Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/sYOP4LBa-irbDM9lhI9vLz4JNzs.roa
File: sYOP4LBa-irbDM9lhI9vLz4JNzs.roa (raw, json)
Hash identifier: rL5T8ZM+FeY4BYt0GLDLYGGdTu3u5GX/L+RKN9lb+Ts=
Subject key identifier: B1:83:8F:E0:B0:5A:FA:2A:DB:0C:CF:65:84:8F:6F:2F:3E:09:37:3B
Certificate issuer: /CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Certificate serial: 018C153F5605AA9EE1FD8BE51B91A1A198A0
Authority key identifier: 72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/sYOP4LBa-irbDM9lhI9vLz4JNzs.roa
Signing time: Tue 28 Nov 2023 09:25:21 +0000
ROA not before: Tue 28 Nov 2023 09:25:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 194.15.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:3f:56:05:aa:9e:e1:fd:8b:e5:1b:91:a1:a1:98:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Validity
Not Before: Nov 28 09:25:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1838fe0b05afa2adb0ccf65848f6f2f3e09373b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:38:82:0f:6a:af:85:eb:92:6c:d0:4a:ca:7a:
75:4b:22:64:93:63:97:03:6f:b0:5c:3c:3a:df:12:
ae:82:f5:83:2c:bc:fa:4f:15:91:00:71:1f:1c:38:
73:a8:fa:1b:7f:6c:0f:cd:95:de:00:8f:7d:fd:d9:
c9:5c:4d:ac:95:14:b7:14:07:51:be:72:a8:db:25:
08:19:5f:35:c5:33:77:ee:6d:20:76:d7:61:5b:e1:
37:ff:c4:16:4f:95:96:a9:9a:29:dc:ee:62:fe:63:
5c:6b:f5:d6:95:b2:fa:57:8b:c1:e5:41:6c:51:37:
88:f9:0f:7e:00:86:72:fc:24:10:f2:b4:aa:1c:dd:
3c:9d:38:2e:e3:d8:94:13:eb:6f:1c:f5:2d:37:52:
5e:67:bb:cf:7d:1a:8f:44:70:e9:ba:55:31:ff:93:
2c:9b:22:ee:da:69:ad:fe:c0:09:e7:37:01:ae:40:
bf:4d:62:2b:d9:11:1f:53:bc:a7:40:42:b9:0d:eb:
07:06:f0:fe:a6:ed:f2:53:80:58:81:60:2a:35:cb:
94:20:ae:4c:b7:9f:13:92:30:3a:b7:e7:24:ed:f0:
1d:ed:60:d7:7a:d7:f1:b5:9b:2c:90:b5:dc:00:77:
20:5d:ad:95:e9:48:27:eb:ee:59:cf:22:fb:aa:ee:
43:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:83:8F:E0:B0:5A:FA:2A:DB:0C:CF:65:84:8F:6F:2F:3E:09:37:3B
X509v3 Authority Key Identifier:
keyid:72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/sYOP4LBa-irbDM9lhI9vLz4JNzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/ciMl7PNoyRSKfEEoHWB_ptgEoMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.45.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:5f:58:1b:3d:5c:17:93:de:bc:ce:9a:ec:f4:44:a2:9f:4b:
32:ba:05:f5:71:cb:de:14:27:86:e6:3d:62:54:ab:3e:de:0a:
01:c8:1f:87:f8:c0:9e:5e:f1:6b:c9:51:fb:71:1f:f2:9f:8f:
02:f3:36:f2:8d:07:f5:a3:13:e3:bd:68:85:72:83:32:88:03:
d9:36:3a:c0:33:e8:9a:e2:bb:6d:77:d6:f8:86:06:48:4a:44:
be:69:b2:d7:a3:d5:bf:79:a4:60:3e:51:68:cc:6a:bc:ba:5d:
15:12:e7:6e:f1:cc:b7:3a:92:88:52:be:29:91:c4:85:3e:b1:
31:55:37:5c:31:30:7d:fb:94:8c:08:6c:7f:19:c8:ea:b9:d9:
41:fe:2e:e7:ba:c3:4b:e1:41:b3:8e:6f:48:43:2d:bb:23:d6:
47:9f:e2:ce:5c:87:8f:09:7b:95:bf:2a:ca:c3:2d:0b:2a:a5:
a8:fc:8c:40:69:42:17:b2:e7:65:9c:1b:60:f2:64:2a:b0:5f:
10:b0:4b:f2:1a:20:12:5d:da:c2:e6:68:69:a6:32:90:31:66:
9a:99:3c:cd:be:c7:56:ee:51:e2:03:ed:50:b8:ee:d0:62:94:
98:47:40:2b:40:ce:0e:30:b0:a4:31:0a:38:52:e4:bd:0d:94:
a5:0d:9b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:09 2025 by rpki-client