Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/1-8U5cUXdxD_pgmzQFbhYOreUJo8.roa
File: 1-8U5cUXdxD_pgmzQFbhYOreUJo8.roa (raw, json)
Hash identifier: EF5BljUHuTf4pHvWtPax6ZTDn1M60Dmbuo3A0NdQa/0=
Subject key identifier: FB:C5:39:71:45:DD:C4:3F:E9:82:6C:D0:15:B8:58:3A:B7:94:26:8F
Certificate issuer: /CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Certificate serial: 165CFA71
Authority key identifier: 4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/1-8U5cUXdxD_pgmzQFbhYOreUJo8.roa
Signing time: Wed 18 May 2022 09:47:17 +0000
ROA not before: Wed 18 May 2022 09:47:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200356
IP address blocks: 193.84.18.0/24 maxlen: 24
2a02:4bb::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375192177 (0x165cfa71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Validity
Not Before: May 18 09:47:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbc5397145ddc43fe9826cd015b8583ab794268f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9f:37:b5:c1:5f:c0:34:17:8a:d7:27:3f:c1:
0d:fe:5a:c1:31:18:96:f1:21:e8:7c:bd:8f:38:8a:
b2:3e:bb:95:f8:45:3c:9a:ba:5f:38:57:9e:a0:70:
fc:27:ee:20:11:75:77:39:b8:5b:49:9d:f2:b0:03:
ee:a7:40:fe:1f:0e:a1:31:18:d4:22:9c:67:a4:2a:
2c:68:62:81:f9:69:4f:ad:bd:f1:8d:64:0c:20:01:
20:de:69:ac:5d:31:30:9a:c2:09:9b:26:1b:97:d8:
85:e0:7e:d0:4d:0b:47:f5:75:0b:6b:97:82:d2:88:
1a:d7:55:a5:88:7d:a3:ad:7f:89:9d:85:ba:ee:ac:
c2:ba:43:90:9a:98:82:c7:7e:90:7c:73:93:14:e4:
26:b1:88:90:c2:df:5a:d7:c2:c5:cd:48:5e:a8:3a:
c2:56:13:9d:97:1d:69:8e:26:79:d1:78:de:33:43:
5b:e1:b2:d1:64:18:c5:4a:c1:63:71:a8:6c:be:aa:
9a:8a:1c:41:15:10:1d:f2:f3:df:f2:e0:26:75:d1:
df:fa:0d:a1:69:dd:ba:87:df:af:74:51:de:6b:23:
db:3f:05:1c:74:71:e6:04:41:60:99:9b:a1:67:dc:
4c:a5:2b:a8:dc:43:d3:2c:3a:d8:40:bc:f2:1b:6a:
3d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C5:39:71:45:DD:C4:3F:E9:82:6C:D0:15:B8:58:3A:B7:94:26:8F
X509v3 Authority Key Identifier:
keyid:4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/1-8U5cUXdxD_pgmzQFbhYOreUJo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.18.0/24
IPv6:
2a02:4bb::/32
Signature Algorithm: sha256WithRSAEncryption
a0:a2:25:8b:bd:67:82:70:43:93:a5:40:9a:9e:f1:8e:b0:7d:
92:b4:3d:e3:35:33:cc:b7:6a:44:23:99:c7:6e:a2:5a:70:d5:
2f:3a:35:6a:42:48:bb:0a:ca:56:93:ff:97:b2:1a:12:eb:5e:
a0:e9:dc:45:94:d6:48:0d:94:c5:ec:60:89:0e:38:8d:56:51:
c2:e9:a5:7b:ef:ee:48:e3:c5:30:5a:7a:61:6a:c6:3c:e3:c0:
74:f8:f9:af:17:69:4c:69:53:cb:c6:d7:b0:d6:44:32:5b:eb:
27:d8:fd:3f:ec:71:f9:6a:01:1e:15:e6:65:b2:1f:0d:36:7e:
d3:e1:e8:b9:5b:7a:01:6e:dc:5d:d8:87:8c:80:c8:e5:8b:58:
b0:a7:30:92:25:fb:2d:73:ab:2e:61:bd:64:d4:ce:1c:7c:a7:
20:3e:6b:90:7f:d5:f9:5d:eb:3b:0b:56:33:30:74:33:11:38:
08:eb:25:a4:5d:69:d4:bb:bb:6a:32:37:e4:a7:2a:dd:07:b0:
06:f9:9d:21:44:7d:7f:19:c6:d5:59:df:79:13:d5:19:c7:99:
ce:d8:96:a6:a5:91:bb:60:23:93:08:ce:4c:45:2f:b6:21:3d:
fa:0d:bb:fd:1a:f6:60:ea:7d:b4:a1:89:b2:f5:51:bd:07:33:
e4:c8:bc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:22 2025 by rpki-client