Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/BXP6VdjKdDh_XZ8h2X7srdw_y-s.roa
File: BXP6VdjKdDh_XZ8h2X7srdw_y-s.roa (raw, json)
Hash identifier: FIecmcpN8eXZYJHbaeKPvu0j/CvnoJ8uPP9L2lxvuE0=
Subject key identifier: 05:73:FA:55:D8:CA:74:38:7F:5D:9F:21:D9:7E:EC:AD:DC:3F:CB:EB
Certificate issuer: /CN=1ef8791dc3aa6fea328a5e1390ce26e982df372d
Certificate serial: 01856E5D3EA9C3202377B3BCC6ADA8211EF0
Authority key identifier: 1E:F8:79:1D:C3:AA:6F:EA:32:8A:5E:13:90:CE:26:E9:82:DF:37:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hvh5HcOqb-oyil4TkM4m6YLfNy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/BXP6VdjKdDh_XZ8h2X7srdw_y-s.roa
Signing time: Sun 01 Jan 2023 17:24:42 +0000
ROA not before: Sun 01 Jan 2023 17:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.5.178.0/24 maxlen: 24
2001:67c:1818::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:3e:a9:c3:20:23:77:b3:bc:c6:ad:a8:21:1e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef8791dc3aa6fea328a5e1390ce26e982df372d
Validity
Not Before: Jan 1 17:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0573fa55d8ca74387f5d9f21d97eecaddc3fcbeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:09:c2:fd:a7:b0:18:01:cb:bf:ef:cf:e7:92:
d0:13:5c:34:04:40:5b:74:33:ca:c8:8e:3d:13:32:
40:3a:6b:74:bc:26:b7:58:93:49:ed:49:3c:82:e8:
69:e0:55:c1:f6:84:bf:d5:dc:e8:25:79:6b:17:0c:
3e:85:ec:09:85:02:e9:24:c0:61:b0:ca:86:5f:c6:
1e:bf:93:59:dc:62:ba:3e:1f:2d:7e:c3:8a:2f:50:
b7:de:94:2e:b6:ea:eb:dc:b3:76:40:df:69:cb:e9:
2b:64:bc:f3:97:83:eb:62:2d:cd:b1:06:be:f0:60:
00:ea:9d:20:ad:8b:fe:f5:fd:4d:90:66:93:33:74:
7f:39:8b:b7:46:b7:16:3b:f7:75:dd:c0:6d:3a:37:
59:fc:65:1d:91:a6:f5:23:8e:e9:bd:f2:ab:e1:b9:
eb:06:bf:08:6b:f3:e4:2f:21:0b:51:11:e7:24:a2:
78:80:59:3a:1f:18:74:ba:0e:b9:a6:5e:64:65:ec:
3d:27:5b:a1:0a:a5:78:e7:2f:b8:58:55:40:18:d2:
c4:c2:c5:ce:ac:53:5c:72:4a:f4:d3:96:72:5f:01:
87:71:c8:c4:40:d0:d7:df:1b:fb:61:1b:6a:bb:50:
e9:c0:c5:c6:a6:2f:3b:fb:0d:d2:e8:f6:81:68:ca:
15:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:73:FA:55:D8:CA:74:38:7F:5D:9F:21:D9:7E:EC:AD:DC:3F:CB:EB
X509v3 Authority Key Identifier:
keyid:1E:F8:79:1D:C3:AA:6F:EA:32:8A:5E:13:90:CE:26:E9:82:DF:37:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hvh5HcOqb-oyil4TkM4m6YLfNy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/BXP6VdjKdDh_XZ8h2X7srdw_y-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/Hvh5HcOqb-oyil4TkM4m6YLfNy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.178.0/24
IPv6:
2001:67c:1818::/48
Signature Algorithm: sha256WithRSAEncryption
6a:ad:87:57:2c:27:ca:c5:56:2a:8e:5d:a2:42:90:18:44:12:
08:a0:a7:91:41:a2:8f:2c:db:89:db:82:a2:a6:68:82:e9:bf:
a8:a9:72:c3:8a:fa:56:d7:e4:e2:98:e5:d1:74:cf:f0:76:83:
55:f8:f4:86:bd:84:e7:3c:e7:2b:3c:8a:61:71:69:91:31:a2:
77:49:83:f4:09:fa:c3:07:57:13:7e:be:b8:a2:c8:ff:3a:31:
81:19:0f:30:f6:bb:68:16:6e:9f:15:73:db:ff:4a:96:af:33:
e9:e1:64:21:16:1c:c5:98:7f:d1:fe:32:c8:d4:d9:24:13:57:
b0:2c:32:59:8c:00:c4:fa:7e:ad:59:1d:8a:51:41:3f:7c:73:
d9:c1:e3:1a:01:e8:88:3d:8a:db:a9:07:b9:f1:8a:08:c4:36:
49:ad:22:2c:70:df:f9:f8:6d:9d:56:f8:e2:4a:7b:41:69:7b:
43:e8:e2:1e:ee:d4:d0:fe:c7:4f:25:23:6d:79:59:cb:2b:cf:
9c:3c:0a:76:bb:0e:3e:13:14:5d:18:73:fc:21:66:f3:69:37:
14:8b:49:bb:10:eb:ce:35:ff:66:d9:ec:39:cf:2a:25:38:ca:
17:c2:6c:07:17:e5:55:89:ef:64:b7:66:5b:37:86:d1:1f:2c:
4c:39:8b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:10 2025 by rpki-client