Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/cuSqD8r9KXc6q0HJrdfbDJnYucQ.roa
File: cuSqD8r9KXc6q0HJrdfbDJnYucQ.roa (raw, json)
Hash identifier: 6KbScCAuxuq5AiMbn09eLMVyhgHrSj/goc7CKo0orqI=
Subject key identifier: 72:E4:AA:0F:CA:FD:29:77:3A:AB:41:C9:AD:D7:DB:0C:99:D8:B9:C4
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018990D4BD80D193B2025780715B989BDA44
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/cuSqD8r9KXc6q0HJrdfbDJnYucQ.roa
Signing time: Wed 26 Jul 2023 06:13:28 +0000
ROA not before: Wed 26 Jul 2023 06:13:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198767
IP address blocks: 217.113.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:90:d4:bd:80:d1:93:b2:02:57:80:71:5b:98:9b:da:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jul 26 06:13:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72e4aa0fcafd29773aab41c9add7db0c99d8b9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:46:ce:a9:6c:34:bb:9c:96:a5:a0:4f:f8:fb:
da:23:7a:75:1c:d2:29:1a:bc:17:53:47:f5:4d:90:
ab:51:35:07:dc:9b:d0:da:57:d5:6a:5d:c3:86:e1:
a7:59:c9:07:d8:10:2d:b5:ea:9f:8f:95:64:e2:28:
71:7b:ad:ed:2a:f5:7b:76:7a:3a:6a:62:f4:04:ae:
de:37:d6:d5:44:fc:75:7d:b6:a7:b0:3e:ac:70:17:
76:b4:94:3d:bc:69:69:81:72:13:aa:a3:9f:f5:8f:
de:21:9f:6e:5a:d5:5d:8b:15:f5:4d:4f:3d:d3:e4:
91:10:59:3b:90:d5:18:63:5c:70:3f:df:89:16:d2:
a7:c6:68:73:c9:dd:10:9b:85:00:1d:62:14:8f:4e:
9d:57:ce:cb:bd:ff:a9:04:0b:b9:4c:cc:7e:0b:3b:
71:80:32:79:70:ae:4c:84:26:ab:d3:24:d3:bf:46:
e6:bf:ee:fc:bc:ea:fa:9c:6e:3b:54:95:f2:e1:f4:
32:aa:61:90:53:17:2b:13:cf:3c:80:84:f3:7e:7f:
22:9f:ab:3d:95:f1:62:10:8e:0a:ac:e9:26:1d:f0:
19:a8:4a:b1:df:33:f9:94:a3:76:15:41:09:af:39:
16:da:c2:cd:f1:43:8c:f2:7a:bc:f2:64:96:13:12:
fe:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E4:AA:0F:CA:FD:29:77:3A:AB:41:C9:AD:D7:DB:0C:99:D8:B9:C4
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/cuSqD8r9KXc6q0HJrdfbDJnYucQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.26.0/23
Signature Algorithm: sha256WithRSAEncryption
69:ed:ee:38:14:a2:69:14:f1:af:26:d0:25:51:eb:0b:f2:d0:
98:34:2e:2d:7c:2c:df:39:b6:57:59:50:14:0b:ee:81:8b:90:
db:34:53:0d:f4:de:3a:2a:dc:a6:1f:6e:04:bf:57:c0:ca:64:
54:46:30:83:74:ae:d1:1e:5c:a9:01:28:c4:7b:e3:a0:47:79:
91:d4:a1:04:a3:eb:ab:e5:61:ea:a2:64:df:c7:40:8a:9a:69:
cf:7a:51:68:01:e4:20:88:a4:73:74:8f:0e:c4:af:0a:f6:67:
af:b7:f8:82:bd:aa:db:8b:d4:9c:6f:a2:4a:0a:5a:86:8f:8e:
c7:c0:aa:a0:7f:55:ac:e8:74:1c:84:0e:d1:1d:e3:e2:a5:91:
d3:b1:fa:c3:d3:af:3a:cd:7e:46:04:24:c3:a4:36:a1:16:c8:
6f:a8:0c:bb:f9:5d:c3:f4:e8:45:77:ae:6c:7a:07:5b:89:91:
30:47:d0:0c:98:57:15:7b:83:7a:c4:6e:e2:f0:02:16:b8:fb:
80:d4:f3:99:43:33:2f:86:f4:8e:f0:2d:41:d9:3d:c9:c5:9f:
ca:72:a0:52:9e:04:7a:8a:c0:0e:cb:30:34:62:02:d9:10:11:
de:71:15:f7:85:f0:c6:b5:18:c1:5b:94:1f:63:f8:34:38:0b:
ba:e0:38:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:20:15 2025 by rpki-client