Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/mtObdE52qasZvbty5Pk-6oEGqdE.roa
File: mtObdE52qasZvbty5Pk-6oEGqdE.roa (raw, json)
Hash identifier: Je6trk35TBaUB49iWrysCwBIS1pNuNQuifcB39Gnjpc=
Subject key identifier: 9A:D3:9B:74:4E:76:A9:AB:19:BD:BB:72:E4:F9:3E:EA:81:06:A9:D1
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018529DD49159689071974A4525652003AFF
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/mtObdE52qasZvbty5Pk-6oEGqdE.roa
Signing time: Mon 19 Dec 2022 10:10:46 +0000
ROA not before: Mon 19 Dec 2022 10:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3291
IP address blocks: 194.158.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:dd:49:15:96:89:07:19:74:a4:52:56:52:00:3a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Dec 19 10:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ad39b744e76a9ab19bdbb72e4f93eea8106a9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:39:dd:04:37:75:05:10:5f:c5:55:0c:1d:bd:
d8:b3:0c:0b:5a:9d:cf:a6:70:f5:f0:70:36:45:3f:
02:31:96:22:f0:96:fd:64:8c:e8:90:9a:43:fd:ff:
10:d8:77:f8:a3:53:91:ff:51:c7:43:04:ec:0f:12:
32:ac:d8:54:f4:06:9a:28:ee:3a:c2:d2:15:82:fa:
bf:c3:ab:c7:e3:ee:70:d1:e8:07:ca:3c:6b:6c:5b:
7e:de:04:b0:fb:99:d3:97:aa:85:37:24:62:cb:07:
9f:16:3d:4b:54:56:20:97:4e:a2:b2:dc:3d:d5:51:
56:21:9d:44:8f:15:37:79:01:b9:b8:9e:75:dd:c2:
ac:5d:e3:e1:e8:94:38:db:c7:8c:95:3c:30:c6:9d:
30:de:d9:eb:6f:77:ee:7e:2a:b4:37:45:db:5c:5b:
31:a7:d5:bb:3e:9d:f4:08:ba:97:08:a6:68:94:08:
19:ab:45:db:21:96:1d:a2:13:6a:df:fc:c4:0a:a1:
3f:db:15:c1:68:6b:b2:9d:b9:95:89:69:7c:0d:8b:
4f:9c:b5:78:b4:e1:ae:20:91:00:c0:a2:ae:f7:2d:
e2:9b:a0:b6:ac:6e:eb:16:b8:ee:21:34:ea:e7:92:
89:6a:fe:de:3e:84:c2:e2:92:69:53:8a:25:eb:36:
ca:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:9B:74:4E:76:A9:AB:19:BD:BB:72:E4:F9:3E:EA:81:06:A9:D1
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/mtObdE52qasZvbty5Pk-6oEGqdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.158.26.0/24
Signature Algorithm: sha256WithRSAEncryption
55:43:34:fe:55:6b:8e:e2:a5:8a:6a:2d:a7:29:ed:55:db:92:
f1:a5:b5:7b:5a:79:42:9a:52:e7:f6:1c:4c:58:2d:ee:f1:33:
a1:a3:e3:95:b4:1c:01:a1:33:19:af:de:4c:33:a9:68:94:b1:
ce:a6:be:7b:77:9b:0d:83:5f:db:7c:16:36:c6:1a:91:1b:07:
89:bd:ea:66:e8:49:3e:3b:65:b3:1b:ad:28:e9:1b:b1:36:80:
aa:2d:18:08:60:2e:b4:11:02:a2:07:a7:0b:68:4b:ab:46:69:
80:a7:a4:23:eb:79:27:e3:ca:b9:b5:d7:2f:ba:7a:2a:79:fa:
4f:ca:46:69:6c:28:6b:66:aa:17:9c:8c:17:3b:9f:a8:72:0f:
a1:00:d3:a0:12:22:47:ee:3a:67:02:6f:c9:a7:81:f6:94:6e:
80:e8:d5:e3:96:2a:de:69:dd:9a:9c:62:65:d2:f6:f6:52:7d:
d4:29:42:fa:8f:23:6a:7b:30:32:6a:02:25:19:02:5b:38:95:
b7:59:29:ff:b2:df:5d:87:07:04:97:91:ea:07:82:d6:55:14:
cc:e4:93:72:42:f7:c2:fa:5a:f6:a4:05:c1:d3:27:b9:85:e2:
d8:85:62:61:6a:d2:1a:a0:38:aa:fe:d6:ca:6d:7c:51:e3:fb:
02:bd:11:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:03 2025 by rpki-client