Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/RWPqhVkoNHUzz5FVBthLmsCDHy8.roa
File: RWPqhVkoNHUzz5FVBthLmsCDHy8.roa (raw, json)
Hash identifier: xnbhOQlJ1jCrhv6GVIH2KAsCbwLSegY2EiuB5/pdlvU=
Subject key identifier: 45:63:EA:85:59:28:34:75:33:CF:91:55:06:D8:4B:9A:C0:83:1F:2F
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: CF72C6
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/RWPqhVkoNHUzz5FVBthLmsCDHy8.roa
Signing time: Sat 01 Jan 2022 13:05:48 +0000
ROA not before: Sat 01 Jan 2022 13:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 193.163.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13595334 (0xcf72c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Jan 1 13:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4563ea855928347533cf915506d84b9ac0831f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f1:ec:d7:66:cc:31:ae:df:6d:91:2c:8e:fc:
23:d9:c1:d7:03:78:65:46:ff:c2:c8:d2:4d:eb:dd:
a8:86:53:a8:2f:10:bb:73:3a:f1:c2:02:34:8a:86:
c8:fe:8c:dd:ac:36:bf:fb:4c:0f:57:be:1c:f7:d5:
1e:7b:77:57:92:26:c2:d6:45:42:d5:50:86:b8:4d:
ab:61:de:e9:90:aa:f6:59:a5:04:07:b1:39:d8:2e:
dd:60:88:f4:cf:5a:35:3b:10:0b:c2:49:49:11:ef:
bb:85:65:54:9b:3a:39:da:14:82:f6:30:44:87:5e:
2e:65:77:00:e0:dd:dc:48:42:a4:b6:12:ef:a3:5e:
5f:bb:52:85:6c:94:80:c6:93:1b:2a:e6:bf:39:c4:
31:ed:b7:b4:24:50:1d:33:28:c5:3b:ea:6a:c1:40:
7f:8c:53:fc:af:1a:d6:13:52:ec:99:27:11:c0:b1:
de:f3:65:c8:e9:f4:17:73:d0:a2:3c:f4:6f:ba:df:
19:e6:fe:7d:eb:c8:4f:e0:e6:84:e6:b4:f0:cb:af:
bb:bb:75:1b:1b:a3:01:81:67:4d:24:95:85:b9:c8:
86:26:e3:f4:a8:55:18:b1:5e:ef:da:e2:f4:6b:79:
92:65:85:20:ce:38:c2:72:fa:34:f2:ff:68:bc:1a:
05:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:63:EA:85:59:28:34:75:33:CF:91:55:06:D8:4B:9A:C0:83:1F:2F
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/RWPqhVkoNHUzz5FVBthLmsCDHy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.198.0/24
Signature Algorithm: sha256WithRSAEncryption
13:93:c6:fc:12:8d:ad:07:d8:e5:37:f2:46:51:11:3b:c2:80:
eb:36:20:e7:ff:84:f9:23:14:b1:97:82:27:4e:5f:aa:64:42:
fd:88:9a:f5:3b:e6:b0:ed:7a:84:06:a8:34:e6:8d:2e:a7:81:
03:62:f1:22:36:6d:d9:ae:67:a0:2e:9f:62:65:a8:13:b6:be:
cb:a6:36:b9:f9:c6:7c:46:2f:0e:50:b4:a9:85:cd:aa:84:7b:
64:3c:7a:19:a2:5b:3a:c2:a0:a5:5e:a7:3c:21:39:98:b9:06:
82:56:b7:00:a0:78:6d:90:e1:54:59:81:1f:a4:14:5d:46:79:
f4:39:93:f9:10:a7:6d:ac:53:80:a4:5e:a2:60:52:b0:c4:a4:
49:aa:92:00:10:9a:93:e8:80:4a:22:f7:fd:b9:62:39:eb:56:
8d:58:35:f4:a6:b9:17:7c:9b:26:ca:0c:51:7c:5d:e3:ff:4d:
0d:5f:55:c0:2c:d8:5d:9d:7b:9c:38:a0:17:75:28:91:13:67:
99:f3:c3:9d:6d:07:aa:27:7e:ba:08:aa:39:89:f2:95:42:f8:
ec:97:5d:e2:d4:7e:42:47:a2:05:14:e4:0c:12:5d:b8:da:18:
e4:9b:50:b3:c6:1c:0f:74:71:61:2c:0d:d5:97:20:64:d5:75:
94:d7:9d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:37:05 2025 by rpki-client