Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/6uprobPe5l8fYq5rBr_E3o9f6dk.roa
File: 6uprobPe5l8fYq5rBr_E3o9f6dk.roa (raw, json)
Hash identifier: VbdDWgUzysQvB9R7Uma//EttaoBYOQZhptLLuMYolcE=
Subject key identifier: EA:EA:6B:A1:B3:DE:E6:5F:1F:62:AE:6B:06:BF:C4:DE:8F:5F:E9:D9
Certificate issuer: /CN=db9af91e9eb15b676a96f0af654cc03288154a1a
Certificate serial: 01856243FF023672994E7182818B6DFB95D8
Authority key identifier: DB:9A:F9:1E:9E:B1:5B:67:6A:96:F0:AF:65:4C:C0:32:88:15:4A:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25r5Hp6xW2dqlvCvZUzAMogVSho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/6uprobPe5l8fYq5rBr_E3o9f6dk.roa
Signing time: Fri 30 Dec 2022 09:01:41 +0000
ROA not before: Fri 30 Dec 2022 09:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198917
IP address blocks: 193.242.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:43:ff:02:36:72:99:4e:71:82:81:8b:6d:fb:95:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9af91e9eb15b676a96f0af654cc03288154a1a
Validity
Not Before: Dec 30 09:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaea6ba1b3dee65f1f62ae6b06bfc4de8f5fe9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:25:73:c7:ec:cd:8a:ba:7c:00:ca:ed:c9:b5:
5e:84:04:72:5f:f7:04:60:3f:ea:16:a6:28:0c:61:
1a:ab:7c:54:f5:f5:94:0e:0a:5b:86:2f:11:e2:1b:
d3:78:f0:56:36:de:19:36:dc:f9:b9:91:bf:f9:a5:
31:5c:aa:f1:7d:8e:b7:5c:32:42:18:1b:21:db:31:
28:7a:cd:ca:9e:d3:80:2a:01:ee:f3:69:1a:3d:76:
0a:48:f2:9b:5a:78:c6:7e:30:af:f4:59:cd:1b:2e:
93:f0:79:13:35:02:41:e8:80:06:d8:ca:b0:9f:7f:
32:68:1a:26:b7:24:d8:dc:27:ea:46:38:75:23:11:
61:01:9f:5a:31:67:fc:1d:93:65:f3:b0:6b:81:9b:
4a:22:00:34:63:b2:03:56:29:54:82:06:e2:2b:9d:
2c:c1:12:11:d7:e7:fc:2d:1f:94:ea:48:7c:7f:6d:
96:86:0f:81:97:80:a7:8a:c3:0b:39:51:37:f4:0d:
07:92:34:d3:bb:b9:4a:fb:b2:24:dc:01:70:c3:c8:
72:bd:1a:86:d3:ef:85:84:1a:7f:d1:85:4e:8a:34:
a2:28:b1:b6:0d:f1:ff:c5:e4:9e:24:4c:fa:ce:37:
c2:82:fd:8a:2b:8e:33:9d:0a:20:f0:86:06:20:12:
0c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EA:6B:A1:B3:DE:E6:5F:1F:62:AE:6B:06:BF:C4:DE:8F:5F:E9:D9
X509v3 Authority Key Identifier:
keyid:DB:9A:F9:1E:9E:B1:5B:67:6A:96:F0:AF:65:4C:C0:32:88:15:4A:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25r5Hp6xW2dqlvCvZUzAMogVSho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/6uprobPe5l8fYq5rBr_E3o9f6dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/25r5Hp6xW2dqlvCvZUzAMogVSho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:35:47:65:14:f0:bb:21:0e:38:18:4b:99:3c:55:ba:36:ec:
62:38:8c:d3:90:90:cb:df:91:c5:fc:a3:45:f1:e2:2f:0a:5f:
fb:94:3c:e8:4f:5c:52:f9:92:2c:93:a4:82:ba:e8:2d:4e:59:
14:52:57:d5:89:d3:9e:77:c4:a2:89:96:08:91:31:38:76:e2:
ca:60:8b:62:24:40:b4:d3:86:a0:47:4a:74:47:20:c6:5f:7b:
5a:86:3c:ee:b1:88:fa:fd:02:fb:ab:f4:4e:27:fa:c6:46:4c:
0c:34:51:ac:c0:5b:a1:97:d8:b7:ed:11:23:77:5c:04:b2:5b:
60:de:18:25:d1:06:fb:7a:45:e7:15:1c:86:14:c1:ae:c2:4a:
ed:72:fe:9a:43:40:c6:12:40:49:bb:3b:3a:45:f0:a2:74:5d:
d6:f4:fb:a7:43:3c:db:fb:e3:8e:d9:e9:73:66:2c:1d:ab:bb:
1c:b3:fe:67:d8:d3:d0:28:fe:df:2e:3f:12:70:34:92:fd:9f:
e0:93:d0:1b:63:ec:49:0c:f4:8d:8f:3a:b1:b5:b3:17:34:83:
7b:e4:f2:9f:d7:c4:da:4e:6f:94:07:aa:6c:0a:21:fe:a7:e5:
c9:91:ce:3b:14:65:43:50:80:23:87:9b:db:2a:f4:84:55:c5:
ba:09:ad:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:03 2025 by rpki-client