Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/_8g-AvARnk73tgRJy4rsZJZBEDU.roa
File: _8g-AvARnk73tgRJy4rsZJZBEDU.roa (raw, json)
Hash identifier: 3KM0fZClwv0ssrdnLLslBRPJI7BK+hXl+IsWEcHo9rY=
Subject key identifier: FF:C8:3E:02:F0:11:9E:4E:F7:B6:04:49:CB:8A:EC:64:96:41:10:35
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0182CFCCB583B7096AEB2EA243A38FD375AA
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/_8g-AvARnk73tgRJy4rsZJZBEDU.roa
Signing time: Wed 24 Aug 2022 12:21:15 +0000
ROA not before: Wed 24 Aug 2022 12:21:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149457
IP address blocks: 193.107.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cf:cc:b5:83:b7:09:6a:eb:2e:a2:43:a3:8f:d3:75:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 24 12:21:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffc83e02f0119e4ef7b60449cb8aec6496411035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9a:d8:92:43:7c:0d:24:9d:18:fa:f9:9a:68:
f2:41:48:53:6e:0a:b9:45:3d:c3:29:4a:df:d1:c4:
2a:7f:0e:cc:fb:52:39:b7:71:bd:14:9a:3a:ce:be:
3e:d5:66:85:81:b0:b6:0d:08:9a:65:0c:20:4f:e0:
c0:42:eb:71:09:9d:98:44:20:f3:37:8d:d7:45:5a:
d5:27:07:39:73:a9:d4:0d:60:77:14:3b:d9:4a:72:
50:13:80:a1:25:4d:04:df:d8:6c:8e:b9:8a:cd:3b:
f7:bf:cd:0a:9f:77:db:6f:6f:10:ba:38:fb:63:5c:
73:9e:f7:39:80:d5:c6:7d:96:9e:23:76:1c:19:b6:
48:11:d8:06:77:54:51:f9:27:db:6c:2a:69:12:63:
9d:f3:f6:09:df:ca:43:56:31:74:0a:2f:ce:99:a2:
ed:54:71:c1:77:de:2f:0c:de:4c:1b:38:22:fd:0a:
8f:75:33:d3:a1:83:10:c1:2c:54:f4:7b:0e:31:0f:
db:2a:fa:5e:6c:20:50:7a:16:11:33:f6:5a:73:9b:
2a:cf:9a:06:19:9a:40:4a:1e:91:ce:35:b5:f1:e5:
f1:7c:21:14:40:f4:13:33:e3:c8:76:68:20:82:46:
1e:1a:b4:82:06:1c:c7:d3:43:0d:77:69:b3:d5:68:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C8:3E:02:F0:11:9E:4E:F7:B6:04:49:CB:8A:EC:64:96:41:10:35
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/_8g-AvARnk73tgRJy4rsZJZBEDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.218.0/24
Signature Algorithm: sha256WithRSAEncryption
60:6f:91:2b:39:2b:ee:64:d2:8b:d3:1d:d5:6b:e1:81:a0:67:
45:73:f3:f9:b0:46:dd:1f:67:5f:4f:8c:75:2f:b1:f9:a6:7b:
17:26:d0:70:85:82:a6:f0:6d:0a:06:d8:b8:73:25:b7:fc:c3:
a3:71:e8:92:62:a2:76:e9:6f:b5:4e:39:40:b3:84:55:4e:4f:
86:b7:6e:3f:36:f8:36:b5:3f:ff:6d:15:28:75:c5:68:a0:67:
80:94:6a:f2:47:f1:89:82:49:7f:58:b6:b2:0d:36:cb:6c:a2:
a3:97:cb:73:44:fe:07:62:c2:42:0e:dc:7f:57:79:ea:d5:8c:
bb:eb:4a:ea:58:48:66:c7:57:fc:4e:19:9a:81:6c:a8:82:b5:
45:e7:4a:5c:b7:6f:c7:97:08:ea:fb:08:69:2b:50:da:8e:95:
8c:1f:d1:95:32:98:68:56:81:5f:dc:3e:29:ae:d6:7e:34:6d:
4e:07:f6:17:a3:28:2e:ac:29:2e:1b:d3:98:d6:14:0e:a0:e4:
d7:49:d8:ad:61:2e:01:02:c7:33:ff:0d:de:37:0b:c2:3c:ab:
ed:6c:f9:47:18:3e:c6:0c:e9:66:29:04:bc:96:46:83:7b:44:
96:29:c2:da:ae:6c:71:18:34:e1:7d:71:bb:4f:c0:89:40:6d:
53:3b:2a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:56 2025 by rpki-client