Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/5ecTwZQf3vfh1kIE3sLL-miMQMk.roa
File: 5ecTwZQf3vfh1kIE3sLL-miMQMk.roa (raw, json)
Hash identifier: bZBgTGC7q3T0mzMPwQ0hqUmoPZ2teH0HCF1GwSzTRDw=
Subject key identifier: E5:E7:13:C1:94:1F:DE:F7:E1:D6:42:04:DE:C2:CB:FA:68:8C:40:C9
Certificate issuer: /CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Certificate serial: 0181D399006372E0A184C5B30562F03D54D0
Authority key identifier: 30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/5ecTwZQf3vfh1kIE3sLL-miMQMk.roa
Signing time: Wed 06 Jul 2022 13:00:28 +0000
ROA not before: Wed 06 Jul 2022 13:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8387
IP address blocks: 193.150.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:99:00:63:72:e0:a1:84:c5:b3:05:62:f0:3d:54:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Validity
Not Before: Jul 6 13:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e713c1941fdef7e1d64204dec2cbfa688c40c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8a:e1:e9:15:3e:e0:1f:11:3e:85:0e:26:36:
cc:03:7c:08:f1:1d:81:e2:fc:fe:15:25:48:9e:4f:
75:75:5b:e8:eb:a5:a9:60:c6:29:cb:4a:cb:28:08:
46:2b:23:25:f5:6d:c7:11:02:8e:76:28:45:c4:a7:
bf:b0:00:55:fb:b8:c1:b1:48:cb:ea:8e:fb:3c:aa:
1a:d9:45:b0:e4:d8:4e:d3:c2:e0:e7:ef:e1:5d:fa:
d8:3e:5f:5d:d0:81:e8:6b:78:bb:64:e4:77:17:53:
02:0f:80:c7:d1:11:75:f7:f1:3d:27:9a:3f:b4:af:
a6:f2:b0:97:2f:12:0b:29:d3:4a:38:6f:e4:d4:ae:
9a:0f:49:7d:c5:ca:71:b1:d7:41:01:16:4c:b0:bb:
01:df:62:2e:97:df:06:e4:eb:17:47:48:1c:39:b3:
d2:cf:e3:40:02:39:17:a9:8b:44:d8:3a:c5:64:0b:
41:6c:d1:2d:fd:7c:59:1e:8e:3b:ca:01:2b:d6:47:
38:b8:04:26:ef:3e:48:52:80:ab:38:19:31:89:76:
0b:9a:8b:c9:66:1c:45:2c:88:56:42:38:75:da:90:
9c:f9:b0:0a:71:de:86:10:d0:80:7a:ca:a4:f8:ae:
79:2a:e1:5f:de:56:2b:7a:d8:ac:c8:77:47:8a:e1:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E7:13:C1:94:1F:DE:F7:E1:D6:42:04:DE:C2:CB:FA:68:8C:40:C9
X509v3 Authority Key Identifier:
keyid:30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/5ecTwZQf3vfh1kIE3sLL-miMQMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/MBpkhyXuJqRgy5scvNnJyDLESa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.64.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b5:75:a1:3f:2b:e9:e6:5a:e6:e2:c7:e4:b0:ae:8b:ef:08:
a9:9d:d9:5a:87:ba:e2:47:95:da:93:4c:1d:15:03:d7:89:12:
0e:69:cb:98:68:07:a2:28:fa:fc:b2:8c:38:38:c0:63:17:fb:
37:31:95:50:8b:61:26:e4:e9:92:79:44:8c:2d:1d:77:d7:ab:
fd:82:ac:e3:99:8a:a8:4d:90:bc:32:c0:b8:c6:4f:65:4f:c6:
42:af:c0:ee:ab:d3:7b:53:b9:5e:ee:27:7b:53:c4:54:3b:82:
4e:cf:24:0b:4c:29:33:1b:87:bb:73:30:41:7b:4e:c4:62:95:
39:d7:21:d1:01:09:61:9b:cd:6c:a4:60:88:1e:13:1c:22:e7:
02:d0:41:fe:2e:c4:c6:f4:e3:62:dc:bc:9b:2f:e9:36:c9:ff:
65:2f:6a:c9:19:60:38:2b:eb:38:43:02:4a:fc:e8:85:ab:eb:
8a:b3:86:46:50:6f:3d:7d:10:6a:10:51:db:71:a3:58:f7:a0:
ed:8d:af:11:52:0e:ce:1e:9e:7f:c2:0b:58:96:09:a1:c0:c9:
04:22:ec:ef:26:a8:0f:b0:9d:11:30:64:f7:74:bd:72:dd:f4:
5e:83:3c:a0:01:73:82:a9:18:96:76:6f:69:56:7d:43:af:6b:
bb:23:00:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:32 2025 by rpki-client