Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/kDUxyYMnTdw6zEMcMy7yAyF3cUs.roa
File: kDUxyYMnTdw6zEMcMy7yAyF3cUs.roa (raw, json)
Hash identifier: twSXWMX5xRl0v81egr0KMh4NNmPe7l+oEIu8cTfmtqs=
Subject key identifier: 90:35:31:C9:83:27:4D:DC:3A:CC:43:1C:33:2E:F2:03:21:77:71:4B
Certificate issuer: /CN=c2f3266e0612d8314f4e9f92a3db8bcb253edabc
Certificate serial: 01856F547DACEE992F7A2D5B165D34E99E55
Authority key identifier: C2:F3:26:6E:06:12:D8:31:4F:4E:9F:92:A3:DB:8B:CB:25:3E:DA:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wvMmbgYS2DFPTp-So9uLyyU-2rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/kDUxyYMnTdw6zEMcMy7yAyF3cUs.roa
Signing time: Sun 01 Jan 2023 21:54:46 +0000
ROA not before: Sun 01 Jan 2023 21:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198941
IP address blocks: 193.35.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:7d:ac:ee:99:2f:7a:2d:5b:16:5d:34:e9:9e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2f3266e0612d8314f4e9f92a3db8bcb253edabc
Validity
Not Before: Jan 1 21:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=903531c983274ddc3acc431c332ef2032177714b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:3f:8c:ca:81:b3:c9:e0:0a:10:47:1c:ef:
31:04:43:0d:f1:31:fa:b9:bf:b3:33:c6:0d:9b:5b:
86:69:85:d2:22:e0:fe:34:50:c5:75:9c:b2:db:e2:
39:0f:92:f9:60:1c:7f:20:fd:73:2f:47:d5:06:35:
13:c0:60:31:da:bd:4e:bb:06:f2:87:99:0e:3f:44:
e8:10:23:95:b2:fe:ac:60:c6:3a:97:5c:63:52:71:
d8:15:e6:dc:0c:3e:31:f7:fe:51:5a:de:3f:f3:3b:
ce:2f:04:a5:81:45:a4:9a:ec:93:d2:ca:e0:ca:8c:
2a:79:bd:74:a7:8f:97:f3:19:a1:ae:db:1c:7b:5c:
56:b0:1d:6c:aa:91:b5:90:43:2c:f7:51:41:94:ae:
d1:12:a5:d4:01:cb:58:46:22:dc:18:1d:51:1e:d1:
0b:24:71:6f:8b:45:df:ab:d1:02:50:63:6b:c9:5a:
84:92:f7:27:d4:e7:8a:c9:e6:15:4c:36:c0:b3:fa:
7f:f0:fb:4f:5d:17:57:e3:8e:d6:30:7b:86:9c:bb:
d0:65:08:ef:cd:67:b7:a8:a0:82:9d:9a:2c:34:4a:
e7:2e:48:47:78:53:a5:85:50:4c:bb:41:03:d2:b9:
3f:7d:07:d7:f5:76:d2:05:b9:98:1d:fc:22:54:0e:
3a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:35:31:C9:83:27:4D:DC:3A:CC:43:1C:33:2E:F2:03:21:77:71:4B
X509v3 Authority Key Identifier:
keyid:C2:F3:26:6E:06:12:D8:31:4F:4E:9F:92:A3:DB:8B:CB:25:3E:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wvMmbgYS2DFPTp-So9uLyyU-2rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/kDUxyYMnTdw6zEMcMy7yAyF3cUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/wvMmbgYS2DFPTp-So9uLyyU-2rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.46.0/24
Signature Algorithm: sha256WithRSAEncryption
87:98:4c:80:dc:7f:0d:18:70:32:18:66:6d:1c:6c:0f:21:d9:
19:46:1d:34:37:a9:c3:d9:69:0b:8c:8b:37:ab:f5:01:f3:74:
32:28:b1:c9:69:31:ba:9e:9e:29:00:e2:15:3a:46:9a:5b:15:
e9:0d:9b:6b:ea:82:fe:3c:e3:60:6c:fb:c3:22:91:9f:04:6a:
54:c4:48:0c:40:bf:03:ec:51:ac:f8:26:1d:b8:76:40:0b:32:
5d:e9:ff:58:8d:7e:e5:d1:b7:e8:c7:21:74:39:68:c2:08:c5:
d1:35:04:5c:e6:da:00:8a:73:bc:f0:57:2e:b2:98:84:85:fe:
6d:d2:6f:bd:fc:b2:1a:98:71:f1:5a:94:66:8e:1e:51:fc:9e:
3d:14:ca:7e:19:ac:21:fe:60:1e:6b:ca:3a:8d:3a:e0:ae:05:
42:98:62:21:95:39:e1:47:1d:f8:7b:65:10:8c:5b:a1:ef:29:
3b:7d:da:3b:c5:3d:b5:54:8a:3b:08:79:ed:95:d7:a5:6a:5f:
8c:15:73:95:f5:0d:46:79:94:2f:35:b6:b4:0d:d1:39:84:e5:
19:89:43:aa:de:db:7b:c3:b4:f0:3b:fc:64:79:d5:5d:c8:4f:
1d:88:42:78:cc:02:5d:6d:72:81:c8:30:e3:7c:45:57:16:1d:
14:f4:5a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:43 2025 by rpki-client