Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/63440c-3d43-458f-879e-021f50932156/1/dJT5OQ0xXgJ_vjZ52xSurZCvUHo.roa
File: dJT5OQ0xXgJ_vjZ52xSurZCvUHo.roa (raw, json)
Hash identifier: E4giM+PaCRDPP7zTtm8fznEa16Zo6RcHh9F/WP9IQh0=
Subject key identifier: 74:94:F9:39:0D:31:5E:02:7F:BE:36:79:DB:14:AE:AD:90:AF:50:7A
Certificate issuer: /CN=15286f0225c141d95857fe74646949e75dd96f28
Certificate serial: 018A83A5B69C4BF81540DCBCA0D444DABA1B
Authority key identifier: 15:28:6F:02:25:C1:41:D9:58:57:FE:74:64:69:49:E7:5D:D9:6F:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FShvAiXBQdlYV_50ZGlJ513Zbyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/63440c-3d43-458f-879e-021f50932156/1/dJT5OQ0xXgJ_vjZ52xSurZCvUHo.roa
Signing time: Mon 11 Sep 2023 09:49:50 +0000
ROA not before: Mon 11 Sep 2023 09:49:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 193.8.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:a5:b6:9c:4b:f8:15:40:dc:bc:a0:d4:44:da:ba:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15286f0225c141d95857fe74646949e75dd96f28
Validity
Not Before: Sep 11 09:49:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7494f9390d315e027fbe3679db14aead90af507a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b6:1d:6a:62:5f:51:a0:ab:7f:0f:62:01:b7:
64:9a:17:c5:09:f8:13:bd:13:05:74:93:81:f2:bd:
9c:2f:e5:33:bf:79:62:cc:0c:b2:8e:57:8b:18:2e:
45:a6:2a:40:16:fa:95:b5:33:77:f2:11:b1:5a:9b:
4d:b9:52:c4:54:54:70:8d:0f:fe:8a:14:88:18:43:
af:58:d3:02:8c:36:a6:cb:ee:34:ca:52:dd:59:12:
9a:17:ff:21:50:1c:51:5e:a3:c1:fa:a2:37:65:4f:
b2:c0:7b:ba:48:75:47:a0:e1:e9:cc:78:97:4e:d7:
e3:bd:bf:bb:5e:04:65:bb:4e:32:f4:e8:77:d7:18:
16:50:6c:6e:14:e9:60:b2:7e:ca:8f:90:9e:6d:d8:
c0:52:65:76:05:6d:87:a7:55:ae:66:82:fb:8d:f1:
d5:44:b9:16:e1:03:41:7a:48:72:c7:21:47:f3:27:
ef:e1:64:dc:03:89:99:45:e9:db:95:c1:db:41:62:
54:95:37:55:c1:24:de:98:7f:6e:6f:75:98:25:55:
a9:58:f6:6d:a8:eb:73:e4:be:8f:9a:0d:73:16:fb:
5f:47:f5:6d:0d:de:3e:91:f2:4e:3f:dd:fb:a1:60:
ec:d1:ae:3e:50:78:60:24:fe:41:ab:a0:14:c9:1d:
b2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:94:F9:39:0D:31:5E:02:7F:BE:36:79:DB:14:AE:AD:90:AF:50:7A
X509v3 Authority Key Identifier:
keyid:15:28:6F:02:25:C1:41:D9:58:57:FE:74:64:69:49:E7:5D:D9:6F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FShvAiXBQdlYV_50ZGlJ513Zbyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/63440c-3d43-458f-879e-021f50932156/1/dJT5OQ0xXgJ_vjZ52xSurZCvUHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/63440c-3d43-458f-879e-021f50932156/1/FShvAiXBQdlYV_50ZGlJ513Zbyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.250.0/24
Signature Algorithm: sha256WithRSAEncryption
07:54:60:64:bc:c5:44:8f:b3:b5:7c:07:b7:a3:c4:2a:c4:5e:
25:8c:47:cc:71:c4:35:02:7b:32:94:54:5c:eb:53:72:e2:32:
af:52:23:6a:55:1b:cb:7d:4f:46:0a:a1:65:2e:3c:75:fc:a7:
41:a2:7b:a9:43:40:e8:ce:08:7c:dc:08:4c:15:14:ab:db:a0:
ed:74:6a:9d:c5:79:57:a8:b5:e3:96:42:ba:18:1e:cb:3e:d7:
2c:d6:98:44:bb:86:c1:93:0a:26:d1:ea:e9:b0:fb:cf:58:3e:
68:e2:3d:96:fa:0d:40:e1:e3:e2:8a:31:83:b1:8f:f4:62:d6:
5b:eb:e2:4f:bc:5f:9c:db:3c:76:45:db:b0:56:d2:75:ca:f8:
bc:13:c3:28:6f:b9:24:ed:a3:01:d2:7f:65:5b:d2:de:62:59:
e6:ec:7c:c6:80:af:f1:5e:eb:64:cc:f6:be:32:06:17:e9:da:
a0:45:b3:2d:db:3e:df:13:f1:07:4f:77:42:a5:bb:bf:c7:05:
5f:19:9a:6b:72:26:28:59:18:7b:71:6d:cc:f7:eb:53:04:48:
fc:a6:bf:91:dd:90:8a:00:91:37:b3:3d:05:45:10:6a:fd:d2:
62:ec:d0:73:3a:5d:49:9c:d2:6b:c6:7c:16:78:2b:73:30:ef:
a0:03:61:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:52 2025 by rpki-client