Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/lD8XTnvwkY16lHtog_tWWmSG6Eo.roa
File: lD8XTnvwkY16lHtog_tWWmSG6Eo.roa (raw, json)
Hash identifier: HF0R08966QYJAeV8ptW8LT6eEIlmc2CkLw4f5yN7hZQ=
Subject key identifier: 94:3F:17:4E:7B:F0:91:8D:7A:94:7B:68:83:FB:56:5A:64:86:E8:4A
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 01DE7D
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/lD8XTnvwkY16lHtog_tWWmSG6Eo.roa
Signing time: Mon 16 May 2022 08:11:38 +0000
ROA not before: Mon 16 May 2022 08:11:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47774
IP address blocks: 193.111.16.0/23 maxlen: 24
194.117.55.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122493 (0x1de7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: May 16 08:11:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=943f174e7bf0918d7a947b6883fb565a6486e84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0c:e0:e9:c3:d5:34:b9:9a:b1:da:41:cf:9c:
3f:40:30:60:5c:99:19:1a:fb:c6:11:a8:a6:9a:dd:
e0:54:09:d4:46:17:9b:da:c8:8f:f2:c1:e4:08:ba:
2d:31:2d:97:23:74:e9:f8:5c:23:e0:87:56:49:0e:
fc:35:ea:58:6e:21:08:07:f4:a6:72:5b:b3:1b:36:
53:e7:42:59:73:4f:66:cd:c1:02:85:61:5d:6a:36:
28:1c:d3:aa:12:95:2f:d7:c3:52:dc:72:37:0e:d0:
84:16:c2:f6:b8:4b:9e:1b:32:69:36:e9:d3:ee:08:
78:5c:8c:b9:29:2d:f2:fd:4a:07:f7:2d:ac:59:96:
df:e8:c3:86:5e:72:5b:0e:08:54:0d:3e:39:7a:ea:
29:d8:2f:ca:2a:d5:68:9e:0b:12:d3:61:7e:a7:9e:
78:40:34:60:ea:fe:a9:67:a0:1c:1b:5d:cf:28:a2:
55:91:6a:66:44:69:01:c5:8a:01:92:d7:ea:94:bd:
c7:5e:53:70:30:8b:ab:0e:5f:2e:b8:4f:a7:2e:c3:
75:35:00:5e:cb:f3:f0:86:81:d9:b1:73:d6:d9:c7:
5c:1b:65:b0:c1:dd:03:f2:64:58:35:03:13:95:3c:
52:c7:78:37:24:a0:85:54:bb:62:c2:2c:ae:c6:9a:
59:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3F:17:4E:7B:F0:91:8D:7A:94:7B:68:83:FB:56:5A:64:86:E8:4A
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/lD8XTnvwkY16lHtog_tWWmSG6Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.16.0/23
194.117.55.128/25
Signature Algorithm: sha256WithRSAEncryption
61:ff:d3:08:ef:e1:58:01:10:02:85:46:0c:57:fd:36:ae:20:
1f:ab:88:a8:29:8b:e6:34:99:f2:10:97:cd:76:f0:eb:8c:c8:
16:04:44:43:85:44:48:41:4e:b7:16:89:c3:c4:46:bf:73:b7:
5b:64:2a:a5:bb:b2:30:1f:aa:02:da:4f:96:17:57:fe:00:58:
2d:b8:2c:b0:15:0b:7c:f9:12:08:b8:ca:37:12:fb:85:42:c3:
3e:e9:5c:8b:03:92:07:f5:e0:f8:b6:5d:ec:c1:83:ec:cf:d3:
52:4c:59:dd:4e:cc:46:1a:ce:00:d8:1e:f9:62:d2:f4:7e:fd:
b9:64:1f:76:8d:d8:30:02:2d:bb:47:65:dc:d2:52:c8:6f:fb:
ea:3b:42:5f:0b:af:85:3c:60:c7:1a:f1:30:19:ac:25:94:1a:
b7:17:dc:ec:13:04:0a:34:ab:28:26:3a:07:50:f5:ef:f0:52:
38:bc:cc:ec:4f:dc:a4:ff:16:bc:a0:2c:24:ed:64:5d:fc:d6:
e7:0a:8e:41:6d:ec:8c:7e:b5:4e:9f:5c:28:4b:78:26:84:b5:
f1:39:ea:a0:28:fb:0c:58:c0:96:0d:56:db:e5:e8:51:59:93:
a9:97:8a:bc:71:f6:55:90:c1:78:c7:cc:c9:8a:bb:4d:f2:5c:
36:09:f3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:51 2025 by rpki-client