Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/E2A_98TZmvNoYmoHu-xTZNtaD3g.roa
File: E2A_98TZmvNoYmoHu-xTZNtaD3g.roa (raw, json)
Hash identifier: OjHxsvtxbtOZwxmlYNYXKLxSnT7ZGbpujaQSCOIluGg=
Subject key identifier: 13:60:3F:F7:C4:D9:9A:F3:68:62:6A:07:BB:EC:53:64:DB:5A:0F:78
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA762C364B36A16E2ECE625458C3D9
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/E2A_98TZmvNoYmoHu-xTZNtaD3g.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209262
IP address blocks: 217.113.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:76:2c:36:4b:36:a1:6e:2e:ce:62:54:58:c3:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13603ff7c4d99af368626a07bbec5364db5a0f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:08:db:39:5b:ed:9c:43:a9:7d:59:2f:23:2a:
65:b6:54:30:62:b6:b2:bb:31:dc:77:fe:00:22:a2:
57:78:5b:cc:56:a8:d5:4f:16:41:eb:9b:56:3e:df:
a2:ac:9e:83:c8:a4:ae:2f:3b:5f:e4:a5:68:1e:fb:
c6:ba:62:bb:81:d4:e2:ee:c4:08:e1:76:a6:be:47:
a1:a9:d1:54:7a:8d:5c:ed:6c:97:92:55:ab:27:db:
f6:03:64:d3:1c:d0:ae:06:e2:33:a9:c0:a0:2e:ef:
83:25:10:f1:88:25:41:cc:55:8a:0c:4a:de:48:17:
22:a3:e0:fb:3c:4c:05:f4:c7:f2:6f:80:5b:00:ab:
4e:8e:c7:e8:01:22:36:81:47:46:36:2e:9f:ec:bd:
a5:a9:68:4f:fb:2d:2f:8b:7a:2e:cb:1a:f4:4b:a4:
05:2d:6d:bd:d3:86:e7:7e:e8:4b:7a:8a:26:dd:12:
de:db:42:4f:f9:b7:38:f6:a7:fb:18:26:58:c1:5a:
5b:f4:df:dc:45:1d:87:fc:03:15:18:35:b7:8e:ee:
37:8b:4b:bb:e6:2b:28:fd:03:d4:1e:55:ca:09:bf:
17:5b:d9:44:9a:40:38:c5:8e:5c:84:d4:c6:79:45:
ad:9c:90:c9:5d:a6:87:3c:eb:e0:fb:3a:e8:8c:0c:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:60:3F:F7:C4:D9:9A:F3:68:62:6A:07:BB:EC:53:64:DB:5A:0F:78
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/E2A_98TZmvNoYmoHu-xTZNtaD3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.20.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:52:f2:a0:39:0b:03:d6:53:23:cb:04:e9:55:33:96:0c:4f:
c6:71:a0:4f:f6:0b:a0:ae:5f:e2:28:3c:eb:73:e2:de:ec:7e:
95:e9:c4:c3:fd:e3:9d:c6:f3:23:5d:12:9c:1e:9a:55:82:9f:
7f:cf:c7:7e:28:44:1b:dd:d5:16:7a:15:cb:20:63:74:7d:44:
19:8f:7a:62:29:5a:c6:6c:1b:7b:c4:dd:16:b6:70:6f:cd:67:
34:a3:40:e5:ec:e4:5a:44:aa:a3:93:c3:37:7a:99:3f:dc:c2:
e6:fb:dc:cc:a8:2c:36:8a:2e:ff:82:e4:82:7f:ab:29:fe:ac:
e2:0f:a7:61:ba:3b:5d:54:9f:48:e0:f2:f1:20:da:77:fa:c3:
a6:86:40:aa:c1:ad:c8:f1:03:eb:e8:89:88:8f:1e:96:a3:b9:
1c:c1:af:9e:e5:fa:be:66:b4:1e:7d:e6:b5:e8:9e:f5:bb:53:
dc:29:96:d5:e8:44:9f:2f:b0:d4:4c:37:2b:e0:2d:49:6a:5b:
4b:41:5d:56:f2:8d:a5:7b:84:0a:4e:ee:a0:a1:5e:77:a3:7d:
4d:37:ff:67:21:f0:bc:b3:b7:18:7e:95:16:9e:c9:0f:17:cb:
48:76:82:bc:a7:7f:f2:78:01:09:76:ac:d1:34:48:03:97:8b:
2c:6d:79:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:33:56 2025 by rpki-client