Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/L0IA_laSuZ1BFu5rJEWi5L-NhK0.roa
File: L0IA_laSuZ1BFu5rJEWi5L-NhK0.roa (raw, json)
Hash identifier: +TY1exv5CFTu97GrxkeIIoDzJ+hdYZZCOfTJEO9ToxE=
Subject key identifier: 2F:42:00:FE:56:92:B9:9D:41:16:EE:6B:24:45:A2:E4:BF:8D:84:AD
Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Certificate serial: 0544337B
Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/L0IA_laSuZ1BFu5rJEWi5L-NhK0.roa
Signing time: Sat 01 Jan 2022 07:03:00 +0000
ROA not before: Sat 01 Jan 2022 07:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39642
IP address blocks: 193.163.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88355707 (0x544337b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Validity
Not Before: Jan 1 07:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f4200fe5692b99d4116ee6b2445a2e4bf8d84ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4e:35:5d:ac:eb:96:e9:8b:54:85:68:87:46:
49:68:ef:06:bf:ee:fb:54:94:16:3f:60:87:43:e7:
68:ec:d8:61:68:f4:ed:b3:de:0b:fe:0e:45:10:6f:
cb:13:00:f8:a9:58:96:0a:89:bb:4f:f0:58:f5:64:
28:15:bd:dc:2b:7f:8a:f9:30:06:dc:1b:4a:0d:88:
72:47:18:11:26:83:0a:85:85:59:78:15:06:fd:68:
72:cc:a4:69:f6:07:30:f7:c1:f9:1a:74:ca:e7:46:
0a:a5:4b:88:4a:57:54:bb:fd:10:ba:dd:80:65:d0:
c4:de:18:09:85:64:63:16:f7:b1:b4:a2:d4:21:1c:
1b:d9:fd:d7:cf:c4:3f:ed:72:79:54:43:48:1c:62:
60:06:c3:23:93:c3:bd:28:e0:e2:31:26:6c:f7:d8:
d1:6a:0e:11:e2:9a:1e:f3:e2:11:6f:80:69:5a:d3:
02:02:64:6d:0e:09:ea:fc:60:e3:4f:b4:87:13:39:
39:04:1b:60:2e:11:77:0b:52:ca:1e:26:47:90:ac:
4a:fa:5c:c4:b3:2d:9b:af:e4:85:d6:b3:08:70:81:
9f:62:72:8b:3d:96:7f:39:21:50:68:4f:8c:ad:a7:
ef:2a:1d:b6:05:e2:0f:c0:6e:9b:2b:f9:a3:35:e5:
41:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:42:00:FE:56:92:B9:9D:41:16:EE:6B:24:45:A2:E4:BF:8D:84:AD
X509v3 Authority Key Identifier:
keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/L0IA_laSuZ1BFu5rJEWi5L-NhK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.220.0/24
Signature Algorithm: sha256WithRSAEncryption
08:33:22:8b:49:a2:7e:92:f5:70:a3:e0:8e:af:41:b6:23:fc:
74:da:79:18:e4:55:e8:b1:b9:f0:17:28:a1:d6:fa:39:a3:2a:
3e:58:d7:99:54:85:18:48:ce:9a:23:00:ea:4d:2f:81:ef:f1:
43:69:9a:92:b5:f6:6f:37:71:17:de:ef:ce:69:6b:7a:1c:ab:
07:a1:14:f6:a8:a9:4e:bc:9f:28:63:37:59:99:09:b6:41:95:
7a:be:8e:77:d6:8d:69:66:10:da:27:76:05:4d:cd:f0:f2:a8:
76:92:fc:42:87:be:e6:07:61:c1:c1:f5:17:b0:52:4c:85:fb:
94:77:40:03:fa:6e:4b:05:86:85:7d:c1:e2:15:a7:e8:40:e5:
7d:ef:6e:45:06:83:72:7e:5b:c6:eb:8d:18:9c:bb:50:33:f3:
a4:e0:26:f2:a2:e6:26:a7:99:9a:ad:d7:05:11:7b:90:fe:61:
74:95:e2:bb:00:7e:20:59:02:bd:54:4f:98:67:49:84:12:5c:
13:56:47:b1:f6:88:5b:4c:7c:a8:72:64:12:53:db:3a:a6:c7:
5d:ff:f5:7d:1f:18:b1:e3:61:4b:e0:4b:0b:f1:4d:10:96:95:
ef:7d:e5:72:f6:39:5f:a7:1a:6f:ab:83:71:76:46:f4:d5:a5:
24:ca:dd:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:42 2025 by rpki-client