Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/p5DMyjtNnjSiMRYEz7PuLhVi0kk.roa
File: p5DMyjtNnjSiMRYEz7PuLhVi0kk.roa (raw, json)
Hash identifier: FsogQO05JGUUGLHfjtVPw89zjv4HTfOkxYvIf8sOsIo=
Subject key identifier: A7:90:CC:CA:3B:4D:9E:34:A2:31:16:04:CF:B3:EE:2E:15:62:D2:49
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01882BD36221B8917A4E7EDE7D401AC1E817
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/p5DMyjtNnjSiMRYEz7PuLhVi0kk.roa
Signing time: Wed 17 May 2023 22:27:33 +0000
ROA not before: Wed 17 May 2023 22:27:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42372
IP address blocks: 193.33.64.0/23 maxlen: 23
62.205.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:d3:62:21:b8:91:7a:4e:7e:de:7d:40:1a:c1:e8:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: May 17 22:27:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a790ccca3b4d9e34a2311604cfb3ee2e1562d249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e6:8e:fc:49:d3:f9:04:9e:29:7a:34:74:32:
60:e8:4a:46:88:ee:8d:e5:2d:a6:0a:40:2a:2b:55:
e8:ee:8f:a0:5d:d6:12:24:63:bd:e5:0b:98:5f:1e:
ec:e0:0a:fd:dc:e0:ee:04:9c:59:1c:a6:e9:b6:f8:
86:59:ba:ec:66:ca:6f:e9:45:b9:39:37:6b:28:76:
a6:5f:2c:26:a0:2b:0b:ac:33:db:44:25:01:e4:68:
75:f5:57:d2:3d:03:f3:f8:a4:cb:62:46:b6:53:16:
1e:0d:bc:bf:1b:19:2b:62:05:b9:82:b2:82:fe:7f:
97:dd:1d:f4:56:be:53:4e:67:da:85:28:1e:21:ea:
c1:f5:56:dc:b4:a3:8e:19:bf:95:21:b2:a5:e2:bb:
1a:6b:cc:3b:d5:6b:ad:86:ec:cb:1d:18:1a:ed:73:
0b:3a:6e:f2:48:e7:6c:45:0b:5d:5f:9d:27:29:c7:
9b:62:40:8e:f4:1f:33:60:fa:59:a7:4a:c2:08:b0:
28:f3:88:66:a5:85:d4:5e:f0:5a:96:fc:ba:1d:ff:
92:35:8d:1e:46:73:8f:41:02:c1:84:33:b5:a9:11:
8f:00:91:d7:f6:2a:ff:47:6a:61:67:f0:84:fc:c0:
58:de:57:2c:9a:f9:88:6b:fe:c9:09:3e:3d:a7:99:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:90:CC:CA:3B:4D:9E:34:A2:31:16:04:CF:B3:EE:2E:15:62:D2:49
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/p5DMyjtNnjSiMRYEz7PuLhVi0kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.133.0/24
193.33.64.0/23
Signature Algorithm: sha256WithRSAEncryption
57:7d:e4:2c:18:60:a4:d6:e3:b8:d8:a9:c9:6a:a3:1d:8d:dd:
58:04:8a:75:fd:ee:fd:ce:82:a1:02:b7:d4:25:2b:90:ad:1e:
47:c3:96:45:95:97:f7:37:77:6c:6a:d1:76:a8:29:0d:4b:15:
ad:8f:97:59:d8:56:78:17:1f:7d:27:1e:db:e1:27:10:63:93:
ba:f5:74:ad:30:71:43:78:70:d3:d2:74:7c:e6:b6:69:4c:e0:
1c:92:91:fa:e8:07:36:6e:37:c8:e7:23:14:d3:93:0d:f8:19:
24:a9:bc:c5:8d:aa:9c:18:51:40:16:26:5e:3a:6b:df:dc:07:
9d:58:8f:ad:86:f7:82:e8:0d:f1:8b:fb:4e:3a:5b:cd:09:16:
5e:36:47:aa:d4:45:e9:e7:0a:70:c7:0b:10:e3:26:07:a1:6c:
a4:c2:f0:da:b5:cf:08:8c:7a:bc:f0:ad:51:43:94:b5:72:d6:
27:44:cd:41:0a:8a:6d:c0:3e:11:af:c3:66:cb:39:42:a4:c9:
f9:2e:9f:eb:c3:6d:b0:38:3c:a3:eb:a0:1f:eb:2d:68:e4:6b:
e2:8e:24:36:5e:0e:c3:b0:78:ee:47:ad:bc:6f:30:e4:a9:d4:
5c:72:e6:9f:0d:3c:67:e9:28:d6:6d:85:52:ab:e7:fa:2d:43:
34:d6:b9:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:12 2025 by rpki-client