Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/d3149c-f4dc-4837-8b86-c612305cf089/1/2XeZr2LtHdTazwNHVvsi2kxRjlU.roa
File: 2XeZr2LtHdTazwNHVvsi2kxRjlU.roa (raw, json)
Hash identifier: ggUwgYA/GcbTZedM/OkGJ5RhJNOHNKpiN+z8jA6PIkg=
Subject key identifier: D9:77:99:AF:62:ED:1D:D4:DA:CF:03:47:56:FB:22:DA:4C:51:8E:55
Certificate issuer: /CN=179239f9913dfc7d7aaaa95ff4c9b61bf42b72d6
Certificate serial: 0174A619
Authority key identifier: 17:92:39:F9:91:3D:FC:7D:7A:AA:A9:5F:F4:C9:B6:1B:F4:2B:72:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5I5-ZE9_H16qqlf9Mm2G_QrctY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/d3149c-f4dc-4837-8b86-c612305cf089/1/2XeZr2LtHdTazwNHVvsi2kxRjlU.roa
Signing time: Sat 01 Jan 2022 10:57:23 +0000
ROA not before: Sat 01 Jan 2022 10:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15975
IP address blocks: 194.6.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24421913 (0x174a619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179239f9913dfc7d7aaaa95ff4c9b61bf42b72d6
Validity
Not Before: Jan 1 10:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d97799af62ed1dd4dacf034756fb22da4c518e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:32:db:20:48:65:f6:08:13:76:55:84:da:a5:
cd:f0:12:f9:9f:36:db:a1:3f:e7:c6:60:86:5e:ad:
a8:9b:4e:2f:14:77:c1:a3:b5:5f:82:15:9f:43:74:
e9:a3:a5:8e:7e:93:e4:ea:91:39:4b:20:a7:a6:2d:
eb:7d:e6:da:9d:0b:31:4d:67:9e:33:8f:b8:e6:75:
bf:61:a0:c7:12:9e:2a:5b:af:92:c3:b5:48:48:a0:
08:f9:57:d0:7a:ae:d4:bb:34:51:9f:5d:8b:9b:76:
22:13:cf:62:8d:9d:92:34:02:88:4a:26:fa:93:fb:
79:3c:2e:6d:50:ca:1e:c4:5f:12:75:5d:41:b0:e0:
99:1e:c5:d4:1f:a6:7d:97:32:65:db:03:b1:1c:51:
23:ac:4a:94:62:90:5d:85:8b:7b:4b:5a:3b:a7:f9:
3e:f2:17:6e:bc:2a:20:c2:0f:e5:59:0c:31:23:8b:
ca:98:91:d5:01:7a:22:75:9d:b3:6b:18:29:36:7d:
06:98:63:70:1a:12:a5:da:d7:49:25:1f:0b:c8:00:
93:4a:d4:ab:b2:70:ea:b2:8c:1a:ea:c0:41:93:23:
26:6b:e7:2e:26:56:a1:06:c0:b9:2e:74:68:27:2a:
59:7e:75:a4:a0:32:36:e1:23:33:d7:f1:85:c0:3b:
29:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:77:99:AF:62:ED:1D:D4:DA:CF:03:47:56:FB:22:DA:4C:51:8E:55
X509v3 Authority Key Identifier:
keyid:17:92:39:F9:91:3D:FC:7D:7A:AA:A9:5F:F4:C9:B6:1B:F4:2B:72:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5I5-ZE9_H16qqlf9Mm2G_QrctY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d3149c-f4dc-4837-8b86-c612305cf089/1/2XeZr2LtHdTazwNHVvsi2kxRjlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d3149c-f4dc-4837-8b86-c612305cf089/1/F5I5-ZE9_H16qqlf9Mm2G_QrctY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.225.0/24
Signature Algorithm: sha256WithRSAEncryption
af:7d:80:e9:91:dc:26:6c:b6:b1:a1:e3:69:5b:df:b2:77:5d:
48:fb:2a:a9:92:f8:f3:c6:e4:4d:22:72:73:f9:3c:42:28:e6:
32:42:03:35:fe:bb:f9:23:73:30:f1:2e:45:ee:a4:9d:ac:de:
6b:5f:84:3d:e9:4b:c3:52:3b:0c:8c:1c:43:f3:47:c9:b0:00:
14:39:0a:1b:be:a1:71:9d:aa:9b:63:bd:9e:f4:13:b5:44:ab:
6d:ec:98:63:eb:b6:3e:09:22:bc:7d:b6:aa:2c:cb:4e:5e:fa:
99:85:bd:2d:63:24:ca:cd:40:1d:b5:53:d4:81:0d:53:5a:8d:
c8:08:a2:9c:b9:40:8d:e9:3e:b1:d0:d0:f6:f6:ba:e8:fd:89:
55:ac:21:62:d2:90:6a:e1:aa:5f:7b:55:50:cb:57:01:ab:92:
c9:bf:94:ee:36:83:9e:6a:1e:f6:cb:57:68:0b:65:6b:22:8d:
d4:a3:52:2d:59:35:56:f2:71:ec:68:78:5a:c0:59:59:df:32:
e5:db:21:0b:2f:03:34:d7:ee:d0:bb:7f:f2:61:54:81:55:6f:
d5:b6:4e:89:54:c2:01:d4:d2:86:8a:03:d0:66:9e:b1:2c:2b:
8b:c2:3c:99:c7:5d:3d:05:6d:42:11:c5:f2:84:01:78:37:14:
2f:e0:05:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:10 2025 by rpki-client