Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/JkUXeOWdqx3kVA3-dsR6BWYN-co.roa
File: JkUXeOWdqx3kVA3-dsR6BWYN-co.roa (raw, json)
Hash identifier: 4COrRHHibmPwhrCKW7O+M91zYUtwk7crKK7l3Yq8OBw=
Subject key identifier: 26:45:17:78:E5:9D:AB:1D:E4:54:0D:FE:76:C4:7A:05:66:0D:F9:CA
Certificate issuer: /CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Certificate serial: 018570CBE3A94821DD3FBB826FD8163497D8
Authority key identifier: E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/JkUXeOWdqx3kVA3-dsR6BWYN-co.roa
Signing time: Mon 02 Jan 2023 04:44:48 +0000
ROA not before: Mon 02 Jan 2023 04:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 93.155.104.0/22 maxlen: 24
2a00:1d30::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e3:a9:48:21:dd:3f:bb:82:6f:d8:16:34:97:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Validity
Not Before: Jan 2 04:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26451778e59dab1de4540dfe76c47a05660df9ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:70:02:3a:12:f7:2c:12:55:1e:f0:21:9e:1b:
e4:e8:24:8b:e7:68:45:3b:ed:f2:43:f4:0a:60:41:
d6:ce:14:e5:15:11:7f:e7:bd:95:ae:7a:8d:d8:65:
f2:09:78:b1:66:52:8c:5b:d0:94:88:9e:ee:67:66:
a0:6f:f0:93:de:c3:d5:b3:54:18:70:b2:99:1d:f1:
04:bc:7f:80:03:7c:14:77:e7:71:e8:76:94:63:b5:
40:95:33:8c:b3:34:ec:8e:dd:24:c7:3f:90:b3:a1:
f9:c2:9a:b8:76:40:f1:2e:46:a9:0b:80:89:7f:d3:
fd:c7:d1:36:cc:b3:fb:65:0a:d4:4c:a9:e1:5e:bf:
65:9b:1a:3e:40:9f:a3:ad:38:da:34:5c:d5:5a:10:
71:b6:0e:58:00:e2:90:bf:73:70:0a:89:6e:b2:ac:
f4:56:af:ef:ea:34:3c:6e:09:ab:05:c8:3c:d4:58:
2f:0c:71:cb:a4:6a:b0:aa:c7:49:34:e8:04:ae:a4:
3e:54:75:be:a5:64:0f:de:47:7d:fd:6e:f4:e8:99:
f1:ac:71:c9:42:69:ac:b1:70:94:47:a9:9d:c9:02:
50:f4:2b:f2:48:29:44:3a:ed:01:02:cf:10:d6:9f:
ce:85:7a:f9:64:b4:80:24:02:0f:c2:06:98:0a:d6:
2b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:45:17:78:E5:9D:AB:1D:E4:54:0D:FE:76:C4:7A:05:66:0D:F9:CA
X509v3 Authority Key Identifier:
keyid:E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/JkUXeOWdqx3kVA3-dsR6BWYN-co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/5f4C8qp2xAK312oRTcdzXV-TW4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.155.104.0/22
IPv6:
2a00:1d30::/29
Signature Algorithm: sha256WithRSAEncryption
5f:a1:dd:7c:2a:79:e3:d8:e9:b1:4d:30:ea:ba:06:36:ff:17:
82:3c:46:40:0e:44:5f:2f:31:de:cc:f3:37:1d:61:9f:fb:d2:
cc:2b:d4:ef:c7:8f:cb:be:a0:e6:97:f7:5d:fc:56:46:e6:79:
c9:9b:2a:11:93:30:94:48:cf:96:3c:8e:08:81:59:f8:43:dc:
39:e7:55:90:08:4b:ef:7c:d6:16:60:9b:c1:21:10:a3:c5:6e:
ae:8b:85:b9:61:61:a9:95:5d:e9:39:fe:65:11:85:c3:d0:29:
3f:a5:c0:85:08:c5:5f:42:53:b0:93:65:14:23:85:5d:95:8f:
52:db:89:1e:90:04:ca:3e:73:dc:a0:b2:52:ec:cb:39:9f:f4:
9c:72:b9:8b:67:5d:ef:3e:5b:77:d6:21:36:38:15:40:74:7a:
88:6d:c9:4d:77:3f:21:94:4e:29:cf:b8:cb:6e:7b:67:0a:38:
ca:94:0b:07:05:a8:48:06:d1:51:66:af:ba:51:ed:d0:77:04:
27:5c:8b:4f:ea:f9:ff:b6:89:73:5f:4c:59:52:e0:49:aa:91:
43:ce:6a:7c:f9:cb:17:e8:4b:dc:cb:46:c0:6c:fd:54:34:07:
97:7f:48:81:75:27:3b:ec:c9:cf:6d:79:b4:f7:d6:51:28:55:
c8:a7:f4:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:30 2025 by rpki-client