Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e9e849-0710-44e5-a982-fc274ad9210b/1/bd_feqtc-EHdzeHjHLWcd_NfXxA.roa
File: bd_feqtc-EHdzeHjHLWcd_NfXxA.roa (raw, json)
Hash identifier: 3PwGfpTt+esf+eKWlR1MU87xan/GSRxyefG9Zux+GkU=
Subject key identifier: 6D:DF:DF:7A:AB:5C:F8:41:DD:CD:E1:E3:1C:B5:9C:77:F3:5F:5F:10
Certificate issuer: /CN=5714d081f65f0c8b04f1d2fe73e090b07ab1ab58
Certificate serial: D9E3
Authority key identifier: 57:14:D0:81:F6:5F:0C:8B:04:F1:D2:FE:73:E0:90:B0:7A:B1:AB:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxTQgfZfDIsE8dL-c-CQsHqxq1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e9e849-0710-44e5-a982-fc274ad9210b/1/bd_feqtc-EHdzeHjHLWcd_NfXxA.roa
Signing time: Tue 15 Feb 2022 12:13:00 +0000
ROA not before: Tue 15 Feb 2022 12:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200657
IP address blocks: 194.99.108.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55779 (0xd9e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5714d081f65f0c8b04f1d2fe73e090b07ab1ab58
Validity
Not Before: Feb 15 12:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ddfdf7aab5cf841ddcde1e31cb59c77f35f5f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:a3:ae:b9:e6:06:26:da:30:e2:25:55:56:
10:cc:4c:10:5d:90:3c:94:1d:7d:c0:46:8f:ea:b8:
b6:83:d3:d5:48:7e:1a:d0:11:3c:34:6b:92:95:80:
ea:83:f0:c9:98:1a:a6:40:66:f5:ed:1c:37:77:8f:
12:b0:c5:21:54:e7:f0:b1:c4:c2:d7:cc:88:be:90:
74:13:e9:56:3d:5a:e6:32:06:bc:0b:3f:eb:52:cd:
90:ca:26:23:04:e6:e6:a8:e7:e0:7f:ca:eb:1d:2a:
f6:04:7a:d3:3b:ff:d1:fe:13:31:f2:54:56:97:de:
5f:81:ba:c2:69:0e:60:2f:2c:95:f4:ae:0e:35:8a:
24:5d:14:d7:ac:a8:8c:fd:9b:3e:5d:23:b6:98:58:
b5:b1:ce:f6:65:af:c8:30:9a:09:ec:fa:c9:cd:52:
dc:dc:a9:51:dd:1f:98:74:86:7b:0e:f5:34:6a:e0:
c5:5b:bb:8d:fe:98:d1:18:53:ef:9e:75:c8:2c:84:
17:a8:3d:05:25:7b:08:a5:ec:5e:f3:fe:20:05:ea:
55:03:4d:3a:b2:a4:a8:b0:50:4b:8c:44:a1:37:cf:
90:86:a7:c5:5b:29:c5:f5:1b:d1:ec:92:ee:45:5c:
71:cc:a1:b9:6c:3e:48:81:36:39:59:79:f9:b7:eb:
1a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DF:DF:7A:AB:5C:F8:41:DD:CD:E1:E3:1C:B5:9C:77:F3:5F:5F:10
X509v3 Authority Key Identifier:
keyid:57:14:D0:81:F6:5F:0C:8B:04:F1:D2:FE:73:E0:90:B0:7A:B1:AB:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxTQgfZfDIsE8dL-c-CQsHqxq1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e9e849-0710-44e5-a982-fc274ad9210b/1/bd_feqtc-EHdzeHjHLWcd_NfXxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e9e849-0710-44e5-a982-fc274ad9210b/1/VxTQgfZfDIsE8dL-c-CQsHqxq1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.108.0/23
Signature Algorithm: sha256WithRSAEncryption
59:ac:b2:5f:9c:a1:6e:9a:fa:97:8c:e1:fa:03:99:e6:a6:e2:
b0:40:23:26:e8:00:97:36:bc:6b:a3:ef:08:ad:7b:0a:fb:f2:
76:d6:d7:7a:3e:73:fb:e1:b4:96:ea:ea:9e:e0:98:ef:b4:10:
35:82:06:59:c6:94:bc:5b:88:81:74:95:d9:ff:7e:2b:49:43:
63:56:64:55:27:35:7e:56:97:c1:89:49:33:3d:c1:bd:4d:49:
f2:33:f4:72:9f:6e:7e:e3:be:7d:84:e3:21:26:c8:89:32:4f:
13:65:f2:67:5a:61:6c:d1:97:d8:57:7b:68:9d:84:c3:14:7f:
ec:d7:93:0d:a5:73:86:32:1b:19:00:f7:c8:c8:a7:d2:76:49:
56:7b:7c:33:27:9f:f4:24:93:87:65:35:4e:0f:ca:c9:2a:0e:
a5:2b:be:3c:12:2f:e2:79:86:72:6a:cf:3d:cd:a5:a9:73:88:
0a:48:87:80:27:2a:d7:ca:a2:71:7c:fa:c4:9d:88:7b:5e:24:
10:87:38:0e:63:84:85:54:2e:68:a7:62:50:ff:9b:57:11:77:
1c:fa:b9:c2:b9:bc:87:f5:88:d0:6f:4b:ab:26:fe:3b:77:03:
ba:63:8f:e6:51:56:d4:c3:5e:41:ff:22:0f:86:df:92:a3:8c:
d8:19:20:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:58 2025 by rpki-client