Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/839d1c-4db3-45cc-b04f-b55d7d7f2c48/1/gu7kT4s2yPm3qMcOmxpuiezud9E.roa
File: gu7kT4s2yPm3qMcOmxpuiezud9E.roa (raw, json)
Hash identifier: mzwHnKRrU6IlT50ngGRKYCwxhBhumYfUfEh87857+G0=
Subject key identifier: 82:EE:E4:4F:8B:36:C8:F9:B7:A8:C7:0E:9B:1A:6E:89:EC:EE:77:D1
Certificate issuer: /CN=c35adeebc28d7e27fd9eb9efb23551dae20b1d0f
Certificate serial: 95314B
Authority key identifier: C3:5A:DE:EB:C2:8D:7E:27:FD:9E:B9:EF:B2:35:51:DA:E2:0B:1D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w1re68KNfif9nrnvsjVR2uILHQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/839d1c-4db3-45cc-b04f-b55d7d7f2c48/1/gu7kT4s2yPm3qMcOmxpuiezud9E.roa
Signing time: Sat 01 Jan 2022 00:58:40 +0000
ROA not before: Sat 01 Jan 2022 00:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47951
IP address blocks: 194.104.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9777483 (0x95314b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35adeebc28d7e27fd9eb9efb23551dae20b1d0f
Validity
Not Before: Jan 1 00:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82eee44f8b36c8f9b7a8c70e9b1a6e89ecee77d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:55:a1:b1:44:24:7d:56:85:cc:6a:7c:89:
d9:67:9b:3b:cb:da:a0:74:e9:47:01:99:eb:0b:9d:
14:78:74:38:ac:8a:c6:89:56:4a:76:5c:d1:80:cf:
b1:7b:5b:8d:0e:ca:de:29:9d:4c:92:bd:f2:be:e9:
9e:44:c8:83:9a:99:97:2e:d3:a0:65:4c:ef:1e:66:
40:ec:86:7b:53:e1:95:51:dd:2c:93:78:93:1b:be:
1a:ca:1c:7a:dc:97:8a:86:46:e4:14:99:5b:f8:a3:
e2:23:2d:52:af:d7:5f:8b:24:ae:29:46:e5:45:ab:
ea:cc:29:0a:4d:4f:22:4a:19:4c:d6:b5:06:de:ba:
56:dd:1c:71:72:f0:9c:30:24:ad:d7:92:39:b8:9a:
4b:8c:0a:9e:e7:07:03:50:80:a2:73:e4:ad:ef:b4:
f6:b4:1e:3a:1b:2f:80:1d:81:cb:3c:93:a2:0c:f7:
62:9a:93:47:6e:81:a3:fd:92:55:94:9f:cf:99:f3:
ff:fa:86:4a:06:01:66:66:46:ce:2e:f0:4e:36:06:
3b:56:84:db:d5:f8:c2:53:01:fa:da:f3:28:d1:af:
cd:b6:78:a5:6a:24:a4:1e:26:23:11:41:2e:b1:21:
4a:94:77:04:11:d9:55:33:7f:89:0d:8d:7a:28:49:
c3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:EE:E4:4F:8B:36:C8:F9:B7:A8:C7:0E:9B:1A:6E:89:EC:EE:77:D1
X509v3 Authority Key Identifier:
keyid:C3:5A:DE:EB:C2:8D:7E:27:FD:9E:B9:EF:B2:35:51:DA:E2:0B:1D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w1re68KNfif9nrnvsjVR2uILHQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/839d1c-4db3-45cc-b04f-b55d7d7f2c48/1/gu7kT4s2yPm3qMcOmxpuiezud9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/839d1c-4db3-45cc-b04f-b55d7d7f2c48/1/w1re68KNfif9nrnvsjVR2uILHQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.137.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ab:35:e6:c4:79:5d:a7:21:4c:7c:14:4f:27:6f:ed:26:16:
39:4a:d3:d1:2b:21:db:db:ab:f1:e0:29:0c:13:41:49:be:e5:
07:9a:d4:29:0b:d9:3b:f8:a8:05:9e:20:76:ed:eb:7a:5d:65:
d2:b5:a8:93:3c:ec:a4:c0:4d:ab:01:24:5c:08:d2:79:b6:36:
c5:b8:ae:d0:ca:6c:f7:12:34:3c:71:78:78:db:7d:d5:82:1b:
b1:91:16:a4:60:8e:d1:68:39:fe:80:93:74:f2:3a:94:26:d9:
97:59:da:3e:5a:3e:64:41:87:56:a6:f8:b8:bb:55:68:8c:85:
14:95:fa:5a:5b:c3:29:8b:6b:fb:2f:f2:2d:bb:d0:72:f2:07:
2d:27:64:47:0f:fa:33:3a:89:9b:1b:d4:40:6f:97:a9:d9:fe:
9b:56:ba:a8:fb:5c:08:e6:fb:14:9d:ec:4a:2c:06:72:87:78:
1d:43:2e:33:20:5e:c0:2c:e7:24:71:85:3e:e6:f4:ee:c1:08:
26:e4:b7:34:80:52:bf:16:de:a0:47:8e:40:25:4d:79:cc:64:
48:e4:b3:6e:30:82:55:f7:52:03:c0:02:27:02:b8:e6:8e:ac:
a4:5b:d2:59:c1:ec:06:20:2d:f5:98:87:d6:63:46:26:40:4b:
03:33:d0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:27 2025 by rpki-client