Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/GKDa6bu4LJhSv4KttNw2yUYDB-c.roa
File: GKDa6bu4LJhSv4KttNw2yUYDB-c.roa (raw, json)
Hash identifier: wS4JGdGJzmWFmP0sknpsZ+v6ZZaPrvA3HS8ci9fQ3dA=
Subject key identifier: 18:A0:DA:E9:BB:B8:2C:98:52:BF:82:AD:B4:DC:36:C9:46:03:07:E7
Certificate issuer: /CN=248f5e26f1c08f4486c9911c8b609eae8b6cb74d
Certificate serial: 01856C6EE9193096623875287BE8F4BD6D4D
Authority key identifier: 24:8F:5E:26:F1:C0:8F:44:86:C9:91:1C:8B:60:9E:AE:8B:6C:B7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JI9eJvHAj0SGyZEci2Cerotst00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/GKDa6bu4LJhSv4KttNw2yUYDB-c.roa
Signing time: Sun 01 Jan 2023 08:24:45 +0000
ROA not before: Sun 01 Jan 2023 08:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15985
IP address blocks: 193.188.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:e9:19:30:96:62:38:75:28:7b:e8:f4:bd:6d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=248f5e26f1c08f4486c9911c8b609eae8b6cb74d
Validity
Not Before: Jan 1 08:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a0dae9bbb82c9852bf82adb4dc36c9460307e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7b:76:9c:72:4f:97:a7:7c:b7:5b:87:7c:b2:
6f:1e:0c:44:d5:25:33:5b:6c:44:2a:6d:ca:c3:95:
74:d9:22:c7:a0:22:9d:9a:3b:d9:9d:3a:25:92:28:
fd:44:06:11:97:39:58:9b:f5:3c:8e:29:ca:30:f1:
92:f2:45:23:0f:e6:d6:5a:2e:ed:f1:01:b1:5e:32:
f6:9f:37:67:7f:4b:f8:f1:0f:1a:18:4d:04:67:26:
3a:63:61:cc:a9:a2:04:78:c4:8f:38:31:7d:ee:4b:
ee:8b:d4:b0:17:b1:36:3f:4c:af:37:57:94:ef:6c:
c3:e2:40:5d:45:b5:ea:50:85:e2:d4:73:dd:aa:95:
df:2b:6a:aa:14:5a:dd:f4:60:0e:76:89:e7:28:a3:
b2:b6:58:f2:6f:58:86:a9:05:30:ed:e1:39:4f:99:
6f:4b:41:5c:86:15:11:e8:bf:2f:57:2a:23:15:1d:
b4:a4:bc:7c:27:46:07:0f:0f:b0:b8:22:98:d2:80:
f7:dc:a7:bc:74:61:c7:b0:20:62:b2:d5:51:d2:3b:
a0:19:ba:0f:18:2a:46:13:ed:80:0f:7f:e2:e2:34:
9b:4c:4b:20:04:b1:bb:ec:09:4c:9e:81:f9:a2:0d:
67:93:85:54:cd:4b:d0:08:b7:3c:54:07:ee:8c:19:
36:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A0:DA:E9:BB:B8:2C:98:52:BF:82:AD:B4:DC:36:C9:46:03:07:E7
X509v3 Authority Key Identifier:
keyid:24:8F:5E:26:F1:C0:8F:44:86:C9:91:1C:8B:60:9E:AE:8B:6C:B7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JI9eJvHAj0SGyZEci2Cerotst00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/GKDa6bu4LJhSv4KttNw2yUYDB-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.193.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ba:e9:06:11:71:e4:8f:f1:4c:18:32:20:a7:c5:d1:e3:78:
d0:4f:96:9e:30:b9:e0:37:3a:e7:60:c3:2e:ef:53:f5:56:32:
1f:5b:e7:36:95:cb:6f:32:44:11:57:40:52:e6:e9:7a:40:1b:
73:ae:2a:1e:1e:d4:90:65:f9:23:5d:c9:f1:cc:79:8a:77:da:
af:43:33:64:6a:44:62:0b:b0:2e:a7:40:29:8c:10:bf:67:28:
3c:cb:80:b9:f2:ce:4a:8c:4d:ff:bb:81:05:8c:b4:45:6d:6a:
79:e8:85:7c:bc:81:bd:7e:a6:b2:f2:34:30:20:9c:e6:a4:9e:
99:fa:d0:b6:fb:96:6f:e9:99:71:d6:06:43:9e:ab:67:f3:e8:
c9:b7:dd:aa:b6:aa:df:0e:77:ed:aa:48:0a:1b:05:78:17:c1:
21:ba:b0:e4:43:1f:2f:92:2d:aa:8e:14:df:a3:e9:b8:2f:f9:
e8:59:ab:4b:3a:a0:da:6a:64:cf:92:6b:5e:ee:08:a9:6e:76:
2d:72:1c:7b:2b:e3:86:47:75:51:ea:67:ca:b1:da:4a:8d:f6:
d8:79:c8:55:6f:90:41:c5:bf:cd:cf:65:78:14:4c:60:96:82:
be:12:fe:57:e0:50:c8:03:a8:e0:ea:de:a1:e2:f3:51:49:a6:
50:89:78:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:13 2025 by rpki-client