Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/z3doYgnIzvrXr1cgl4CHVbn4x_A.roa
File: z3doYgnIzvrXr1cgl4CHVbn4x_A.roa (raw, json)
Hash identifier: AOAC3XJIzHgqSNnCpF2WL1I3XdwNtve6kuo95qabxpc=
Subject key identifier: CF:77:68:62:09:C8:CE:FA:D7:AF:57:20:97:80:87:55:B9:F8:C7:F0
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 018866BB09C1C2C00F52C70AE5B78612BB72
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/z3doYgnIzvrXr1cgl4CHVbn4x_A.roa
Signing time: Mon 29 May 2023 08:58:33 +0000
ROA not before: Mon 29 May 2023 08:58:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.30.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:bb:09:c1:c2:c0:0f:52:c7:0a:e5:b7:86:12:bb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: May 29 08:58:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf77686209c8cefad7af572097808755b9f8c7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6e:50:da:57:96:3f:a7:00:21:10:fe:ab:e5:
aa:fa:7a:b5:cd:0b:66:46:e9:b5:7f:ae:1b:57:7a:
5a:f9:80:9e:21:f5:78:a2:16:96:f0:2b:d6:bd:1d:
e6:a5:2e:cd:29:da:a9:b1:18:60:e1:63:0d:aa:6d:
5a:b8:57:84:e5:1e:8f:f2:9b:da:1f:cc:18:79:58:
f1:ae:5e:7c:30:b6:56:c2:98:fe:ca:58:f0:e8:ae:
63:c8:0e:c6:58:ad:ae:b9:07:fd:91:7a:39:19:d7:
97:c7:f3:b8:55:87:cf:64:ed:74:28:02:be:ce:cc:
8d:75:22:3a:0f:b0:29:00:ed:aa:ac:18:af:a5:f0:
f0:ae:2e:f7:fc:f3:14:eb:c7:8d:8e:0f:74:20:7a:
04:34:e5:55:8c:4c:71:de:70:ca:63:3c:22:de:b7:
27:43:9a:11:0c:77:c7:a3:0f:e3:10:45:2a:a1:64:
36:2e:5f:46:c7:5b:75:5b:4f:e5:d5:e8:60:b0:c8:
bd:5e:8f:9b:16:09:37:c2:05:ee:c9:66:28:ba:47:
fe:86:40:c4:86:e3:5a:d3:e3:09:b4:99:0a:fb:64:
ec:0d:82:a5:3c:c9:2d:53:62:c3:d9:2b:72:5f:c9:
02:25:d7:3d:ae:56:cc:ed:6d:b1:68:eb:f1:a5:ca:
eb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:77:68:62:09:C8:CE:FA:D7:AF:57:20:97:80:87:55:B9:F8:C7:F0
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/z3doYgnIzvrXr1cgl4CHVbn4x_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.102.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:13:7f:f3:89:3e:8a:f5:d8:5a:07:50:67:8e:0a:f7:3e:aa:
bc:22:5e:39:53:1c:e3:46:c9:a6:fb:87:b2:5c:16:0c:a0:9e:
d8:b5:30:2b:3f:fe:41:0e:56:8f:d4:35:2d:dc:c1:f1:b4:23:
d8:2f:34:7f:93:48:ef:03:f8:51:45:a0:8c:ed:04:da:a5:34:
bd:1e:23:01:7f:03:05:31:f2:83:f0:1c:73:d3:81:5e:43:91:
20:1b:ee:65:5e:6a:6d:b4:ff:47:b7:26:16:f2:c1:f0:46:75:
15:d6:1b:7b:2a:ad:09:f7:8e:ec:6c:f9:98:d5:fb:b9:03:4c:
9c:32:aa:eb:60:b1:3a:dd:74:49:76:98:4e:4c:1f:3a:31:e2:
84:2d:00:80:c1:cf:0f:67:b8:48:75:7d:71:eb:4b:84:a7:8d:
8c:35:20:3a:fa:cc:fa:ce:2b:ed:01:4e:c0:ed:e4:69:a4:a0:
bd:c8:dd:97:97:49:ae:18:89:9e:56:bd:00:c9:e1:17:15:7f:
d9:99:a3:e1:2e:7e:89:a4:17:ae:eb:28:37:13:d3:fb:3e:46:
53:c5:a5:22:14:5d:63:dc:1c:20:2f:18:ae:7c:67:fa:42:a3:
62:2c:45:8a:2a:f4:3e:f2:19:34:d6:3a:81:de:f1:f2:0c:16:
4a:ea:f4:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:32 2025 by rpki-client