Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c4fdbc-3c88-40b5-8d75-cbf94a00cc83/1/UPLgHDjrh5YTXfSGHpvdQJIj_sg.roa
File: UPLgHDjrh5YTXfSGHpvdQJIj_sg.roa (raw, json)
Hash identifier: ufAxpqO6RYrFCZACUzlQ5YUhYg24Ir6FS5mliNXVebI=
Subject key identifier: 50:F2:E0:1C:38:EB:87:96:13:5D:F4:86:1E:9B:DD:40:92:23:FE:C8
Certificate issuer: /CN=72151a9a18c8a92b4b7678dc960cc2a1bb908051
Certificate serial: 018570E7627F6074009540D370B5C4885D7C
Authority key identifier: 72:15:1A:9A:18:C8:A9:2B:4B:76:78:DC:96:0C:C2:A1:BB:90:80:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chUamhjIqStLdnjclgzCobuQgFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c4fdbc-3c88-40b5-8d75-cbf94a00cc83/1/UPLgHDjrh5YTXfSGHpvdQJIj_sg.roa
Signing time: Mon 02 Jan 2023 05:14:50 +0000
ROA not before: Mon 02 Jan 2023 05:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31081
IP address blocks: 193.28.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:62:7f:60:74:00:95:40:d3:70:b5:c4:88:5d:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72151a9a18c8a92b4b7678dc960cc2a1bb908051
Validity
Not Before: Jan 2 05:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50f2e01c38eb8796135df4861e9bdd409223fec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:46:fc:33:ae:ee:ca:39:4e:fb:dd:9f:66:3b:
e9:3a:f5:62:69:d8:bd:05:c3:8e:a3:88:6a:a7:50:
fc:05:45:2f:91:83:19:07:59:2c:de:9f:e3:ea:44:
72:9e:94:a1:b3:cc:39:df:35:13:6c:85:44:f6:fe:
9a:65:b1:7f:e1:ba:73:d2:3d:1a:3c:db:27:8e:6c:
8d:35:cb:e0:65:42:f6:f8:34:d0:56:fd:8d:97:2f:
11:d7:8e:2e:a2:d9:8e:56:73:02:7b:87:c5:84:c7:
c4:cd:99:32:f6:1d:61:e8:33:1d:5b:f7:e0:6b:13:
52:cb:16:1e:ad:a9:87:f0:46:2c:9e:0d:c1:92:86:
2a:a9:2c:cd:d1:14:11:d2:47:20:c1:26:72:bb:62:
31:94:35:dd:42:8b:ce:e9:be:ee:33:d8:0b:f8:1f:
c7:ef:23:d8:d8:45:f8:08:76:50:8b:a6:1c:a8:3b:
14:d7:b9:5a:17:0e:35:40:97:d3:09:9f:6a:ba:e8:
87:f4:55:5d:74:f7:1a:27:87:b5:20:c7:53:25:ae:
96:2d:78:de:73:3c:9c:57:ac:c2:b9:20:4e:ee:c6:
a8:6f:6f:84:b8:67:52:06:eb:93:80:94:b3:70:ca:
2e:7a:0e:e2:66:a1:c9:84:46:36:53:ef:2d:d6:4a:
c7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F2:E0:1C:38:EB:87:96:13:5D:F4:86:1E:9B:DD:40:92:23:FE:C8
X509v3 Authority Key Identifier:
keyid:72:15:1A:9A:18:C8:A9:2B:4B:76:78:DC:96:0C:C2:A1:BB:90:80:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chUamhjIqStLdnjclgzCobuQgFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c4fdbc-3c88-40b5-8d75-cbf94a00cc83/1/UPLgHDjrh5YTXfSGHpvdQJIj_sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c4fdbc-3c88-40b5-8d75-cbf94a00cc83/1/chUamhjIqStLdnjclgzCobuQgFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e6:ea:3e:82:92:39:ad:27:9a:fa:83:d1:a6:9c:19:0d:83:
b4:db:c2:1a:00:3d:38:03:03:ca:16:2b:0a:36:b5:11:53:68:
8b:78:ea:d4:68:a0:d8:80:a3:0e:cd:aa:b5:0e:df:5f:36:e1:
20:fd:07:19:e9:f2:fd:6e:a0:b2:f8:7c:11:3c:f3:5f:8a:b3:
48:a3:15:6d:ca:0b:90:d8:5e:22:ba:d5:ca:27:59:24:4f:7b:
96:e6:57:21:7c:69:49:fa:af:22:b0:99:5f:b8:e3:c9:9c:49:
7f:5a:19:fd:b6:e2:9f:9d:64:64:0c:a0:f3:2b:6c:ce:d8:6e:
e9:a5:43:09:a2:8e:30:2f:75:cd:8d:68:22:3c:2e:00:90:88:
db:fa:4f:da:30:70:4c:bb:f8:3d:03:b0:3e:69:7e:11:86:ae:
ee:42:32:ef:da:45:99:90:6d:18:0f:d7:0e:50:f9:b7:c9:12:
dc:f8:aa:8f:41:c3:d4:e9:ab:2d:69:39:0d:7f:0f:f7:cd:0c:
2e:4b:17:c6:52:8a:75:73:83:64:dc:ac:67:81:47:0f:3f:22:
aa:ea:93:b0:72:e6:c3:ca:16:47:c3:e2:f3:c9:4b:1e:b6:47:
b0:53:80:76:1f:3f:dd:b1:c2:41:04:d9:2a:4a:af:5c:25:0f:
bc:ff:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:19:37 2025 by rpki-client