Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6414f1-d468-4d97-b299-d768a77d57f4/1/tDNrMPou7C0C0Z5AdzgDN3HLaAo.roa
File: tDNrMPou7C0C0Z5AdzgDN3HLaAo.roa (raw, json)
Hash identifier: PhiDcmk/fzZ6j7n6aaIVVfveehxBwckf+BTa+iwXva4=
Subject key identifier: B4:33:6B:30:FA:2E:EC:2D:02:D1:9E:40:77:38:03:37:71:CB:68:0A
Certificate issuer: /CN=ce5581d2748afcf779667977f7b6739ee4f9fc0d
Certificate serial: 0185735F056491AE2132C6302CDE9B0733BC
Authority key identifier: CE:55:81:D2:74:8A:FC:F7:79:66:79:77:F7:B6:73:9E:E4:F9:FC:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlWB0nSK_Pd5Znl397ZznuT5_A0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6414f1-d468-4d97-b299-d768a77d57f4/1/tDNrMPou7C0C0Z5AdzgDN3HLaAo.roa
Signing time: Mon 02 Jan 2023 16:44:45 +0000
ROA not before: Mon 02 Jan 2023 16:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31457
IP address blocks: 193.16.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:5f:05:64:91:ae:21:32:c6:30:2c:de:9b:07:33:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5581d2748afcf779667977f7b6739ee4f9fc0d
Validity
Not Before: Jan 2 16:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4336b30fa2eec2d02d19e407738033771cb680a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4b:25:66:48:1a:fd:45:70:84:99:4c:ad:58:
62:a1:43:39:4e:bf:fc:9a:95:f6:62:7e:d7:cf:dc:
89:ca:94:00:f3:dd:59:1c:39:1a:6f:a9:ee:38:37:
df:d1:62:11:8d:b5:49:ee:77:77:20:8b:03:2a:24:
5b:85:6a:aa:91:5a:13:6a:f0:7b:b5:c3:87:97:c1:
07:c3:26:c9:a6:36:b2:ea:27:4f:71:c2:72:52:ed:
5d:5d:bf:c1:87:c4:22:91:13:d7:de:de:2b:34:7c:
a1:d6:2b:b6:5a:d0:e4:1c:56:c8:e0:b8:9e:81:74:
a0:9a:fa:ef:bd:02:17:3a:93:5b:4e:3e:06:ed:b9:
aa:b1:8b:6a:f2:71:6f:7c:cc:7e:79:9b:71:34:54:
ed:c0:0f:89:88:f8:2b:ed:69:73:6a:40:aa:32:74:
23:25:3e:a4:ab:99:56:28:cb:00:c2:33:79:fe:b5:
22:c2:c3:da:15:58:04:64:9f:58:5c:be:53:5e:72:
87:81:da:4e:c3:af:2a:ce:77:c9:76:e5:23:61:ae:
66:3a:ad:ea:76:27:ed:36:e3:e4:c8:5d:1b:d5:78:
51:56:ca:fb:cf:01:de:a1:f4:20:15:0e:27:ee:0d:
97:e2:c7:ff:1f:0a:c4:2c:c7:1e:7b:82:64:ed:3f:
62:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:33:6B:30:FA:2E:EC:2D:02:D1:9E:40:77:38:03:37:71:CB:68:0A
X509v3 Authority Key Identifier:
keyid:CE:55:81:D2:74:8A:FC:F7:79:66:79:77:F7:B6:73:9E:E4:F9:FC:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlWB0nSK_Pd5Znl397ZznuT5_A0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6414f1-d468-4d97-b299-d768a77d57f4/1/tDNrMPou7C0C0Z5AdzgDN3HLaAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6414f1-d468-4d97-b299-d768a77d57f4/1/zlWB0nSK_Pd5Znl397ZznuT5_A0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.244.0/24
Signature Algorithm: sha256WithRSAEncryption
33:48:82:78:1c:2f:33:6f:c4:c7:c2:3e:c4:ee:d5:89:66:95:
d7:cb:14:cf:9f:6f:0f:b1:06:8e:78:71:15:d3:b9:9a:a4:b4:
18:5c:4a:7c:3e:0f:13:2f:f2:dc:64:4b:41:0a:81:be:64:c9:
0f:a3:b2:89:c8:10:29:81:af:56:d4:15:6e:9b:6d:95:29:e2:
c2:d1:d5:fa:54:fc:ce:39:2e:ff:0d:c9:99:27:3d:c6:69:e8:
35:fe:d8:59:79:0f:0c:84:73:25:f1:78:45:95:e5:06:22:34:
e3:f9:2a:b4:1d:a3:1a:bc:58:b8:0d:16:19:44:fd:03:63:7a:
e3:e8:5f:c2:50:21:71:af:31:90:cc:b2:f9:18:55:0c:30:c8:
1b:ab:92:ad:01:d0:25:8e:69:eb:79:d8:df:28:2b:9f:3a:9f:
96:dd:67:16:95:70:42:d3:ff:f3:93:68:e2:9c:7a:16:b1:0d:
20:cf:22:f0:21:11:27:02:43:f3:99:a1:78:58:b5:62:99:6a:
d1:e0:20:0d:3e:1c:1b:a6:53:0e:5e:4b:ea:b1:77:d5:71:6a:
99:1d:78:03:0d:c4:07:70:a4:5f:db:d1:8f:98:35:ef:ab:0b:
00:b5:ad:a3:17:2f:2d:b8:31:0a:3b:a6:94:77:5c:01:f2:6b:
de:48:ca:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:48 2025 by rpki-client