Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/Txs8GU8xbOufuZ9L7Gmm5E__pU8.roa
File: Txs8GU8xbOufuZ9L7Gmm5E__pU8.roa (raw, json)
Hash identifier: XVgwTV1RTDS3gDMFMCwZn0eIi3bql4EEDR9Y25OMNoY=
Subject key identifier: 4F:1B:3C:19:4F:31:6C:EB:9F:B9:9F:4B:EC:69:A6:E4:4F:FF:A5:4F
Certificate issuer: /CN=0d4ee193b301665b56f6780f225fd44d144093af
Certificate serial: 01856F0245F4A8D993BEC7782A750D659979
Authority key identifier: 0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/Txs8GU8xbOufuZ9L7Gmm5E__pU8.roa
Signing time: Sun 01 Jan 2023 20:24:57 +0000
ROA not before: Sun 01 Jan 2023 20:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5516
IP address blocks: 194.117.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:45:f4:a8:d9:93:be:c7:78:2a:75:0d:65:99:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d4ee193b301665b56f6780f225fd44d144093af
Validity
Not Before: Jan 1 20:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f1b3c194f316ceb9fb99f4bec69a6e44fffa54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:ed:fc:ee:33:47:1a:03:11:a0:3e:91:1e:
7b:b3:6f:fb:04:60:67:f2:96:22:c6:7d:21:7a:8d:
e4:e9:6e:f9:7c:73:63:54:c8:f4:8c:52:4a:23:19:
68:0a:6b:78:d6:9c:c7:d2:ea:f6:e7:30:fe:97:5d:
d1:08:51:f5:10:bc:dd:20:93:af:47:14:eb:c9:10:
23:8b:25:51:6f:fb:50:ad:aa:4c:13:32:e2:03:57:
06:98:ed:e8:29:bf:1a:ca:1e:21:9b:a9:12:92:61:
39:af:fc:26:9f:c0:05:7a:eb:f8:12:de:fc:15:ab:
61:23:ab:1e:52:46:ed:2c:1e:fe:0e:8d:df:a5:18:
c7:5e:16:d8:5b:3e:c7:bd:d4:37:8c:6f:da:28:1f:
7d:3f:c1:21:64:63:57:e2:6f:99:53:e3:f6:bf:82:
85:88:11:ff:dd:4d:f1:e8:55:ce:d3:0c:7a:51:fd:
57:a5:2b:c9:a4:ba:71:3b:a7:4a:f5:07:8c:bb:06:
43:85:49:e4:c7:ee:01:45:ea:81:f8:99:25:fc:fd:
3f:d3:45:36:96:4f:fb:32:b4:22:f1:32:c1:3c:29:
6c:17:ba:01:5d:8a:60:0e:d9:7d:53:13:5c:b2:0a:
a9:5f:c0:dd:11:79:18:ba:e9:af:98:e1:21:c6:e1:
53:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:1B:3C:19:4F:31:6C:EB:9F:B9:9F:4B:EC:69:A6:E4:4F:FF:A5:4F
X509v3 Authority Key Identifier:
keyid:0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/Txs8GU8xbOufuZ9L7Gmm5E__pU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.117.32.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:a8:14:a1:6b:5b:26:b0:7d:2d:92:6f:30:e4:e2:a1:69:03:
ce:5c:b4:45:59:bc:91:64:c3:5d:7c:14:35:2e:ac:4f:a2:bf:
fe:da:c8:d4:fe:79:cc:51:f3:8d:c3:bb:97:4e:73:b5:3c:b3:
82:70:6f:79:2e:5d:f1:45:f7:81:d7:72:81:41:41:25:2d:a8:
7f:73:ec:cf:af:a8:ce:66:dc:b2:7d:9a:f5:55:de:eb:f5:b5:
a4:1b:7b:45:4f:51:71:2e:00:58:c4:51:df:b8:f0:21:d8:4b:
e7:13:a2:36:20:ed:cb:c5:32:af:26:6a:f6:69:0b:b0:dc:e9:
30:c2:4c:36:7b:ad:da:47:75:3d:cf:5d:a3:59:52:30:51:ee:
c3:d6:eb:cf:85:3d:92:2e:33:90:1b:bf:de:36:ad:d8:0f:47:
f3:05:11:2e:c5:21:93:13:a2:a9:53:34:bb:4e:77:c8:d7:ac:
3f:a3:72:35:a1:b3:75:e7:6f:ff:35:b9:80:cb:ce:3f:c6:75:
e7:77:bd:c8:d0:35:af:76:df:6a:95:eb:50:3f:bb:a3:87:d9:
e7:c7:99:c3:7a:4e:08:38:aa:e4:90:c1:f7:fa:f1:80:f1:5c:
36:4d:39:c6:0b:5e:69:3f:52:e3:21:44:66:85:39:b6:5f:8c:
49:e0:89:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:22:44 2025 by rpki-client