Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3bd59a-2d0c-4093-913a-fe36ceda6316/1/LSFdF24foIKMyY7PrU3aKO19bic.roa
File: LSFdF24foIKMyY7PrU3aKO19bic.roa (raw, json)
Hash identifier: e3jF99isK7XnfnCeU7FyzZCYFjkJ8xE125C2xlSAJrk=
Subject key identifier: 2D:21:5D:17:6E:1F:A0:82:8C:C9:8E:CF:AD:4D:DA:28:ED:7D:6E:27
Certificate issuer: /CN=48519673dd0a9cf57895520af37c2a8183dce168
Certificate serial: 021F295F
Authority key identifier: 48:51:96:73:DD:0A:9C:F5:78:95:52:0A:F3:7C:2A:81:83:DC:E1:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFGWc90KnPV4lVIK83wqgYPc4Wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3bd59a-2d0c-4093-913a-fe36ceda6316/1/LSFdF24foIKMyY7PrU3aKO19bic.roa
Signing time: Sat 01 Jan 2022 04:52:51 +0000
ROA not before: Sat 01 Jan 2022 04:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50628
IP address blocks: 193.202.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35596639 (0x21f295f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48519673dd0a9cf57895520af37c2a8183dce168
Validity
Not Before: Jan 1 04:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d215d176e1fa0828cc98ecfad4dda28ed7d6e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5c:15:3c:7c:62:02:c7:df:9c:b2:44:5d:74:
31:20:a7:1c:93:0f:00:44:17:8d:a5:1b:06:76:78:
42:5c:a5:a9:59:e8:b5:f8:ed:30:ff:64:ab:f4:49:
dc:e1:66:8c:24:63:5a:1e:eb:9a:16:23:dd:85:0a:
8d:c4:18:a3:7c:16:69:d0:8d:77:fe:9f:e4:e1:e8:
1e:5f:c5:1e:bf:bb:4d:c0:8b:d8:1c:60:4d:86:87:
19:77:a9:d3:92:f0:2a:95:1e:e6:a9:a7:89:84:df:
12:26:5a:72:cb:22:2b:54:53:77:14:ef:4f:e3:b9:
17:9a:5c:36:3f:f3:6e:fb:67:3f:7c:1f:8a:c1:17:
10:b9:79:26:c0:d7:52:88:fe:ca:14:6a:2e:fa:d8:
70:56:52:95:a1:1c:f0:d1:1c:22:3f:c9:ae:5a:f2:
a8:65:0d:94:65:a2:90:91:63:4d:e0:2e:4f:1f:31:
37:57:a1:14:ac:5b:4c:03:33:cf:db:8f:60:70:8b:
f9:1f:de:1a:35:ff:c9:77:52:4e:e9:ec:50:1c:f1:
8a:78:e2:25:60:88:6d:ed:1b:d3:50:70:8f:8e:e5:
d2:2a:b7:59:e8:ce:a3:a4:63:32:8b:de:b7:f5:1c:
64:6a:89:1b:0a:77:bb:86:22:e7:f9:10:22:3f:1f:
7a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:21:5D:17:6E:1F:A0:82:8C:C9:8E:CF:AD:4D:DA:28:ED:7D:6E:27
X509v3 Authority Key Identifier:
keyid:48:51:96:73:DD:0A:9C:F5:78:95:52:0A:F3:7C:2A:81:83:DC:E1:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFGWc90KnPV4lVIK83wqgYPc4Wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3bd59a-2d0c-4093-913a-fe36ceda6316/1/LSFdF24foIKMyY7PrU3aKO19bic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3bd59a-2d0c-4093-913a-fe36ceda6316/1/SFGWc90KnPV4lVIK83wqgYPc4Wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.0.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c4:c8:92:f5:0b:c9:37:6a:2d:91:29:d4:c4:52:7b:4c:5f:
e7:02:49:db:a7:20:03:45:e8:26:a5:39:1d:b8:f4:28:44:5f:
6a:92:1f:7c:fe:be:f1:b1:6f:9e:1e:46:e7:80:7b:33:23:dc:
31:26:f5:fe:a2:f3:a2:8a:3f:e8:43:b8:07:67:18:46:4c:24:
73:f2:4f:55:58:0d:d0:8c:0f:0a:7d:33:18:71:55:f0:16:a7:
d4:d4:c6:a3:f0:f6:10:a1:2e:dd:e6:27:67:2d:bd:2e:f8:01:
a5:f3:85:8d:6e:23:d9:5c:41:e8:0f:ce:79:39:99:6c:f3:ef:
7e:cc:ef:60:e0:b4:7c:6f:3b:83:45:c1:ab:81:93:24:c7:4b:
52:81:a8:b9:77:52:c0:48:82:5f:7c:60:54:6b:72:bb:02:51:
c9:14:58:d5:ad:d8:43:30:ad:80:ee:6a:bc:35:8e:9e:03:d2:
fd:08:81:cd:42:0f:48:80:ce:6c:7e:8f:7b:81:22:9c:6b:be:
7c:41:cb:45:86:62:04:65:ec:e2:d1:ec:d2:bb:74:bf:2c:79:
f6:e7:fb:ba:f0:40:bf:9d:06:06:27:62:27:c2:32:e5:29:e7:
42:21:c5:06:58:d9:ba:21:dd:49:e5:91:5a:b1:68:6f:e8:c8:
57:96:87:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:23:08 2025 by rpki-client