Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/gTdh4wr6O2T2PO8nxL4InhlbP0M.roa
File: gTdh4wr6O2T2PO8nxL4InhlbP0M.roa (raw, json)
Hash identifier: urtoP+ITEvJxVIUAAh64E1C9RUsbWw8w7HZnuoGnY2w=
Subject key identifier: 81:37:61:E3:0A:FA:3B:64:F6:3C:EF:27:C4:BE:08:9E:19:5B:3F:43
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 018570DE4CA2D33979253481DC1FC8F34A00
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/gTdh4wr6O2T2PO8nxL4InhlbP0M.roa
Signing time: Mon 02 Jan 2023 05:04:54 +0000
ROA not before: Mon 02 Jan 2023 05:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39020
IP address blocks: 193.30.100.0/24 maxlen: 24
2a07:f7c7:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:4c:a2:d3:39:79:25:34:81:dc:1f:c8:f3:4a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Jan 2 05:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=813761e30afa3b64f63cef27c4be089e195b3f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:f1:04:52:02:e6:77:76:6a:15:8d:21:ac:
f3:80:a9:a0:65:08:c0:78:37:0d:c1:5a:05:af:d1:
39:99:99:69:ea:49:0b:a3:e9:19:e6:e4:2a:c9:05:
c7:a5:7e:74:9b:ee:5e:bd:b2:2f:8a:d3:2e:7b:aa:
a4:b9:7f:48:47:a3:2e:ca:58:8b:8f:72:21:f6:5c:
96:6b:e6:4d:89:30:eb:01:51:3f:61:4f:f5:e1:d8:
e9:90:89:ef:59:de:00:53:c1:02:49:38:ef:a4:db:
2b:78:8d:22:a5:20:06:1e:98:93:ed:db:08:83:06:
6b:b0:62:3b:d9:5e:79:f8:5d:74:9f:e0:cb:f5:f4:
c6:8d:a7:80:2d:fa:06:12:a4:d4:49:02:25:4c:44:
e4:1b:1e:7e:48:d1:dd:6e:d4:d1:e9:db:f6:0c:00:
c7:d0:d2:50:e0:8e:ad:d1:4d:18:d1:39:77:e5:f9:
5c:e1:cc:eb:d5:4a:41:d5:58:96:f7:6d:91:be:00:
5c:ae:0a:69:0a:ef:c9:10:bc:45:36:2a:65:bc:3a:
16:33:00:5a:a4:1a:9e:65:38:65:5a:f6:d2:40:88:
89:7a:47:cd:37:6d:e0:b8:cb:68:79:09:89:30:34:
bc:2c:5d:34:23:da:b5:d3:2d:2c:15:b9:58:6b:26:
18:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:37:61:E3:0A:FA:3B:64:F6:3C:EF:27:C4:BE:08:9E:19:5B:3F:43
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/gTdh4wr6O2T2PO8nxL4InhlbP0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.100.0/24
IPv6:
2a07:f7c7:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
94:df:92:da:5a:7d:b1:df:9d:58:f0:09:68:49:fd:f2:61:e8:
4b:e3:d5:65:8b:fb:98:0c:23:a4:19:83:b7:5b:21:0a:09:79:
be:e5:f8:cd:4e:3e:f5:97:a0:5e:24:ad:9a:10:a5:0c:4a:5d:
c9:4d:f8:8b:22:9a:56:98:e8:7a:ad:42:2a:f6:67:81:61:d7:
53:7a:3d:a8:fb:6b:13:1b:e8:12:fb:80:40:1b:14:fb:23:b4:
81:f7:8a:be:8a:cf:0a:64:87:3d:63:96:af:f5:36:c4:e6:da:
5c:de:cd:98:ba:85:fd:8a:1e:8f:df:8d:83:83:cc:58:68:8d:
76:94:30:ad:03:85:f9:ae:9e:ff:7e:4c:81:77:bc:9d:a3:0e:
ce:0e:66:91:8d:52:20:40:62:43:bb:84:55:7e:00:20:54:64:
00:f3:40:a3:4e:92:93:74:fc:6b:0b:0c:f5:fc:28:1b:28:68:
b6:24:9d:7f:38:0c:6d:15:d2:b5:d4:8e:1a:4f:c9:fa:7d:b6:
15:aa:7d:79:17:45:f0:f4:11:a7:7a:8d:91:71:c9:86:e9:66:
9a:9f:82:aa:ac:63:98:85:6a:e9:e7:43:ea:10:3d:ff:44:7a:
70:87:57:b3:a5:57:0b:15:b4:2e:c0:30:a0:8f:85:ec:a3:0f:
b8:9e:8b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:50 2025 by rpki-client