Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/k02-8OBnoI5WFZ5IpmVfKMElHZ8.roa
File: k02-8OBnoI5WFZ5IpmVfKMElHZ8.roa (raw, json)
Hash identifier: 7k6ErN5kS8jya4riYQZsjpSCBcdz5HjNlTP8vFZh8A0=
Subject key identifier: 93:4D:BE:F0:E0:67:A0:8E:56:15:9E:48:A6:65:5F:28:C1:25:1D:9F
Certificate issuer: /CN=6ffa59013a3af03f7c96c24e68d95e181a0305a8
Certificate serial: 01856E8B2A03BB6BA6F3F571688F0ADBF2AC
Authority key identifier: 6F:FA:59:01:3A:3A:F0:3F:7C:96:C2:4E:68:D9:5E:18:1A:03:05:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_pZATo68D98lsJOaNleGBoDBag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/k02-8OBnoI5WFZ5IpmVfKMElHZ8.roa
Signing time: Sun 01 Jan 2023 18:14:52 +0000
ROA not before: Sun 01 Jan 2023 18:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210222
IP address blocks: 193.176.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:2a:03:bb:6b:a6:f3:f5:71:68:8f:0a:db:f2:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffa59013a3af03f7c96c24e68d95e181a0305a8
Validity
Not Before: Jan 1 18:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=934dbef0e067a08e56159e48a6655f28c1251d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:7b:93:30:85:87:f7:94:35:6c:c3:3f:94:76:
50:b7:a2:e2:50:a7:dc:09:56:fe:bc:a3:89:14:73:
2d:03:34:8e:03:e9:cd:33:3e:2b:b0:1e:9f:57:a2:
6b:83:97:be:59:72:67:30:b1:5c:9e:73:79:19:56:
cc:e3:a3:6d:56:23:9c:b5:82:93:7f:c4:3e:2d:ff:
04:0e:62:a1:af:d4:31:b4:b4:5b:e3:54:a6:d0:7d:
2a:d2:5e:34:57:e4:88:c7:26:64:c2:91:23:e8:39:
1e:d1:95:9c:de:42:6f:4a:c9:27:b2:7a:04:3e:7d:
17:9f:87:fb:a8:af:c1:af:63:7c:ad:b2:c0:d1:ff:
2f:a7:99:35:82:ad:76:94:9e:20:9a:ff:4a:95:e0:
2e:d0:c6:18:82:dc:ef:76:cd:5d:98:eb:e1:a9:69:
51:d2:e6:4b:d9:39:2b:c1:5c:51:dd:a8:34:bb:5f:
06:b4:62:3c:62:c4:43:74:f6:5a:e6:b6:f1:66:b3:
e5:02:5d:7d:36:a3:b1:1a:59:4e:28:8a:fc:b3:57:
0e:bc:3d:a8:eb:e6:aa:26:73:a8:b5:76:56:2e:20:
86:96:9f:77:45:cb:cc:ce:3b:de:48:2e:95:5c:c0:
62:44:43:75:27:b5:ef:09:ff:1d:de:ae:b1:17:01:
3f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4D:BE:F0:E0:67:A0:8E:56:15:9E:48:A6:65:5F:28:C1:25:1D:9F
X509v3 Authority Key Identifier:
keyid:6F:FA:59:01:3A:3A:F0:3F:7C:96:C2:4E:68:D9:5E:18:1A:03:05:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_pZATo68D98lsJOaNleGBoDBag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/k02-8OBnoI5WFZ5IpmVfKMElHZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/b_pZATo68D98lsJOaNleGBoDBag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:58:58:8a:5b:8e:c3:50:df:4d:54:17:2c:c4:be:55:8e:16:
96:91:16:bc:59:47:2c:e0:95:42:56:eb:61:ac:14:8f:cc:2d:
5a:f9:ab:fc:f9:fb:9a:ce:30:5e:b7:23:72:94:fa:0b:c8:12:
b7:af:07:cc:44:1e:49:3a:e3:fb:b4:28:46:f8:7f:de:06:b6:
ef:10:47:5d:41:38:a5:24:aa:e9:63:ca:e1:d4:b2:6e:5d:95:
65:9e:6e:b5:2f:13:6e:f0:28:8e:d2:d9:8a:88:ff:3e:4c:2e:
9e:92:f4:65:9b:f6:88:12:ce:48:ba:08:f0:3b:70:eb:de:79:
dc:8f:01:94:58:24:c8:d4:9f:98:32:3b:6e:45:3c:f4:8f:2a:
b7:e8:7a:03:33:58:8e:6b:16:1a:2f:98:de:d4:96:f1:1c:5e:
57:6b:8e:a8:18:eb:f1:d0:e9:76:3e:8d:80:99:41:f2:12:6a:
07:d7:58:7b:26:5b:65:77:30:3e:ac:2d:4c:eb:bd:42:49:9e:
ed:66:33:3d:a8:0b:78:ed:d7:95:4e:db:b8:3f:53:c5:46:e8:
26:a0:9b:ad:da:d4:bd:12:6e:9d:88:55:1f:98:9b:ae:e8:cc:
fc:87:e9:58:26:14:94:a8:aa:3e:28:f8:4b:0d:27:f2:97:cb:
d5:7c:82:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:04:14 2025 by rpki-client