Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/b_SIyBSCcRsuzCN8bvWgU4biwec.roa
File: b_SIyBSCcRsuzCN8bvWgU4biwec.roa (raw, json)
Hash identifier: 8HjCSRGqOqJXq+MBhgJklwKVdPLyRJXEFyS8tOdDp20=
Subject key identifier: 6F:F4:88:C8:14:82:71:1B:2E:CC:23:7C:6E:F5:A0:53:86:E2:C1:E7
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8AFE57AE11BE029CA496CCB3831A1A
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/b_SIyBSCcRsuzCN8bvWgU4biwec.roa
Signing time: Sun 01 Jan 2023 13:35:03 +0000
ROA not before: Sun 01 Jan 2023 13:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16114
IP address blocks: 194.209.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:fe:57:ae:11:be:02:9c:a4:96:cc:b3:83:1a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ff488c81482711b2ecc237c6ef5a05386e2c1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b4:02:bc:9a:e7:89:7b:ec:cd:e6:f2:09:c1:
32:9b:23:40:bc:a9:f7:c4:1e:40:b8:16:89:91:88:
60:eb:9e:3d:f4:70:ba:e3:b4:67:3e:a8:3a:b5:6c:
c7:5e:20:90:8a:98:c6:99:85:5c:f9:b5:6c:5b:17:
bf:b6:e9:86:6c:74:a1:93:32:1d:f3:76:00:80:fd:
89:68:f5:27:02:3c:54:49:56:51:ec:c4:4d:57:30:
f1:62:b1:be:e2:ed:b1:c2:e4:1f:8f:c4:cf:7c:37:
94:b1:b9:b9:45:27:bb:11:57:25:f9:4f:2c:2b:fb:
0c:4b:03:0b:40:f5:89:5e:c0:09:da:ce:25:9d:b7:
a0:77:98:d5:6b:bf:44:d5:92:54:13:95:4e:72:8d:
d2:81:6a:2d:c8:21:cf:d1:1e:7a:61:71:98:6e:a0:
04:98:0d:5e:b2:fb:08:2b:ee:eb:59:ea:88:21:ca:
73:8e:f6:f8:f3:ac:e1:49:3c:d4:5c:f9:af:c3:7d:
c2:59:24:17:51:bf:48:0c:b4:6c:76:81:b3:7f:f0:
2c:d3:57:3b:04:5a:9a:63:25:58:c0:4d:56:99:c6:
63:a5:85:bf:69:03:66:a8:79:11:0e:c4:e2:a0:ae:
80:c2:67:63:da:32:f3:7b:5e:dd:c4:14:1f:6b:81:
56:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F4:88:C8:14:82:71:1B:2E:CC:23:7C:6E:F5:A0:53:86:E2:C1:E7
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/b_SIyBSCcRsuzCN8bvWgU4biwec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.241.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:76:c3:11:56:17:a8:03:e1:21:e1:87:f5:21:ba:6a:32:d2:
1f:a5:cc:35:7d:72:16:58:51:b5:da:83:79:67:c0:15:1d:cc:
f8:47:0e:2f:78:54:c1:e0:a5:e5:92:ff:44:8e:ef:59:73:31:
3a:a4:d7:81:e3:35:89:ba:70:00:13:a1:4a:55:72:ae:9f:a8:
e4:f7:5e:42:5c:65:f4:4a:a6:de:97:56:11:50:ff:a0:7a:3d:
4d:b2:b3:55:43:fb:79:f7:bf:22:64:38:0b:09:96:cd:2f:e4:
40:92:af:6f:5f:e1:c8:ec:39:4d:87:16:4a:fd:eb:13:8f:65:
25:23:00:f3:01:86:4f:50:27:d1:ff:25:14:c1:91:0e:fb:33:
9a:97:19:11:b2:eb:c0:dc:6c:eb:75:5b:48:a1:42:7d:a2:93:
5b:da:27:af:bf:a3:1e:5e:ae:97:ca:20:2f:59:99:ed:c9:2c:
8d:06:81:41:47:22:5e:eb:92:08:16:d8:92:52:bb:48:9f:ed:
8c:f7:25:59:6a:42:be:60:c0:52:74:8e:ad:3b:5a:3d:70:aa:
ae:38:0f:72:23:36:d2:42:ba:5f:64:06:39:03:80:82:44:8b:
0c:5e:ce:82:83:b6:7b:a3:0d:03:1d:08:f2:e3:6a:8a:df:5b:
0c:e7:82:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:47 2025 by rpki-client