Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/KP7Oa2eZKroPZlNU6Bo6GfnS6_w.roa
File: KP7Oa2eZKroPZlNU6Bo6GfnS6_w.roa (raw, json)
Hash identifier: IMi9ozV1U4jW6Lcvnj0lHlQ0TIYtYLwkg9t1A7fHtlY=
Subject key identifier: 28:FE:CE:6B:67:99:2A:BA:0F:66:53:54:E8:1A:3A:19:F9:D2:EB:FC
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 01889C8611210127C84D5690E55A5C3492D7
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/KP7Oa2eZKroPZlNU6Bo6GfnS6_w.roa
Signing time: Thu 08 Jun 2023 19:40:11 +0000
ROA not before: Thu 08 Jun 2023 19:40:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207083
IP address blocks: 193.30.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9c:86:11:21:01:27:c8:4d:56:90:e5:5a:5c:34:92:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Jun 8 19:40:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28fece6b67992aba0f665354e81a3a19f9d2ebfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:83:f6:c9:16:c4:36:61:88:46:12:7b:22:a0:
c9:10:c3:5c:0d:4a:c5:5a:fd:e6:16:d5:33:25:87:
1c:a7:ea:da:90:2c:c7:e4:91:22:ec:32:11:46:a9:
4f:11:ad:f3:21:3a:98:75:ec:d2:6d:af:1f:4f:e3:
8a:e3:64:ca:0e:10:d4:95:ad:f5:6c:b4:25:4b:46:
d6:d1:be:ac:96:18:a2:cb:10:7d:13:c8:42:df:1c:
07:b1:23:cf:3b:48:1f:4b:97:74:ac:9b:f6:42:0c:
8b:3d:e7:13:4c:99:87:d4:1d:74:8d:f9:9c:92:67:
44:28:78:1c:05:0b:08:4d:57:fc:ff:c2:07:87:4b:
ee:84:8c:92:d7:30:2e:d1:bb:a0:9e:6a:6d:ab:93:
3e:19:1d:88:e9:77:4a:6e:82:c8:8f:05:d4:43:0f:
a6:d0:bb:4b:8f:d6:a2:2d:3a:b5:69:aa:06:07:32:
86:a8:75:57:bb:1a:96:ae:d3:9a:6a:41:e7:fc:75:
0a:4c:95:22:3a:89:e0:97:ed:db:71:9d:79:c9:53:
bc:2c:7f:bb:3f:41:11:19:3e:96:c2:7d:f3:0f:21:
4f:f1:fe:aa:2c:c5:f4:8d:c8:11:9e:05:18:52:cc:
8d:4b:66:4e:5c:a8:be:fc:a0:2a:07:16:ee:a4:c1:
f5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FE:CE:6B:67:99:2A:BA:0F:66:53:54:E8:1A:3A:19:F9:D2:EB:FC
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/KP7Oa2eZKroPZlNU6Bo6GfnS6_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b3:33:c2:d3:fc:15:ab:21:e1:ec:37:8f:15:46:69:ec:39:
24:53:85:b3:dc:f5:29:b4:e7:0a:72:6d:6c:e5:f0:bc:c4:07:
ad:3f:75:8c:a7:ba:71:a4:51:f5:c0:b2:03:b3:58:79:8c:a0:
e0:84:eb:5e:d7:33:f9:26:ac:b7:fb:f0:da:a9:af:a0:b8:ca:
8d:67:f3:e2:98:e1:b6:bf:b8:be:22:5d:3c:bd:d4:5d:c6:f5:
b7:fb:2e:1a:d3:ca:a0:19:a7:c1:fb:48:59:25:d2:3a:08:82:
9e:3b:95:3a:0a:26:7c:3a:88:9a:79:ec:10:a3:48:90:8f:c1:
f3:e0:ab:01:ce:62:4b:43:fb:f7:c1:55:c2:d2:f1:be:f7:71:
04:2f:09:7f:39:20:24:be:ae:95:59:81:20:31:41:b2:63:ac:
80:10:48:2e:95:eb:88:06:d7:26:bf:11:4a:70:71:13:b8:73:
bd:cf:24:11:67:a5:9d:2c:9b:98:74:89:7b:0c:cf:84:59:8c:
d2:9f:b2:4f:c3:71:cb:40:54:36:98:05:1f:66:db:ea:06:df:
dc:26:c8:da:9b:50:95:7c:10:98:0b:50:ba:01:95:99:3b:02:
3b:1b:f4:6c:7d:2f:f9:58:e5:11:87:e7:a4:f1:fd:fb:d8:bd:
0a:c4:f3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:10 2025 by rpki-client