Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/4Qihj2Qu6EHo1uE19KU-_e7tiEI.roa
File: 4Qihj2Qu6EHo1uE19KU-_e7tiEI.roa (raw, json)
Hash identifier: SWZVAFDQxEsA5hK5FOYrQfvlECtlA9w7MCXLj5Wt9Rk=
Subject key identifier: E1:08:A1:8F:64:2E:E8:41:E8:D6:E1:35:F4:A5:3E:FD:EE:ED:88:42
Certificate issuer: /CN=677d4ea2c016ce2797af7aeb737d132875669f12
Certificate serial: 0183A8B8989A1CB34A0F5450FFB12314DFB6
Authority key identifier: 67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/4Qihj2Qu6EHo1uE19KU-_e7tiEI.roa
Signing time: Wed 05 Oct 2022 15:16:53 +0000
ROA not before: Wed 05 Oct 2022 15:16:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59554
IP address blocks: 193.160.93.0/24 maxlen: 24
193.160.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a8:b8:98:9a:1c:b3:4a:0f:54:50:ff:b1:23:14:df:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=677d4ea2c016ce2797af7aeb737d132875669f12
Validity
Not Before: Oct 5 15:16:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e108a18f642ee841e8d6e135f4a53efdeeed8842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fc:4d:5d:fe:dc:d6:a1:f9:a3:25:a3:b4:83:
a0:a0:e2:91:fe:f8:74:b5:5d:5c:93:23:ae:1a:34:
6a:6d:92:93:90:5b:5f:93:f1:f0:ce:bb:21:e7:c3:
44:32:99:e0:1e:dc:da:23:4b:b9:7d:53:22:4a:05:
e2:4a:4c:1a:a0:47:83:22:72:62:c9:ed:5c:f2:06:
24:f5:84:1e:86:41:f0:aa:e7:1b:07:4d:d6:b6:68:
d9:c8:68:7c:20:9d:4d:47:ee:3b:25:e8:4d:ab:25:
df:54:93:2c:97:fe:84:85:07:21:1d:75:06:f7:08:
66:8c:2d:de:ee:6c:2b:10:4b:9f:92:7b:b4:04:fe:
37:af:b4:10:cf:46:16:32:f7:63:76:f8:05:14:c7:
55:6e:cc:a8:97:c9:b7:3a:6f:59:49:c9:ca:82:fc:
c6:42:5a:88:25:52:cc:98:36:70:d7:f7:08:d9:2a:
38:df:a0:55:9c:67:b6:73:fe:76:f4:eb:34:22:50:
3c:99:d1:cf:fb:08:0b:88:e6:6f:aa:52:16:b7:c5:
92:98:dd:1b:cf:05:3c:e4:d7:24:fc:b8:72:64:cd:
1d:6c:fa:2c:0a:f6:ee:50:f9:04:81:c4:f3:49:fa:
77:b4:f6:be:f1:44:e5:b2:b4:b7:71:d2:17:94:f8:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:08:A1:8F:64:2E:E8:41:E8:D6:E1:35:F4:A5:3E:FD:EE:ED:88:42
X509v3 Authority Key Identifier:
keyid:67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/4Qihj2Qu6EHo1uE19KU-_e7tiEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/Z31OosAWzieXr3rrc30TKHVmnxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.93.0/24
193.160.95.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:07:44:82:63:9c:af:62:51:56:a5:5b:e0:53:31:7d:b6:b4:
ce:8e:f3:95:cf:96:cb:ba:66:94:1d:b3:8d:49:03:de:3c:b7:
be:2b:f4:55:0e:8d:e2:f6:f1:d0:e1:b8:01:59:81:c2:c4:c5:
02:ea:cf:84:47:ed:43:82:20:1a:6a:aa:57:ae:0f:c4:46:42:
b1:2c:e9:1c:c6:8c:c6:62:80:f7:1a:d2:d7:a3:3d:71:b7:18:
6d:c2:66:7d:a4:53:72:04:c3:91:82:7a:cd:5f:73:51:e8:53:
79:ee:ad:4a:90:e8:84:a5:79:65:bd:35:17:61:26:55:13:93:
04:68:37:21:65:f2:33:0b:f2:8d:f4:e2:44:ba:07:bf:85:ad:
17:1a:30:4a:ad:54:ef:52:fd:31:29:f5:88:e9:dd:15:26:17:
ea:42:b0:34:86:42:4f:d2:3c:9b:33:d1:9f:b1:33:12:ab:c0:
e7:59:4b:02:e1:48:ec:13:7d:45:51:65:d9:b7:a8:86:a2:a4:
25:64:60:f9:34:ac:f8:46:6d:a4:8d:1b:e4:4b:bf:90:16:06:
4c:80:7f:66:51:d2:9d:eb:75:6c:fd:c1:87:e8:39:4f:54:58:
f2:28:9e:7c:27:04:3f:6f:4d:e9:1e:ca:a3:9e:04:08:47:4c:
66:5f:98:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:36 2025 by rpki-client