Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/lUXvVqZVvpEYQIm1ohXIwrMy0zU.roa
File: lUXvVqZVvpEYQIm1ohXIwrMy0zU.roa (raw, json)
Hash identifier: 4NvPoDS4wXtPSNUlW8pyxPNyKbDMapwKZggsHzL5jtg=
Subject key identifier: 95:45:EF:56:A6:55:BE:91:18:40:89:B5:A2:15:C8:C2:B3:32:D3:35
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 01827DADDB056C00D973FFDB3C2BFA4CA556
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/lUXvVqZVvpEYQIm1ohXIwrMy0zU.roa
Signing time: Mon 08 Aug 2022 13:38:41 +0000
ROA not before: Mon 08 Aug 2022 13:38:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35081
IP address blocks: 193.239.128.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:ad:db:05:6c:00:d9:73:ff:db:3c:2b:fa:4c:a5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Aug 8 13:38:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9545ef56a655be91184089b5a215c8c2b332d335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:d1:ef:10:88:57:4b:63:92:ef:20:af:c6:
38:cb:83:01:9f:e8:9a:fb:c4:63:ee:01:c2:f2:61:
4d:19:b3:b7:5e:27:63:84:c4:e5:32:53:06:8e:7e:
db:8d:47:98:09:17:de:65:7e:b7:61:dd:f3:df:55:
52:aa:43:b9:4b:37:cb:2d:5f:cb:41:17:fd:9c:a6:
4e:5a:10:e9:09:b6:e5:e5:63:a7:09:c6:b2:0f:ca:
d6:03:8c:2c:c6:0f:0c:85:87:64:c7:cf:72:47:ac:
ed:2c:35:d7:09:c0:cb:5d:a5:46:1d:c8:c5:89:2f:
90:00:65:3d:a2:0a:7f:5c:f9:8a:be:05:86:58:83:
4e:1f:3d:00:bf:20:d4:7f:d7:88:93:de:19:af:bb:
9b:63:38:c4:55:6a:1a:5b:5b:d7:a4:18:48:db:e1:
01:2b:87:8e:33:2d:a8:b9:9f:72:ca:36:f5:6b:78:
15:50:ce:57:db:1f:7c:2d:fb:bc:b2:11:22:f8:ed:
17:64:b9:05:09:d5:c2:6d:fb:b0:82:ca:52:2d:44:
22:70:da:f6:66:27:be:a4:87:39:d2:9c:5b:ac:7b:
05:0f:72:c8:b0:d6:41:0c:8f:0d:cd:96:df:3d:77:
69:cb:cd:d1:9d:a1:8c:e5:93:6e:0e:39:f3:0a:27:
b4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:45:EF:56:A6:55:BE:91:18:40:89:B5:A2:15:C8:C2:B3:32:D3:35
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/lUXvVqZVvpEYQIm1ohXIwrMy0zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.128.0/23
Signature Algorithm: sha256WithRSAEncryption
37:fa:ca:90:3d:cf:c6:1d:12:e6:ad:ac:dd:d1:7c:e7:3d:3f:
22:fb:03:30:d8:fc:f7:5b:1a:85:c1:8b:2f:9a:87:05:55:e6:
a5:83:db:8d:f0:aa:e6:37:5c:cd:20:a5:5e:2f:0d:03:17:2f:
5c:a9:6b:78:d7:cd:f4:24:4c:6c:98:3a:b9:74:44:88:2a:92:
4e:b1:43:4b:0b:37:bf:d1:f4:b0:18:b7:f4:99:85:fb:a3:43:
97:c7:71:cc:27:96:4b:40:2c:8d:62:e0:6f:80:22:8e:41:39:
9b:ef:87:50:da:98:7b:a8:1c:7d:24:fd:51:9a:e0:22:b3:b1:
81:1b:5c:0f:35:47:69:cf:46:0f:b7:d1:6a:a9:1e:26:5b:6a:
14:ba:50:8d:a4:9b:e4:e4:4b:a5:ee:2b:d1:be:35:74:97:36:
9d:91:76:30:9e:35:ff:15:45:0b:3a:82:48:ae:be:a1:32:ca:
fb:84:a2:65:88:83:70:89:d2:85:6a:1b:2b:d6:80:e9:2a:f0:
c5:f8:88:e9:25:b1:a7:20:50:f8:bb:a5:2a:f7:00:d8:94:74:
a3:b0:26:8c:e4:ea:9c:3f:3c:c7:5f:81:a1:d2:d3:0a:4e:6a:
7a:34:c8:b2:e8:b3:55:31:d6:7f:34:71:ab:e9:f3:51:db:01:
84:07:6a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:16 2025 by rpki-client