Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/giJ7h4xUpy1J-K753a7AOURUF70.roa
File: giJ7h4xUpy1J-K753a7AOURUF70.roa (raw, json)
Hash identifier: E2lhlinYAGWFGM5LLQIs1RRguYOipktA21IxhL1JiBE=
Subject key identifier: 82:22:7B:87:8C:54:A7:2D:49:F8:AE:F9:DD:AE:C0:39:44:54:17:BD
Certificate issuer: /CN=0d4ee193b301665b56f6780f225fd44d144093af
Certificate serial: 01856F02480A9B5F2521A2A20ADFD2ACD953
Authority key identifier: 0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/giJ7h4xUpy1J-K753a7AOURUF70.roa
Signing time: Sun 01 Jan 2023 20:24:58 +0000
ROA not before: Sun 01 Jan 2023 20:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43887
IP address blocks: 193.236.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:48:0a:9b:5f:25:21:a2:a2:0a:df:d2:ac:d9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d4ee193b301665b56f6780f225fd44d144093af
Validity
Not Before: Jan 1 20:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82227b878c54a72d49f8aef9ddaec039445417bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:35:73:0e:3a:02:b3:d0:20:90:8d:ba:38:9b:
7b:ad:3c:54:77:56:ff:dc:59:55:96:08:9e:c1:40:
b3:55:cf:3e:a7:19:4f:2d:be:c2:4a:6d:85:a4:54:
64:12:00:04:3e:a7:99:fe:81:6c:e4:51:9e:cc:4d:
2b:bc:f4:93:34:93:3c:fd:d9:5c:c3:cc:be:e6:f9:
44:73:9e:76:b1:16:bd:39:e8:75:96:c7:ae:62:b7:
74:b3:4f:62:de:16:76:54:68:26:de:d9:59:17:29:
a3:f9:1c:9e:71:ad:4e:ee:d1:1e:84:0c:00:3a:fd:
06:4c:41:07:99:e4:ef:ff:6c:e1:c0:5c:e9:43:42:
50:39:98:10:c6:c4:2a:81:98:3e:65:85:04:93:b5:
53:87:1b:51:ee:e4:a8:69:cc:27:65:2c:da:48:88:
f0:23:55:db:96:8d:26:ab:38:bb:86:6b:44:3d:d1:
c8:92:a1:53:9d:59:65:b6:eb:27:31:2f:6d:af:4f:
88:9a:e7:b9:b5:fa:1e:e7:5e:90:13:70:5c:fe:61:
ac:f7:ef:28:cc:df:2e:9f:ca:79:39:52:54:07:0f:
9e:18:e7:1a:7b:d8:9e:d3:ac:9f:91:53:dd:8b:d2:
91:bd:ec:93:3a:03:fd:33:82:cd:ed:df:76:2b:7c:
75:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:22:7B:87:8C:54:A7:2D:49:F8:AE:F9:DD:AE:C0:39:44:54:17:BD
X509v3 Authority Key Identifier:
keyid:0D:4E:E1:93:B3:01:66:5B:56:F6:78:0F:22:5F:D4:4D:14:40:93:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DU7hk7MBZltW9ngPIl_UTRRAk68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/giJ7h4xUpy1J-K753a7AOURUF70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/097111-3098-4cf7-ac0f-9f7e0f862f1e/1/DU7hk7MBZltW9ngPIl_UTRRAk68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.236.152.0/24
Signature Algorithm: sha256WithRSAEncryption
af:f9:60:fb:a3:6e:41:91:a3:b5:ab:d7:30:b3:07:5d:08:16:
bd:53:f9:6b:ab:fe:0f:9b:8c:35:c0:23:6f:18:a2:75:31:42:
55:ae:9b:59:33:bc:ff:f8:12:74:d8:23:db:31:d9:0c:41:e0:
6c:30:21:be:81:b9:73:0d:9a:73:99:ef:01:8d:f5:69:60:b0:
88:eb:35:d6:1a:3e:ef:f4:e8:7c:80:68:a1:a2:dc:a6:f7:dc:
9c:10:ae:21:f3:25:a6:f0:54:5e:59:f4:ca:d7:57:8b:ec:77:
41:48:1f:04:3d:e2:a6:d3:38:24:fa:57:ec:79:25:e8:bb:5b:
94:83:82:3a:30:34:72:eb:fc:67:7e:83:85:05:4e:24:c1:ed:
e4:b6:52:53:85:21:09:5f:8a:63:b5:a7:cf:e7:ff:59:12:b2:
99:4d:f8:df:6a:96:e0:b3:86:3a:d8:82:9e:85:02:6d:a2:1d:
c8:b4:a1:45:5c:93:65:39:f4:b7:72:4e:e1:bd:6c:1e:e8:e3:
94:b3:82:2e:0c:28:74:af:14:0c:7f:62:16:eb:ee:50:99:6f:
f8:bf:24:b4:00:35:d3:3a:0e:0f:80:25:ba:30:30:78:a8:80:
42:6b:65:9d:eb:db:30:79:b2:f3:cd:51:0e:20:30:34:1c:7e:
67:b2:58:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:07:29 2025 by rpki-client