Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/I5u9kUebW2PHJnd6prqHUInF5Uc.roa
File: I5u9kUebW2PHJnd6prqHUInF5Uc.roa (raw, json)
Hash identifier: 58NoCk0X5SIkV/cp5YDQtTWjTyNMg4nSS6dKfHk9pCY=
Subject key identifier: 23:9B:BD:91:47:9B:5B:63:C7:26:77:7A:A6:BA:87:50:89:C5:E5:47
Certificate issuer: /CN=230e9ac64510fa391846bb139ab52b8001d58038
Certificate serial: 040CCDDF
Authority key identifier: 23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/I5u9kUebW2PHJnd6prqHUInF5Uc.roa
Signing time: Tue 05 Apr 2022 06:09:28 +0000
ROA not before: Tue 05 Apr 2022 06:09:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21458
IP address blocks: 193.30.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67947999 (0x40ccddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230e9ac64510fa391846bb139ab52b8001d58038
Validity
Not Before: Apr 5 06:09:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=239bbd91479b5b63c726777aa6ba875089c5e547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1f:7d:18:c9:ca:79:1f:c5:d0:7a:dc:1c:1c:
0a:d0:f9:c0:5a:97:e0:83:4c:28:44:28:1c:05:41:
16:ad:62:0b:4b:51:7a:fe:07:27:60:f5:5d:a0:18:
cf:f7:59:fb:d6:39:10:b8:f8:ca:a1:0a:cd:d5:95:
c3:20:cc:12:6a:23:95:5d:b1:49:e4:61:35:f4:2b:
80:17:d0:68:ce:e7:1e:db:0d:dc:40:4d:74:32:f0:
f2:09:ad:73:10:0f:7b:c7:3e:4b:7c:56:88:12:bd:
f8:77:49:47:53:22:eb:71:d6:85:be:f5:12:83:ca:
25:d3:48:26:93:8c:f8:9f:01:70:99:27:c1:33:fa:
00:8c:36:b9:10:a9:94:22:36:95:15:64:aa:8a:e4:
a7:e4:c8:b3:54:d4:e3:5e:88:5d:17:9e:16:98:49:
fa:50:da:be:f7:09:aa:60:ad:dd:ce:aa:ff:b9:83:
c1:be:19:6e:07:aa:30:c8:39:03:a2:f1:8d:92:e6:
9b:f6:35:3c:33:81:fa:e6:61:23:cb:26:e2:7f:d6:
2b:24:97:fa:a4:dc:ec:2e:d6:8f:2c:08:bb:76:3f:
3e:23:9f:97:b7:92:4b:cf:f3:86:6a:96:68:81:78:
2a:a7:00:2c:a9:a8:e5:00:c0:94:4f:24:47:6c:9b:
f4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9B:BD:91:47:9B:5B:63:C7:26:77:7A:A6:BA:87:50:89:C5:E5:47
X509v3 Authority Key Identifier:
keyid:23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/I5u9kUebW2PHJnd6prqHUInF5Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.140.0/24
Signature Algorithm: sha256WithRSAEncryption
70:41:32:a8:b9:62:53:8e:14:2f:99:37:98:72:7d:33:c8:05:
12:fb:f2:3a:f8:6b:ac:18:d6:21:4a:55:8e:d1:58:b9:ed:ef:
a6:fc:7e:9f:fd:22:c8:eb:13:9b:14:1d:a9:71:21:1e:0b:f7:
d0:8a:97:a4:11:d4:51:41:43:a2:a5:f5:bb:49:7b:9c:31:e8:
e6:a7:24:6d:d1:75:ee:26:29:f8:4b:25:f9:83:74:e2:1d:02:
4a:4a:a0:30:57:ec:3a:5d:e6:b7:fd:04:f3:48:d2:f9:5f:04:
12:b9:9e:71:14:50:d2:63:06:b9:12:2d:91:f0:5a:b0:31:24:
90:87:4f:58:ff:a6:51:1e:53:58:ea:1b:8f:06:4c:85:c4:ed:
52:23:4f:9e:ae:20:90:e4:cf:54:e9:63:77:22:8a:eb:5c:7c:
54:f9:2f:93:ea:9e:a5:b5:99:02:41:9f:26:61:3d:47:7c:1b:
33:a2:29:cd:40:9e:b4:43:90:3a:18:9d:f1:22:9c:e2:76:8d:
03:89:f4:00:87:72:b4:7e:c9:c4:fc:67:69:c6:b6:9d:23:56:
38:b1:6b:e9:4a:73:71:b8:f8:99:4c:5c:e5:7e:ca:d5:0d:63:
e4:ee:20:f1:72:47:5c:f9:bc:fc:61:1e:45:46:e3:3e:5c:d8:
bb:3b:af:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:13 2025 by rpki-client