Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/X2i9iukC5p5KILADFE3XkG2SOhI.roa
File: X2i9iukC5p5KILADFE3XkG2SOhI.roa (raw, json)
Hash identifier: rJPYrNrncuODvY0H4Uh4rKM5El346umLbnT0qEJkeAg=
Subject key identifier: 5F:68:BD:8A:E9:02:E6:9E:4A:20:B0:03:14:4D:D7:90:6D:92:3A:12
Certificate issuer: /CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Certificate serial: 018B4430A8C6B3A630A6E39F6A946E909374
Authority key identifier: CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/X2i9iukC5p5KILADFE3XkG2SOhI.roa
Signing time: Wed 18 Oct 2023 19:08:41 +0000
ROA not before: Wed 18 Oct 2023 19:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208709
IP address blocks: 194.113.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:30:a8:c6:b3:a6:30:a6:e3:9f:6a:94:6e:90:93:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Validity
Not Before: Oct 18 19:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f68bd8ae902e69e4a20b003144dd7906d923a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ca:ad:b4:07:8a:61:4d:62:57:09:4c:a5:95:
2f:43:0d:81:6f:db:02:cd:1e:ed:ee:c0:86:2e:7d:
66:f9:93:c7:6b:03:9d:cf:c9:57:46:0e:f4:d4:a1:
32:8c:92:76:ad:bf:a6:be:af:d7:ee:2d:63:06:24:
06:3b:2c:5e:21:a5:a1:bd:88:d3:81:84:64:36:fb:
4d:cb:b1:61:9c:43:67:28:d9:b4:2b:93:f1:18:86:
9e:e8:f5:4f:a3:b4:d3:89:c6:e0:c1:5b:d8:e0:32:
f6:fe:3e:3a:d2:f4:ad:dd:7a:cd:f1:ee:c8:de:18:
55:30:62:22:a3:a9:ea:39:1d:8f:e8:80:86:27:56:
0d:5a:41:ea:16:ee:ae:c0:a3:99:fe:cf:60:dd:84:
04:ec:a6:c2:5d:ee:46:bc:d3:9e:4f:f3:63:c0:4d:
6f:85:f8:c7:99:6c:cb:b0:d8:f9:8b:43:6a:b1:25:
2d:98:64:91:23:46:cf:89:1d:ed:d1:3f:f6:f1:bf:
56:34:91:83:6b:14:82:52:b3:32:05:4b:7f:a1:75:
ea:2d:51:a3:87:0c:b7:8c:14:75:9b:42:7f:98:df:
cc:55:97:ff:75:8c:4a:a2:43:3c:07:e3:d9:69:63:
66:e4:37:ed:b3:fc:2f:bd:18:08:68:f8:68:4b:02:
98:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:68:BD:8A:E9:02:E6:9E:4A:20:B0:03:14:4D:D7:90:6D:92:3A:12
X509v3 Authority Key Identifier:
keyid:CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/X2i9iukC5p5KILADFE3XkG2SOhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/yliutBKfjiybxCzRkYXI1_Dm6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.116.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a9:43:9c:6a:e2:fe:0a:f1:5e:1a:15:16:d7:87:8a:e3:de:
86:1c:11:22:0a:e0:81:7f:c0:8f:17:b5:04:12:31:1c:27:82:
91:1b:7e:49:65:4b:df:b5:37:d2:fa:cf:8c:68:89:9d:46:30:
e7:35:bc:bc:0e:4c:2d:e0:7c:4b:83:a2:aa:5d:b1:f4:99:50:
d7:18:3c:65:bb:ae:a7:ac:bc:e7:05:88:72:77:be:79:05:e3:
d1:31:21:42:82:09:3a:38:66:ee:16:52:34:a0:ea:d0:c6:8c:
0a:b3:db:72:d6:c5:24:4d:48:c5:a3:99:17:ab:99:44:c5:9c:
26:d7:39:2b:2c:f6:00:fc:ef:67:61:c9:9c:b1:69:49:d4:89:
18:22:cf:f7:8d:a0:b3:47:4f:1b:6b:ce:55:e8:59:2e:34:16:
40:97:3d:e6:46:06:56:4f:be:b2:37:ec:b9:ec:cd:07:d7:65:
18:58:bb:9a:e0:57:89:fb:93:77:a1:ac:7c:59:c7:7c:2e:9c:
27:80:89:ad:f6:fc:0d:a6:59:e3:7e:06:58:24:72:f0:a3:b3:
e3:51:e9:16:bb:e2:75:86:c0:4c:b9:ce:c2:17:94:8c:d5:98:
d2:cf:58:5c:4d:1d:03:06:44:7d:99:ea:92:d6:03:73:a3:8b:
94:f3:ea:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:33 2025 by rpki-client