Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7OJUnpw5QsNBzLsYJ1mHZRkoP2E.roa
File: 7OJUnpw5QsNBzLsYJ1mHZRkoP2E.roa (raw, json)
Hash identifier: 2b5aW8hNSMUfJLg0H6C7+R00fDHwp4GOcOig+zHzi6M=
Subject key identifier: EC:E2:54:9E:9C:39:42:C3:41:CC:BB:18:27:59:87:65:19:28:3F:61
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C90FC5C67489E582453464534902F7E14
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7OJUnpw5QsNBzLsYJ1mHZRkoP2E.roa
Signing time: Fri 22 Dec 2023 10:05:06 +0000
ROA not before: Fri 22 Dec 2023 10:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47757
IP address blocks: 194.120.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:fc:5c:67:48:9e:58:24:53:46:45:34:90:2f:7e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 22 10:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ece2549e9c3942c341ccbb182759876519283f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:c2:07:15:92:80:37:86:7e:a4:4d:16:c4:
51:ba:ab:c7:0c:4f:15:a3:44:56:2b:c1:79:6d:58:
7d:98:6b:7a:67:1e:4a:13:f0:af:24:5b:bf:a4:b4:
ab:bf:e8:87:a2:05:62:4e:98:b3:f3:0b:dc:27:b9:
b5:50:0a:90:48:4c:90:f4:c7:4a:c2:35:d3:91:dc:
06:14:af:f8:55:15:d3:3b:4e:60:f9:9c:fc:ab:30:
b6:d3:66:eb:b8:e8:f2:12:98:1e:fb:e9:e1:dd:bf:
4e:3b:02:6c:32:9a:11:5f:96:e0:84:31:45:cc:35:
fb:0f:75:23:3d:14:00:03:13:88:50:68:f9:83:6b:
e0:af:dd:3f:00:cf:f3:ed:d5:a5:50:c1:3c:e7:ce:
da:c8:09:71:cc:46:4b:d6:79:5c:6c:37:17:17:25:
c3:58:79:a6:68:6f:92:94:ad:f7:b9:4e:7d:8d:cb:
ff:09:c0:f3:a5:a3:cb:e1:14:90:01:06:44:6f:1a:
03:96:3f:76:46:2f:f1:c0:2d:05:f9:bf:24:e2:33:
05:97:06:4c:0f:65:4c:4c:b8:45:8a:bb:f2:d4:37:
e4:f9:a9:92:54:47:97:66:bd:33:ac:bb:2f:3c:44:
17:2b:35:67:3a:81:61:1c:55:2f:02:1f:36:81:b8:
7b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E2:54:9E:9C:39:42:C3:41:CC:BB:18:27:59:87:65:19:28:3F:61
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7OJUnpw5QsNBzLsYJ1mHZRkoP2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.164.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c9:7b:9f:b8:4d:2d:3d:0b:d0:b9:0d:7f:97:d7:43:db:72:
38:51:ea:45:01:df:00:d5:f4:91:71:09:87:f8:58:a6:d6:82:
a1:da:0d:e8:ba:97:79:22:2a:6f:26:60:3c:8c:26:3b:b7:1a:
a2:77:a6:c1:ac:e5:c9:9b:a7:29:c6:6e:eb:9c:4a:0a:f9:17:
68:08:b9:0d:1f:55:6c:af:69:b8:46:83:c7:d9:67:78:74:55:
27:e5:01:13:e4:c4:29:d5:c9:46:8c:6b:4e:87:3a:d2:cf:f2:
59:9b:c7:ff:12:9a:04:7c:48:03:47:ab:93:f4:38:73:93:13:
bb:ca:52:85:a8:4f:a9:84:80:07:ae:23:d5:d8:dc:b2:fa:c3:
21:36:d5:19:b7:ed:10:11:9b:d1:9b:0c:3e:f2:1d:b7:e7:01:
b6:80:1f:06:70:f2:50:f4:1d:06:dc:1b:a8:b9:7b:85:40:fc:
b9:59:a5:8e:e3:28:95:cc:6d:35:f8:86:31:76:2a:93:a2:a9:
b1:cd:09:b4:ee:e0:df:fd:0d:a4:42:98:63:c1:0f:f4:d8:8e:
44:0f:fb:32:aa:f3:16:ad:e7:00:3e:91:2a:16:cd:92:b1:04:
7c:06:89:72:99:04:d5:5e:1d:0f:56:b8:c0:d6:37:1d:f7:cf:
c1:76:17:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:07 2025 by rpki-client