Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/5tk5-wfY9gDdQSuIF3UWqBnLhD8.roa
File: 5tk5-wfY9gDdQSuIF3UWqBnLhD8.roa (raw, json)
Hash identifier: E56FnYNBtw+fqUI61iY9DAl9QcVPghqKOjOGxO30CK0=
Subject key identifier: E6:D9:39:FB:07:D8:F6:00:DD:41:2B:88:17:75:16:A8:19:CB:84:3F
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01855331F8D047C96726E006806625A1679D
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/5tk5-wfY9gDdQSuIF3UWqBnLhD8.roa
Signing time: Tue 27 Dec 2022 10:47:41 +0000
ROA not before: Tue 27 Dec 2022 10:47:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209262
IP address blocks: 217.113.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:31:f8:d0:47:c9:67:26:e0:06:80:66:25:a1:67:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Dec 27 10:47:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6d939fb07d8f600dd412b88177516a819cb843f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0f:37:94:1e:85:c3:9e:3a:0f:1e:76:bd:ef:
7e:d2:f9:60:50:02:58:c7:54:0c:01:53:4c:a4:18:
b1:76:76:47:5f:e0:21:bf:be:fb:d7:4b:33:49:1f:
df:d2:76:52:22:8c:b6:c6:a8:44:b1:c9:19:de:cd:
98:7d:9b:62:56:71:2c:47:56:fe:13:b8:4f:f9:f2:
58:b9:03:ff:a8:18:ba:5e:ee:b9:75:4d:bc:f7:e5:
a3:a2:90:c2:71:0a:ba:cf:b0:4b:83:14:ca:e3:1b:
36:c0:a5:89:49:2d:e9:e9:71:6f:e3:fb:60:c5:cb:
f7:54:86:64:bf:4e:4a:b5:9e:38:cb:49:e7:c3:38:
9f:a1:54:17:95:6f:d3:eb:5d:62:b7:f1:2e:a6:e8:
b8:a0:fb:b7:7e:7a:f6:93:bf:89:9e:2e:14:8e:fb:
17:fa:e1:0b:ce:7e:42:7a:08:44:2f:74:5d:7e:92:
00:41:6b:0a:6f:b1:1f:28:e3:0a:c9:c8:85:08:22:
c6:1a:d3:4f:0d:41:f0:c4:75:5b:38:75:39:08:f1:
03:51:d3:d6:ba:95:a1:cb:3d:47:8b:9f:e1:ce:7f:
3e:0c:8c:82:bb:ca:9b:2d:27:46:fa:1e:13:74:81:
56:28:3d:51:2a:20:92:6e:03:e5:36:a4:1f:da:0b:
7c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D9:39:FB:07:D8:F6:00:DD:41:2B:88:17:75:16:A8:19:CB:84:3F
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/5tk5-wfY9gDdQSuIF3UWqBnLhD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.20.0/23
Signature Algorithm: sha256WithRSAEncryption
10:df:f1:b0:4b:15:f9:61:d3:9d:1b:22:b6:28:9d:07:1f:b3:
c6:dc:92:36:34:25:3c:cc:f6:26:fd:da:99:01:15:f6:94:34:
3c:1f:69:88:91:fa:6f:55:ff:2f:70:47:53:b0:59:db:4c:87:
d3:66:26:57:52:98:f3:77:68:58:bf:48:0e:7f:74:c8:09:2c:
82:55:81:bf:bb:5a:2a:ef:05:47:f1:4a:d4:34:4e:49:79:43:
5b:ee:ab:cc:d5:ed:05:b9:0f:3a:52:aa:5d:63:82:e4:07:99:
e4:1b:ca:58:00:94:1a:b6:5f:39:0e:47:5c:f1:ea:d0:c4:89:
24:22:97:f0:73:6c:45:85:6b:fe:a3:23:50:80:e7:f9:50:fd:
07:06:88:da:81:d1:82:17:58:2c:7a:7f:34:37:df:c8:ef:d3:
0d:2d:e5:43:41:8e:aa:3d:ee:b2:5f:4f:80:af:53:91:49:de:
17:9b:2a:a3:6d:45:30:74:40:17:5c:08:87:b9:22:ee:3c:f9:
49:38:e2:53:5e:c9:4c:55:f5:33:a8:e0:ba:b5:76:1f:60:aa:
3f:4a:8b:ab:51:10:d5:0c:d7:cd:48:90:a0:f0:25:78:bd:77:
c4:2e:16:4c:d1:c4:a7:ce:0d:8e:0e:71:17:68:72:5f:1c:98:
dd:da:a7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:57:46 2025 by rpki-client