Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/AuXTNnCCxlP4zz5Zn4ekjLi53wU.roa
File: AuXTNnCCxlP4zz5Zn4ekjLi53wU.roa (raw, json)
Hash identifier: U1FzfnLwrPuIsotT+BpRu7lV45URejc6x/mLwZLzfT0=
Subject key identifier: 02:E5:D3:36:70:82:C6:53:F8:CF:3E:59:9F:87:A4:8C:B8:B9:DF:05
Certificate issuer: /CN=f59d56c52c7733f83be774afa47bbd55d28797ac
Certificate serial: 059363F5
Authority key identifier: F5:9D:56:C5:2C:77:33:F8:3B:E7:74:AF:A4:7B:BD:55:D2:87:97:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Z1WxSx3M_g753SvpHu9VdKHl6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/AuXTNnCCxlP4zz5Zn4ekjLi53wU.roa
Signing time: Sat 01 Jan 2022 05:03:21 +0000
ROA not before: Sat 01 Jan 2022 05:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202368
IP address blocks: 194.34.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93545461 (0x59363f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59d56c52c7733f83be774afa47bbd55d28797ac
Validity
Not Before: Jan 1 05:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02e5d3367082c653f8cf3e599f87a48cb8b9df05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:30:ac:1c:b2:04:36:8f:57:fc:79:0e:9c:b4:
53:7f:a2:dc:eb:e1:72:13:39:16:a0:3f:c6:ab:af:
a2:8a:67:99:97:78:fd:15:5d:64:b8:e2:3c:86:55:
b7:62:d6:55:3e:2f:e4:ab:b9:0b:85:48:76:8a:b4:
b2:a2:a7:cd:a3:ae:f9:65:20:f4:3d:be:07:7f:0a:
90:83:6b:c7:a3:1a:bf:bc:56:ba:c7:c2:e5:8d:74:
c1:73:1c:a1:82:ef:9d:9e:87:5d:42:f6:55:5e:2f:
5f:c8:a1:7e:24:c6:5b:38:46:b2:88:e2:15:96:8b:
de:23:2e:0f:9e:4c:c5:10:df:38:2e:b6:fe:e1:b8:
b7:de:31:de:b3:65:3f:de:f1:c3:08:0e:37:10:c2:
6b:cb:8c:a2:c3:ae:1d:99:2a:71:93:68:5a:3a:aa:
ee:2a:15:2f:eb:ca:54:8f:0f:c5:25:d4:cc:71:58:
12:f4:1a:45:43:23:0d:0d:35:cb:94:d8:3e:e7:f6:
66:3c:49:cb:c0:19:4c:70:88:c2:91:66:5f:7e:a6:
e1:74:ac:d3:7f:d6:e1:00:ad:76:54:1e:90:ab:99:
b4:bb:0f:1e:d0:23:5d:5e:ea:b5:3a:94:cc:88:18:
7a:c2:60:18:28:8a:fd:e6:01:ea:e2:d4:2c:fe:5a:
04:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E5:D3:36:70:82:C6:53:F8:CF:3E:59:9F:87:A4:8C:B8:B9:DF:05
X509v3 Authority Key Identifier:
keyid:F5:9D:56:C5:2C:77:33:F8:3B:E7:74:AF:A4:7B:BD:55:D2:87:97:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Z1WxSx3M_g753SvpHu9VdKHl6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/AuXTNnCCxlP4zz5Zn4ekjLi53wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/9Z1WxSx3M_g753SvpHu9VdKHl6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.163.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:66:b8:88:ae:15:94:91:d7:60:1d:4a:11:04:a9:41:78:4f:
db:d8:78:36:8f:11:73:6c:d9:35:e1:98:a4:41:86:8c:b0:70:
ab:26:9d:a4:d0:ae:e2:4a:c4:56:a5:b4:e1:7f:d4:f9:52:e0:
59:a7:12:49:85:a8:2c:d8:82:26:39:6c:22:b9:ba:bf:15:1c:
16:ef:4d:60:d3:53:86:59:82:d3:9c:82:32:a0:66:66:bb:89:
a7:f4:a5:81:9a:48:11:82:c7:ee:3e:af:bb:49:54:89:a4:3b:
89:71:d2:8c:1c:a2:b8:46:29:4a:d3:91:a0:42:75:78:88:76:
10:d4:d7:60:36:da:86:bd:3d:c1:34:a6:45:8e:6e:7f:cf:ff:
76:3c:31:f2:43:f1:58:49:7c:ac:6b:c7:d4:c7:28:db:91:dd:
26:50:98:c4:31:77:66:77:fe:cb:e2:b4:7f:d4:64:9e:89:d3:
46:4a:f3:03:fb:1a:ca:9b:b5:a2:e9:76:39:ac:1c:06:40:eb:
60:10:ea:d0:4d:39:64:5b:95:f5:da:77:f5:84:2a:90:6c:07:
83:51:27:9a:03:6a:7b:05:c7:c1:e2:53:80:b9:03:4f:b0:e9:
74:d9:dd:85:2d:a3:d3:0e:6e:c7:3c:a2:a3:c9:9c:33:6a:ab:
95:78:a6:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:45 2025 by rpki-client