Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/62d15b-7bd5-4b3b-be72-147ec96ea730/1/7DWowlpbp_kn7v3fbRTx1YZufWQ.roa
File: 7DWowlpbp_kn7v3fbRTx1YZufWQ.roa (raw, json)
Hash identifier: Llx/DxeMJaAfz4eqYTQmDMzWNLkQUvIBnRPc9svs8uM=
Subject key identifier: EC:35:A8:C2:5A:5B:A7:F9:27:EE:FD:DF:6D:14:F1:D5:86:6E:7D:64
Certificate issuer: /CN=93c64c668eff34740816eda85a459d0c422e063c
Certificate serial: 01857315E2E66D77C3C490627FBAEA680526
Authority key identifier: 93:C6:4C:66:8E:FF:34:74:08:16:ED:A8:5A:45:9D:0C:42:2E:06:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8ZMZo7_NHQIFu2oWkWdDEIuBjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/62d15b-7bd5-4b3b-be72-147ec96ea730/1/7DWowlpbp_kn7v3fbRTx1YZufWQ.roa
Signing time: Mon 02 Jan 2023 15:24:52 +0000
ROA not before: Mon 02 Jan 2023 15:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 192.150.194.0/23 maxlen: 23
192.150.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:e2:e6:6d:77:c3:c4:90:62:7f:ba:ea:68:05:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c64c668eff34740816eda85a459d0c422e063c
Validity
Not Before: Jan 2 15:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec35a8c25a5ba7f927eefddf6d14f1d5866e7d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9d:e7:b6:45:da:bd:84:ed:1d:39:04:08:4e:
7b:12:3c:b3:f4:12:3e:d9:94:a4:92:6a:37:d7:18:
a4:2b:8d:32:3a:58:95:f5:32:9e:31:41:17:c2:cb:
8a:07:e1:54:95:9a:ad:fb:4b:90:a7:cb:8c:c7:4b:
bb:45:e6:7e:4f:fe:28:40:df:7d:fe:b8:76:4d:af:
e0:61:79:63:0e:f7:31:2a:3c:5d:b9:fe:73:ef:42:
ba:03:22:46:86:cc:fa:7d:90:ee:69:1c:41:4f:72:
6d:5a:7d:96:b9:4e:12:74:46:05:55:db:2e:fe:6b:
c1:8d:b1:d1:4d:9d:53:c8:e8:d0:ae:ce:93:f4:fe:
33:d4:9b:a1:09:d6:68:99:6f:02:c6:6f:c8:5c:98:
42:dc:0f:f2:42:3f:d0:f1:47:c0:c3:f5:c8:d2:29:
b5:b3:73:c5:0a:6a:18:39:0c:49:dc:bb:4f:5a:c2:
4c:b4:95:10:96:8d:09:f9:6b:c1:94:32:47:f3:6f:
40:5c:f6:db:33:14:93:c2:33:cb:d3:3d:7f:93:01:
d5:7d:b2:66:a3:f5:e9:cf:6e:e1:a0:e9:fe:33:21:
a5:9c:7f:24:47:cd:c8:09:ec:df:f8:66:aa:78:e3:
48:7c:3a:32:73:a6:2c:6e:bf:3a:91:ac:b0:e6:57:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:35:A8:C2:5A:5B:A7:F9:27:EE:FD:DF:6D:14:F1:D5:86:6E:7D:64
X509v3 Authority Key Identifier:
keyid:93:C6:4C:66:8E:FF:34:74:08:16:ED:A8:5A:45:9D:0C:42:2E:06:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8ZMZo7_NHQIFu2oWkWdDEIuBjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/62d15b-7bd5-4b3b-be72-147ec96ea730/1/7DWowlpbp_kn7v3fbRTx1YZufWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/62d15b-7bd5-4b3b-be72-147ec96ea730/1/k8ZMZo7_NHQIFu2oWkWdDEIuBjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.150.194.0-192.150.196.255
Signature Algorithm: sha256WithRSAEncryption
08:32:af:a5:8e:5e:53:92:41:36:2b:f5:0f:1f:7d:f5:b7:0a:
49:3b:bf:8c:37:af:fd:f1:91:f7:b1:2b:2c:fc:f3:b2:57:c1:
a0:d3:08:0f:87:13:9f:d0:68:25:57:12:1c:d6:4b:87:d5:9b:
85:e8:03:dd:3a:64:79:30:16:78:6b:5e:45:9e:d7:86:47:24:
a3:21:ca:81:13:b5:59:ca:d9:65:84:d2:6d:4e:39:b2:c4:c1:
56:b8:d9:eb:87:81:fe:b2:08:7b:f7:72:9b:f3:13:31:f0:59:
da:85:4b:a6:c4:b7:96:58:f9:91:27:7d:a4:4d:86:a9:01:4b:
0b:30:f5:9c:e4:7a:8d:43:dd:58:22:69:bd:06:a7:92:5c:26:
60:a0:8d:6f:04:ae:b9:f0:6b:83:48:34:c4:b4:81:d9:d8:34:
c2:53:4b:14:d7:bc:f2:af:b8:ae:2a:37:ac:da:fa:f6:d7:d5:
ad:d0:de:15:ad:51:2f:16:9e:45:4b:75:d7:36:42:d6:b2:2f:
82:e5:2c:a2:ea:a3:b0:bd:57:b3:65:bf:bd:ba:04:16:12:b6:
f1:2c:e5:9f:17:a0:7e:49:ec:71:98:dc:2a:8b:fa:44:0e:19:
48:b8:58:a9:57:4d:bb:07:30:a5:ee:35:ae:c5:98:76:44:c5:
5e:69:ae:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:46 2025 by rpki-client