Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/noQbHIExhWLe_CP-mcOR7zkJkkw.roa
File: noQbHIExhWLe_CP-mcOR7zkJkkw.roa (raw, json)
Hash identifier: tQW5lw0yq1plJDnuvjNRCcNNZOuQlrS2B8dLyH7Yhdw=
Subject key identifier: 9E:84:1B:1C:81:31:85:62:DE:FC:23:FE:99:C3:91:EF:39:09:92:4C
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 01101176
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/noQbHIExhWLe_CP-mcOR7zkJkkw.roa
Signing time: Sat 01 Jan 2022 06:57:12 +0000
ROA not before: Sat 01 Jan 2022 06:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49553
IP address blocks: 130.193.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17830262 (0x1101176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Jan 1 06:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e841b1c81318562defc23fe99c391ef3909924c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bd:d2:4a:1c:11:c7:45:f6:e9:72:ca:8c:9d:
48:d1:9c:aa:f1:18:dd:78:a8:82:5a:d1:80:54:1f:
c5:50:57:c9:aa:a1:ad:65:8b:a4:19:49:ae:0a:0b:
0c:46:8a:2f:1c:9e:82:53:42:f9:ea:f2:25:18:e2:
ee:91:81:d2:58:60:37:3d:a6:27:3a:6c:52:98:24:
ad:9f:ae:bf:c8:71:78:c9:14:f6:cb:e1:80:f8:29:
bd:9f:25:c3:bf:3f:03:a4:70:07:4b:c2:2e:cb:7d:
b7:50:f3:bd:be:b5:f8:cd:a0:cf:7b:5d:34:d5:58:
3e:ba:eb:c0:36:5a:56:f4:92:35:a0:8a:4b:40:ce:
37:c2:2d:95:de:35:98:7e:6f:49:72:e9:c4:c6:6e:
9f:b9:a8:d3:ea:a4:15:37:a5:ce:70:38:86:73:d6:
d6:22:20:13:85:86:6b:8f:da:98:23:03:01:cd:6c:
6d:4a:a4:4e:fd:67:20:30:f2:70:45:24:85:3e:86:
7b:a6:a0:b9:90:76:c3:01:2c:8a:0a:d4:83:46:42:
d7:49:2a:7d:8e:fe:75:1b:55:06:20:a5:f9:86:b6:
84:d4:6b:2d:c1:33:3d:62:eb:8a:41:b8:89:81:c1:
1b:a1:25:a3:c0:64:d1:b6:0d:6c:d6:8d:01:d6:04:
a3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:84:1B:1C:81:31:85:62:DE:FC:23:FE:99:C3:91:EF:39:09:92:4C
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/noQbHIExhWLe_CP-mcOR7zkJkkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:8f:4b:96:27:b9:5d:45:4c:c7:bb:0b:04:e1:ee:92:54:54:
b5:f3:4d:41:f1:b1:90:1f:ab:17:58:e6:b4:74:60:c4:37:76:
83:7e:ce:cd:54:5c:07:23:4d:a6:ad:13:6b:be:6f:d3:1c:72:
eb:88:65:6e:4f:6b:78:be:aa:36:ad:42:ff:a9:ae:d0:74:84:
46:d9:bd:c7:a1:18:3b:7b:52:d3:28:76:c7:b1:4d:d6:99:12:
6d:19:74:cf:88:0c:85:48:6a:46:b2:8d:be:7c:d0:b5:fe:cf:
b2:b0:52:70:ad:92:23:f1:25:cf:3e:27:59:f2:1e:9c:c5:95:
83:1e:29:2f:57:0a:af:33:0e:5d:0f:5f:0e:e9:75:cd:e5:f6:
3e:34:42:e9:67:5a:e8:6c:0d:2e:50:4c:01:bb:46:54:29:51:
56:55:84:6d:af:62:a3:04:c5:f1:1b:1e:c7:ab:a7:a0:ad:92:
c1:c8:a5:0e:7d:a4:b4:de:2a:cd:00:f1:af:af:7d:3f:25:32:
60:b3:62:8c:9b:08:b2:21:33:d3:e7:96:20:5d:1a:3d:c9:45:
56:b4:0e:0f:d8:72:49:d9:00:4b:1d:8f:67:08:e8:b0:3d:c7:
54:00:2b:e0:04:bb:a3:96:5c:66:42:1d:d6:4b:55:37:56:55:
af:c7:79:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:14:45 2025 by rpki-client