Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/yT7OPXcSz1VRPgBO4geAsNQgZ74.roa
File: yT7OPXcSz1VRPgBO4geAsNQgZ74.roa (raw, json)
Hash identifier: KSJF1PdGN3m+wgC21cfPldtoR13HIdOJSIl0LFeeDBw=
Subject key identifier: C9:3E:CE:3D:77:12:CF:55:51:3E:00:4E:E2:07:80:B0:D4:20:67:BE
Certificate issuer: /CN=1ef8791dc3aa6fea328a5e1390ce26e982df372d
Certificate serial: 010822
Authority key identifier: 1E:F8:79:1D:C3:AA:6F:EA:32:8A:5E:13:90:CE:26:E9:82:DF:37:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hvh5HcOqb-oyil4TkM4m6YLfNy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/yT7OPXcSz1VRPgBO4geAsNQgZ74.roa
Signing time: Thu 28 Apr 2022 12:38:16 +0000
ROA not before: Thu 28 Apr 2022 12:38:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.5.178.0/24 maxlen: 24
2001:67c:1818::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67618 (0x10822)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef8791dc3aa6fea328a5e1390ce26e982df372d
Validity
Not Before: Apr 28 12:38:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c93ece3d7712cf55513e004ee20780b0d42067be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:86:2e:ef:8d:ee:c2:7d:ed:47:ed:bb:65:e4:
16:72:9a:7e:2b:1a:91:94:f7:a6:25:14:da:13:9e:
38:57:04:d1:30:84:38:38:1f:aa:a6:d3:aa:1e:3b:
60:f4:fc:7b:d1:90:b7:1d:ff:20:34:05:bd:1d:12:
65:c9:61:cb:d8:48:2f:04:28:10:e4:30:df:f7:e7:
aa:98:7d:58:a2:65:af:36:a8:98:bf:14:26:56:a1:
27:b5:1c:15:32:72:6f:d7:a2:95:71:bb:92:d8:06:
11:a1:16:09:07:72:a7:7b:00:a0:08:ae:28:97:5b:
20:61:86:9b:34:e0:ac:83:80:a3:a7:08:02:2a:51:
3c:c5:c3:b9:17:ae:1f:d7:58:1d:30:b1:41:49:2c:
45:4e:58:4c:71:13:2f:20:5a:23:35:52:77:a4:a5:
e8:f9:9e:ce:72:f6:aa:75:87:0b:c4:39:92:e2:ff:
08:74:4f:46:a5:a9:72:cd:f2:0b:d6:07:75:00:61:
26:13:61:82:c7:e2:58:55:b4:7d:7f:13:05:03:c8:
7b:52:1a:72:7b:49:00:b9:97:cd:34:27:a5:3e:72:
11:82:19:dd:60:b8:56:4d:88:f0:1d:99:ee:6f:50:
6e:61:6f:a8:1a:8f:97:b3:3a:76:5b:90:aa:f7:91:
e1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:3E:CE:3D:77:12:CF:55:51:3E:00:4E:E2:07:80:B0:D4:20:67:BE
X509v3 Authority Key Identifier:
keyid:1E:F8:79:1D:C3:AA:6F:EA:32:8A:5E:13:90:CE:26:E9:82:DF:37:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hvh5HcOqb-oyil4TkM4m6YLfNy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/yT7OPXcSz1VRPgBO4geAsNQgZ74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e17813-1845-4ff2-b95a-833ee9cb3980/1/Hvh5HcOqb-oyil4TkM4m6YLfNy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.178.0/24
IPv6:
2001:67c:1818::/48
Signature Algorithm: sha256WithRSAEncryption
9f:cc:e7:a6:39:fb:13:f7:86:99:ef:8c:6a:3e:3a:13:c3:3c:
34:aa:72:4a:bd:fa:6f:23:fd:10:06:2b:22:4f:99:6b:46:19:
46:20:8e:ca:cb:eb:23:1c:ae:fa:81:cc:23:16:17:2c:f8:40:
87:83:14:ef:40:62:04:24:df:4f:16:22:99:fa:7a:f8:f8:16:
4e:03:1a:39:de:6c:a6:7d:07:07:73:34:48:66:ed:69:0d:8f:
4d:23:fa:58:9a:ad:6f:aa:55:48:ab:15:55:90:94:13:e8:ae:
07:7b:02:e3:64:80:b0:5b:a7:a4:f4:6e:19:f3:20:41:a3:17:
5d:f5:ab:e4:58:fa:6f:62:d8:d9:7c:c5:0e:dc:44:c3:86:9b:
e4:5b:f5:62:fa:bf:11:f0:3a:5c:33:a7:10:d9:d2:a8:ed:23:
16:cc:ee:05:f6:36:8f:44:39:0a:b9:83:4d:3f:cb:d4:23:38:
c6:bf:74:4f:d1:87:03:8e:b3:56:f1:e7:71:b6:d1:20:68:78:
d5:0e:ef:ed:46:7a:0f:bd:35:4d:80:b3:fc:d9:19:10:67:b4:
9e:94:82:bc:b8:db:66:c1:d7:0e:2f:35:dc:7b:23:84:2c:fa:
6e:7c:c2:10:20:fd:1a:6e:3a:76:d4:1c:64:a5:02:e1:46:b4:
fd:ad:b3:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:08 2025 by rpki-client