Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbb741-b692-4f09-8cba-c6aec68ab364/1/dV9zFJNm2Z-UpvFKY0OBpp0vIGE.roa
File: dV9zFJNm2Z-UpvFKY0OBpp0vIGE.roa (raw, json)
Hash identifier: j1gmmKAy3JFb5etyP4XDeembGcysiAOSCmNvT9U1qF8=
Subject key identifier: 75:5F:73:14:93:66:D9:9F:94:A6:F1:4A:63:43:81:A6:9D:2F:20:61
Certificate issuer: /CN=36117a6815a918478d3f8c00d671a57166bfeeca
Certificate serial: 018B905D2A0BB3F6589A2701EA23A7428BB5
Authority key identifier: 36:11:7A:68:15:A9:18:47:8D:3F:8C:00:D6:71:A5:71:66:BF:EE:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NhF6aBWpGEeNP4wA1nGlcWa_7so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbb741-b692-4f09-8cba-c6aec68ab364/1/dV9zFJNm2Z-UpvFKY0OBpp0vIGE.roa
Signing time: Thu 02 Nov 2023 14:08:26 +0000
ROA not before: Thu 02 Nov 2023 14:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21086
IP address blocks: 193.109.40.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:5d:2a:0b:b3:f6:58:9a:27:01:ea:23:a7:42:8b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36117a6815a918478d3f8c00d671a57166bfeeca
Validity
Not Before: Nov 2 14:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=755f73149366d99f94a6f14a634381a69d2f2061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:56:9a:04:af:e6:04:39:c7:67:b7:62:c2:6d:
22:1e:c9:88:1a:07:1f:69:ab:e8:d2:35:34:bb:f4:
b5:d9:75:57:1b:ea:1a:c6:39:be:d2:91:23:02:b9:
82:56:08:e3:0c:a5:dc:b0:e3:79:fe:5c:f2:ea:13:
52:47:ce:15:f4:37:23:10:79:dc:db:6b:98:7c:4a:
32:3b:6f:ca:49:78:29:31:fa:2f:6b:94:ac:af:ab:
8d:4c:ad:c6:fe:30:94:05:02:7a:0e:52:1d:5b:b3:
87:63:bd:33:93:62:5b:03:21:b8:74:65:d6:44:a1:
f4:cc:32:84:4d:3f:c8:fb:e8:7e:d6:4d:54:51:44:
18:28:2b:8d:73:48:a4:df:57:8f:5a:6a:c3:88:80:
b0:50:bb:8c:e2:0b:0c:15:59:ae:23:80:b9:6b:cd:
db:59:f7:26:3b:b0:39:57:40:19:7b:6f:34:1f:dd:
71:cb:2a:28:fd:21:1d:6b:d2:d6:9c:7c:bd:ce:34:
ef:6f:79:1a:60:14:df:af:49:87:5d:b8:21:fa:52:
c9:60:ea:dd:d6:0d:d0:94:da:cc:cc:08:2f:a2:0b:
e5:4f:79:f5:0c:bf:4e:18:ae:f7:e1:0c:56:d3:a2:
96:4d:f3:d0:2e:98:4a:74:38:86:91:12:60:42:d2:
27:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5F:73:14:93:66:D9:9F:94:A6:F1:4A:63:43:81:A6:9D:2F:20:61
X509v3 Authority Key Identifier:
keyid:36:11:7A:68:15:A9:18:47:8D:3F:8C:00:D6:71:A5:71:66:BF:EE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NhF6aBWpGEeNP4wA1nGlcWa_7so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbb741-b692-4f09-8cba-c6aec68ab364/1/dV9zFJNm2Z-UpvFKY0OBpp0vIGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbb741-b692-4f09-8cba-c6aec68ab364/1/NhF6aBWpGEeNP4wA1nGlcWa_7so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.40.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:54:bc:f6:57:13:4e:61:b1:67:d4:d1:cc:f1:a1:f7:9b:54:
2c:32:28:95:01:ce:ee:6a:d8:17:bd:7c:d3:0f:96:9e:b2:6a:
1b:a1:6d:35:a7:9e:a3:5e:56:24:0e:70:c3:75:59:a1:d9:57:
9b:68:ac:5c:6f:7e:af:5d:4d:55:ac:61:33:1f:6c:88:c9:6c:
70:f9:2b:bf:91:14:d8:bf:14:fb:95:34:2f:a7:94:bf:9c:e1:
ee:8d:b2:c0:2e:56:6a:fb:22:68:3a:4e:8f:be:f7:a8:4b:89:
f7:54:46:6a:be:16:9a:a8:05:1d:d8:68:50:1d:72:a5:ea:e1:
3e:64:1f:a6:6f:aa:72:d2:3c:ee:ec:67:66:94:82:a4:fb:36:
25:2a:4b:78:9c:64:ab:1a:c6:4c:2c:d8:a6:9f:95:7e:8f:2a:
95:b2:17:7a:cf:c4:2e:d4:9b:83:13:03:8b:74:33:5d:1e:d8:
4e:d8:62:76:f1:37:54:f8:8b:00:7e:49:b1:16:10:cf:d0:ce:
e4:1b:b8:76:dc:1c:1e:aa:8d:59:38:69:96:98:96:b0:40:77:
65:10:44:63:98:27:b1:3f:d5:83:a4:83:ae:dc:ac:df:39:af:
33:2d:e4:c5:97:62:57:38:46:a3:c6:70:a9:a2:d2:ac:23:a7:
cd:ce:61:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:47 2025 by rpki-client