:1e:92:a6:2f:be:
fa:98:65:c7:dd:55:0e:30:d5:20:a0:ed:4a:bd:7f:b7:cf:be:
1a:01:c8:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:37 2025 by rpki-client