Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/DjkvprxJ87A-ugJAGcxHOz87K-c.roa
File: DjkvprxJ87A-ugJAGcxHOz87K-c.roa (raw, json)
Hash identifier: VSQPqLZHlrFYEzRGSXWm9M/ms5smuCss170ml0//oQM=
Subject key identifier: 0E:39:2F:A6:BC:49:F3:B0:3E:BA:02:40:19:CC:47:3B:3F:3B:2B:E7
Certificate issuer: /CN=b93ca6fd00327aedf1d4e3275562cae733b4e743
Certificate serial: 0187C6A20D74CA19567D7B0B67C54521AFB0
Authority key identifier: B9:3C:A6:FD:00:32:7A:ED:F1:D4:E3:27:55:62:CA:E7:33:B4:E7:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uTym_QAyeu3x1OMnVWLK5zO050M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/DjkvprxJ87A-ugJAGcxHOz87K-c.roa
Signing time: Fri 28 Apr 2023 06:52:01 +0000
ROA not before: Fri 28 Apr 2023 06:52:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34301
IP address blocks: 195.242.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c6:a2:0d:74:ca:19:56:7d:7b:0b:67:c5:45:21:af:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93ca6fd00327aedf1d4e3275562cae733b4e743
Validity
Not Before: Apr 28 06:52:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e392fa6bc49f3b03eba024019cc473b3f3b2be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a7:00:4a:62:1b:f2:9a:b2:1a:19:29:5b:ae:
93:50:27:a9:55:b9:07:32:3b:89:95:71:13:a3:1e:
97:3b:c8:94:96:c9:17:23:35:98:c5:e2:78:b5:c8:
29:a0:45:60:74:d8:de:84:ce:9a:2f:5d:f4:ea:b7:
76:c2:f3:89:42:7b:e8:45:2f:c0:56:bd:1f:c0:ba:
18:59:98:0a:32:df:b7:81:c6:63:7f:f6:a9:d1:83:
d3:23:36:28:cb:b7:26:39:3e:b6:68:f7:b4:fc:e6:
14:58:64:32:ba:ba:ee:be:73:2b:93:c7:5a:7c:66:
27:7e:10:38:28:ff:64:8b:fd:fd:c7:02:3b:c1:11:
7f:f6:6c:ea:6b:d7:0b:a2:fe:52:d1:bc:d7:20:d9:
ac:50:f5:c2:70:49:93:8c:0e:d2:b8:89:c4:34:a0:
aa:86:8f:87:be:ea:17:42:98:ef:ec:bd:bd:bf:6c:
4b:15:9b:a8:dd:9e:a1:87:5f:ae:cb:b4:9c:0c:ab:
f4:d4:1c:2b:38:81:be:db:a6:20:5d:af:aa:f1:4f:
89:0e:66:e8:97:71:a4:9d:a2:85:8a:c5:29:7c:8d:
a6:8c:1c:6f:ad:70:87:6a:43:ee:bb:57:7d:30:8d:
dd:3f:15:26:19:a4:ec:5f:23:e2:d4:1f:8d:4c:7c:
53:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:39:2F:A6:BC:49:F3:B0:3E:BA:02:40:19:CC:47:3B:3F:3B:2B:E7
X509v3 Authority Key Identifier:
keyid:B9:3C:A6:FD:00:32:7A:ED:F1:D4:E3:27:55:62:CA:E7:33:B4:E7:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uTym_QAyeu3x1OMnVWLK5zO050M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/DjkvprxJ87A-ugJAGcxHOz87K-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/uTym_QAyeu3x1OMnVWLK5zO050M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.88.0/23
Signature Algorithm: sha256WithRSAEncryption
51:8b:0e:a3:f3:91:b7:f6:a7:e8:4b:31:9f:1f:ae:b6:7a:bd:
cf:48:d9:f1:21:3b:0f:bf:2f:44:cc:58:4c:37:ee:c0:c1:ef:
f5:9c:51:9e:a7:26:81:4b:ca:b5:9b:9f:27:78:cd:24:49:e5:
2a:4b:14:3b:04:77:c3:87:e1:f6:48:3d:f4:85:b3:24:5a:0c:
47:11:91:e5:50:ae:d0:1e:98:42:22:f3:c2:cc:49:e8:3a:aa:
52:ef:e0:65:c7:3d:b4:a6:37:51:ed:35:75:cd:a6:03:13:f8:
f8:38:36:9f:3f:a4:d4:f0:c3:fe:52:70:30:a5:89:53:8c:99:
eb:c9:52:d1:d7:74:16:be:69:82:df:1b:7a:4d:ec:bf:41:de:
e3:f2:13:2e:3c:02:9a:90:f6:6c:d5:9f:40:25:7e:8f:01:36:
87:c6:27:2b:c5:46:12:99:e6:55:32:e0:d5:6d:04:44:a0:bf:
cc:c0:81:c0:9d:cf:36:d7:57:2e:5a:0d:d8:b4:0a:9e:f5:0b:
9f:f6:d9:00:74:83:85:bd:4e:54:33:8a:86:ed:50:61:d4:5c:
12:aa:08:cf:2a:3d:36:44:f3:ff:3f:12:06:a6:99:69:7c:65:
cf:01:a7:72:06:a4:1a:da:83:46:91:8d:c7:93:32:8d:4f:26:
20:aa:45:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:53 2025 by rpki-client