Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/fb48fd-4ec5-43f1-93cc-8654786e20a9/1/uP0X36MNlnzpA7J_8_C1i4U18zU.roa
File: uP0X36MNlnzpA7J_8_C1i4U18zU.roa (raw, json)
Hash identifier: oLNWdywJRZ8LoGuQ3Mr79zCqig5TeyoX01oEZroZNuA=
Subject key identifier: B8:FD:17:DF:A3:0D:96:7C:E9:03:B2:7F:F3:F0:B5:8B:85:35:F3:35
Certificate issuer: /CN=6745314516483fe27c0530ccb9707c376d20e7f0
Certificate serial: 01857267CBE0FA658F919620852C7C4CF027
Authority key identifier: 67:45:31:45:16:48:3F:E2:7C:05:30:CC:B9:70:7C:37:6D:20:E7:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0UxRRZIP-J8BTDMuXB8N20g5_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/fb48fd-4ec5-43f1-93cc-8654786e20a9/1/uP0X36MNlnzpA7J_8_C1i4U18zU.roa
Signing time: Mon 02 Jan 2023 12:14:42 +0000
ROA not before: Mon 02 Jan 2023 12:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399668
IP address blocks: 193.3.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:67:cb:e0:fa:65:8f:91:96:20:85:2c:7c:4c:f0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6745314516483fe27c0530ccb9707c376d20e7f0
Validity
Not Before: Jan 2 12:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8fd17dfa30d967ce903b27ff3f0b58b8535f335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6b:0b:63:4e:24:23:ad:e0:f4:07:5a:6b:43:
8e:29:b3:bc:e4:d7:f5:a8:05:45:10:cb:7d:d0:15:
3f:74:e2:86:70:7b:0c:70:86:97:4e:ac:01:94:88:
9d:23:b7:11:eb:4a:d3:0b:82:4c:3f:c5:ca:cf:bd:
19:c5:f0:0c:3d:f7:79:f3:dd:ce:91:5a:8d:87:82:
f5:6e:84:1f:9b:b8:74:67:bb:30:41:21:a8:75:90:
81:92:74:27:a6:94:b7:c3:b4:ee:18:ee:c0:30:19:
a8:7f:36:c8:bc:33:9b:cc:5d:a4:43:fc:ee:7a:37:
fc:e1:2f:83:c4:38:af:47:14:c2:f7:1d:35:66:33:
22:5a:54:e0:98:14:39:97:92:5f:3a:73:14:69:01:
0f:e9:01:a3:72:73:3b:85:53:06:72:98:79:da:04:
37:49:e5:b7:ef:d5:c7:37:d8:77:9c:3b:64:b8:21:
b0:5f:37:46:5c:5d:40:1e:f1:6d:46:ce:2f:64:58:
46:05:9c:14:fe:c4:a0:ae:73:c6:90:bb:40:73:de:
8b:bc:10:40:fe:e9:63:2f:31:dc:90:3b:2b:b6:ee:
4e:70:9d:7c:ca:29:57:63:a3:40:05:89:7a:66:79:
32:85:3a:b4:23:71:78:cb:95:30:c5:80:23:a9:73:
b3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FD:17:DF:A3:0D:96:7C:E9:03:B2:7F:F3:F0:B5:8B:85:35:F3:35
X509v3 Authority Key Identifier:
keyid:67:45:31:45:16:48:3F:E2:7C:05:30:CC:B9:70:7C:37:6D:20:E7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0UxRRZIP-J8BTDMuXB8N20g5_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/fb48fd-4ec5-43f1-93cc-8654786e20a9/1/uP0X36MNlnzpA7J_8_C1i4U18zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/fb48fd-4ec5-43f1-93cc-8654786e20a9/1/Z0UxRRZIP-J8BTDMuXB8N20g5_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.178.0/24
Signature Algorithm: sha256WithRSAEncryption
03:8d:e6:7e:ff:3f:f8:8d:07:6e:51:7a:69:21:c0:5a:a3:db:
e8:4d:1b:55:95:9c:5d:0f:46:24:87:da:88:46:eb:10:be:4e:
c1:de:19:a2:cf:6a:d1:3f:ed:f7:4e:50:46:bd:25:fc:89:18:
f9:e3:71:9c:fa:16:33:15:93:71:db:ab:62:a0:31:8c:37:88:
04:af:53:eb:81:b6:5c:d2:f7:01:4d:00:f4:a4:64:7c:9c:6a:
a7:ac:bc:71:05:26:c7:66:b9:81:dc:1e:ab:6b:e5:2d:69:57:
9a:59:b4:9f:14:44:f7:32:5f:84:d0:9a:5a:bf:33:40:31:91:
67:ca:3d:bb:e7:28:9e:22:48:7d:d7:af:4b:b2:cb:81:0f:fc:
16:10:32:5e:6f:87:8e:68:a8:84:0f:6c:6c:2b:f4:42:f4:b7:
79:1f:f1:65:b0:22:81:2d:71:b3:d0:ee:eb:9d:f7:35:e3:dc:
eb:b9:ae:52:7e:b3:ff:54:b2:19:1a:e4:a9:07:ec:e5:c7:75:
ca:90:4d:fb:3d:53:b7:7b:1d:83:d3:2f:33:d7:3c:06:b5:5e:
24:79:f5:21:06:32:75:3c:81:1d:5f:10:c6:0a:61:97:8a:10:
8b:47:a5:ad:8c:68:a8:5c:eb:92:9e:fc:98:45:dd:47:a2:20:
36:d0:b4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:16:58 2025 by rpki-client