Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/uXP0ylTI1lMQrVRH3ANoYbw4rAQ.roa
File: uXP0ylTI1lMQrVRH3ANoYbw4rAQ.roa (raw, json)
Hash identifier: gIU4KAj7uJVwEmnyjYYey7CSH2DKO/pnVA8i7PrHXYc=
Subject key identifier: B9:73:F4:CA:54:C8:D6:53:10:AD:54:47:DC:03:68:61:BC:38:AC:04
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8AFA77B46D589D5AF62D87E739C198
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/uXP0ylTI1lMQrVRH3ANoYbw4rAQ.roa
Signing time: Sun 01 Jan 2023 13:35:02 +0000
ROA not before: Sun 01 Jan 2023 13:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12651
IP address blocks: 193.246.0.128/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:fa:77:b4:6d:58:9d:5a:f6:2d:87:e7:39:c1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b973f4ca54c8d65310ad5447dc036861bc38ac04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b9:c1:f5:43:87:2a:82:97:92:73:7a:90:ae:
32:43:1e:f5:45:d3:a8:96:9e:30:fb:ad:0a:e2:b2:
e4:4d:4d:05:27:98:e1:a6:d9:80:57:6e:36:00:a4:
3f:3a:71:e9:c6:e3:ba:a0:e4:6c:84:7f:e0:6d:ef:
4d:8a:4e:4b:16:39:2f:19:ff:b8:13:75:52:f8:81:
98:87:18:5c:13:af:f4:27:50:20:3f:f1:23:c7:79:
6c:b4:ac:a9:70:2b:c9:eb:bc:aa:93:7d:78:78:ba:
64:cc:7b:38:9d:ef:ef:f2:24:b9:37:55:8e:33:7d:
73:97:00:05:c9:53:2f:18:d8:0c:ee:e0:96:8b:85:
9f:12:dd:b1:1c:cc:1b:ca:e1:88:c6:6e:b0:9f:3b:
c4:31:16:5a:23:84:22:19:3c:21:40:37:ca:50:d2:
2e:54:cd:ca:a4:e3:6d:b8:71:c5:0c:65:6d:d4:1a:
d8:c4:4c:44:71:90:37:ff:52:60:a6:36:c2:db:78:
17:a3:0d:19:1e:9b:25:ef:8b:64:b7:55:0c:1d:de:
77:17:4d:e9:96:b5:a0:94:18:2b:05:d9:db:8a:9c:
ea:65:c0:20:f1:55:32:a4:3b:3f:0f:56:7e:9d:78:
47:6b:c3:05:3f:22:8b:a9:08:76:14:4b:9b:40:11:
92:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:73:F4:CA:54:C8:D6:53:10:AD:54:47:DC:03:68:61:BC:38:AC:04
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/uXP0ylTI1lMQrVRH3ANoYbw4rAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.0.128/29
Signature Algorithm: sha256WithRSAEncryption
5d:2f:07:d1:1e:4c:16:be:ca:91:9b:2c:63:80:0e:f3:50:fb:
1e:66:4a:89:bb:93:db:06:ec:47:0f:01:41:dd:ab:16:42:69:
5f:b3:4e:90:50:3d:98:74:47:79:14:83:6d:2d:53:d5:90:f9:
08:8b:a3:28:64:83:5e:a2:3a:8e:01:94:d7:18:3f:b4:85:f0:
56:30:8b:65:77:64:24:41:72:04:57:27:57:4d:62:ba:1c:37:
83:08:4d:f0:69:aa:3b:69:56:c9:6a:06:f7:ff:36:7e:08:d2:
97:e5:91:76:82:49:4a:79:92:cb:4b:19:f7:5e:e7:4c:7e:f5:
cc:dc:66:aa:56:72:fa:34:ac:f4:68:b2:66:b2:2c:95:25:01:
60:5b:c4:15:fd:d0:ac:30:5e:b1:92:86:73:f4:88:85:9b:58:
cf:8e:f6:6a:c8:38:8a:26:6d:7a:08:2f:66:b9:b9:f1:a5:95:
f7:ec:d4:d4:30:bf:8e:49:79:14:6a:41:9f:34:5d:09:82:06:
05:ae:04:f8:ee:70:cc:d5:92:29:18:c8:09:a7:4e:78:f3:8f:
b8:f8:32:89:45:cd:05:f2:1c:92:7d:6c:d9:77:e6:79:5c:32:
2d:49:83:fe:ce:32:c4:f7:81:97:a5:7a:7d:93:40:4c:83:3c:
22:32:7b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:09:33 2025 by rpki-client