Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/Yzp5lZG3NOLLqUbZSnzY0CrmTFY.roa
File: Yzp5lZG3NOLLqUbZSnzY0CrmTFY.roa (raw, json)
Hash identifier: CN8xU6qlYlDN+OmqGrh5P/+JLpWGiM46SWviKXxwlWM=
Subject key identifier: 63:3A:79:95:91:B7:34:E2:CB:A9:46:D9:4A:7C:D8:D0:2A:E6:4C:56
Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da
Certificate serial: 0184B0069087DC73B96F9EF20F831E67F787
Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/Yzp5lZG3NOLLqUbZSnzY0CrmTFY.roa
Signing time: Fri 25 Nov 2022 18:22:11 +0000
ROA not before: Fri 25 Nov 2022 18:22:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210220
IP address blocks: 193.25.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b0:06:90:87:dc:73:b9:6f:9e:f2:0f:83:1e:67:f7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da
Validity
Not Before: Nov 25 18:22:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=633a799591b734e2cba946d94a7cd8d02ae64c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c1:9f:af:91:37:a3:89:92:f7:d8:d4:e0:c3:
8a:26:c0:ef:45:b8:d0:a8:43:df:fc:66:1f:27:89:
b7:33:12:4c:c1:c0:77:8f:ab:05:b6:d4:71:ff:b9:
3f:76:f8:17:17:14:b5:58:cc:72:68:eb:af:9f:64:
11:10:ff:27:8c:40:b5:61:9e:7d:56:0a:4e:50:c2:
d7:ce:0f:65:34:13:18:94:a5:da:ec:13:c9:95:d6:
f3:84:66:1a:d9:c2:23:ba:2d:75:da:61:8a:1c:45:
3f:68:84:d0:59:19:3a:e5:86:5f:d9:c0:4a:ae:66:
5d:0b:0d:12:17:c5:56:fa:bf:11:38:7a:b8:40:84:
e9:89:23:fa:9f:a2:c2:db:e3:54:4c:1c:7b:e5:6e:
2e:fd:cb:2e:cb:3a:b5:8d:b5:6e:6c:ef:e1:89:c3:
dd:41:84:9f:6e:82:26:8b:b5:82:72:ca:04:66:7b:
68:16:7b:d8:bd:02:a3:e6:d1:c9:c4:ad:e7:7f:da:
75:3e:58:95:36:99:c4:6d:4c:b9:fe:d3:8a:80:2a:
2a:3a:85:5d:78:a4:25:6f:06:0f:ec:9b:e3:f1:44:
25:45:b5:53:85:cd:a4:45:9e:c1:15:c9:53:1a:8a:
29:f1:32:36:ed:72:85:e9:b5:79:bd:fb:55:a9:18:
34:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3A:79:95:91:B7:34:E2:CB:A9:46:D9:4A:7C:D8:D0:2A:E6:4C:56
X509v3 Authority Key Identifier:
keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/Yzp5lZG3NOLLqUbZSnzY0CrmTFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.193.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:7a:bc:d3:38:10:5f:6f:98:77:a0:5f:d4:05:62:c4:94:26:
9e:65:b5:fd:0e:0c:a3:44:53:b4:0b:14:5f:1c:b3:62:07:27:
57:e6:ed:5e:81:a9:f1:75:56:c3:33:08:ac:f5:0a:c0:bd:22:
d1:64:87:35:fc:1a:2f:51:e1:13:1f:46:8d:68:03:19:b7:df:
b1:67:e6:d2:ef:03:e1:1a:c3:c7:56:b5:90:5e:61:ca:a8:68:
c7:4e:0b:29:24:1d:43:f3:ee:99:71:f5:df:2f:8b:db:ea:e6:
51:a8:c4:43:92:b7:78:bd:ce:1f:d9:1f:cc:eb:85:fa:6d:21:
18:5e:34:39:e5:3d:35:e2:c7:9b:59:dd:1e:22:ab:72:d3:de:
ef:e6:c5:4d:fd:fa:4b:99:a7:e8:dc:27:d2:ef:3e:15:3a:b2:
a9:7f:cc:52:62:87:be:38:ef:b9:92:a9:fe:78:62:58:a8:12:
bf:4a:63:af:86:84:e5:81:9a:8d:a0:ab:11:2c:24:55:37:d0:
38:af:0a:f9:2e:83:e8:1e:10:55:d7:bd:e9:68:c0:63:bd:de:
8f:7d:c9:cd:e5:82:67:b5:29:3b:7b:46:e4:09:e4:25:a0:74:
71:eb:4b:0a:a4:72:57:f8:20:b5:53:65:c8:08:05:fd:5d:a2:
d6:99:6c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:08 2025 by rpki-client