Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/8d6cb0-0396-4f2b-aec3-47e3049830b0/1/98WTF1f2NTsMxI-c9S7RNeVzAL8.roa
File: 98WTF1f2NTsMxI-c9S7RNeVzAL8.roa (raw, json)
Hash identifier: w7TuXvlsQpLbvvwN7Eg8b/t172yTfA5+QPoUdBUK/Ts=
Subject key identifier: F7:C5:93:17:57:F6:35:3B:0C:C4:8F:9C:F5:2E:D1:35:E5:73:00:BF
Certificate issuer: /CN=ef584b511d96a4ae6c96300197f84f96a3afc246
Certificate serial: 017827
Authority key identifier: EF:58:4B:51:1D:96:A4:AE:6C:96:30:01:97:F8:4F:96:A3:AF:C2:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71hLUR2WpK5sljABl_hPlqOvwkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/8d6cb0-0396-4f2b-aec3-47e3049830b0/1/98WTF1f2NTsMxI-c9S7RNeVzAL8.roa
Signing time: Fri 29 Apr 2022 05:22:15 +0000
ROA not before: Fri 29 Apr 2022 05:22:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41486
IP address blocks: 194.9.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96295 (0x17827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef584b511d96a4ae6c96300197f84f96a3afc246
Validity
Not Before: Apr 29 05:22:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7c5931757f6353b0cc48f9cf52ed135e57300bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:66:b0:41:be:1f:67:ae:29:43:fa:31:64:e6:
09:3a:53:41:85:b9:08:21:42:12:14:f1:0b:35:32:
38:3e:81:09:52:85:56:8b:eb:1f:3a:11:67:31:8e:
7d:7d:66:2b:8a:ce:fc:a6:a9:1e:38:8a:83:ef:89:
c0:84:54:6a:b6:24:e7:29:cc:98:24:5a:61:af:29:
52:33:d0:3b:32:db:21:75:98:14:8d:28:2d:cf:92:
98:c5:ec:fa:2d:eb:c3:28:10:60:e9:6a:a4:3e:c5:
9c:15:bf:1b:7d:6b:85:c6:f3:d8:59:e7:7c:05:25:
e1:04:7e:fc:05:23:90:7a:c6:16:8d:2f:b6:ff:47:
69:4a:3d:1b:2d:fe:20:14:89:21:86:a5:26:af:60:
b7:a7:5b:84:98:61:40:0a:76:a0:90:cd:96:c2:8a:
8c:8c:bb:ae:90:72:2e:6d:38:54:ca:66:eb:dd:0c:
64:a0:1c:3b:f1:d1:96:90:de:51:5c:8d:ea:ee:e7:
85:a4:0c:41:d0:c9:d7:fc:20:2d:f7:58:46:85:eb:
87:d1:e3:4f:21:c7:18:32:57:c2:92:83:4b:af:72:
a2:81:73:ac:da:a7:ee:d5:45:e6:1e:71:4d:53:5c:
25:57:04:2b:55:67:77:22:18:ef:e9:a8:c8:c6:ce:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C5:93:17:57:F6:35:3B:0C:C4:8F:9C:F5:2E:D1:35:E5:73:00:BF
X509v3 Authority Key Identifier:
keyid:EF:58:4B:51:1D:96:A4:AE:6C:96:30:01:97:F8:4F:96:A3:AF:C2:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71hLUR2WpK5sljABl_hPlqOvwkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d6cb0-0396-4f2b-aec3-47e3049830b0/1/98WTF1f2NTsMxI-c9S7RNeVzAL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d6cb0-0396-4f2b-aec3-47e3049830b0/1/71hLUR2WpK5sljABl_hPlqOvwkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.60.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:ab:bf:2d:f4:e8:1f:aa:c8:9f:f1:95:b9:3a:9d:3d:cd:1a:
68:b3:f6:89:a3:d4:eb:13:42:87:96:e5:82:58:8f:46:d4:cd:
ae:6f:fa:cd:3a:8d:20:e6:74:71:cb:ea:00:4e:ff:f0:31:e0:
d9:89:7e:3c:9e:81:94:1e:2b:f8:f2:35:87:b8:90:68:3d:f9:
25:c0:25:69:75:38:09:9c:59:c3:1d:96:80:0b:be:05:cd:42:
8c:66:4c:e8:6c:67:fa:09:ba:9a:a9:63:c4:5a:b5:6b:5b:b0:
2b:f3:34:0f:0f:99:9c:31:23:2d:78:18:32:0e:60:4d:72:21:
78:a5:70:a3:83:f0:b0:65:4c:d7:9e:ff:01:df:5c:71:36:92:
d5:f0:dd:a7:85:46:f7:d1:0a:b5:b8:0a:e2:ad:cf:c5:56:fd:
4a:d6:01:06:a7:ae:e9:6a:38:a8:a1:e5:05:2d:d0:1a:72:de:
bd:c4:63:75:d2:33:c9:6d:96:60:fd:3f:aa:4a:a8:14:cc:d9:
c7:83:02:da:cd:b6:7d:6a:99:39:27:f6:ac:d2:c5:1a:be:6b:
65:f8:ff:09:68:44:1e:4a:3b:c0:e3:ca:89:ed:62:95:a9:3d:
c9:ab:15:a0:5f:15:58:b4:83:29:e2:12:70:85:2f:30:e2:0d:
02:37:46:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:25 2025 by rpki-client