Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/FwA5SDarY2wBEjeVnV9VhoISneA.roa
File: FwA5SDarY2wBEjeVnV9VhoISneA.roa (raw, json)
Hash identifier: CsMkPQaskOy5OqWgvdpxpzDnYGdeq4UIPJK+HY+wV28=
Subject key identifier: 17:00:39:48:36:AB:63:6C:01:12:37:95:9D:5F:55:86:82:12:9D:E0
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 0185738FC2B821F6032AA30D90765A83A410
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/FwA5SDarY2wBEjeVnV9VhoISneA.roa
Signing time: Mon 02 Jan 2023 17:37:59 +0000
ROA not before: Mon 02 Jan 2023 17:37:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 194.56.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:c2:b8:21:f6:03:2a:a3:0d:90:76:5a:83:a4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Jan 2 17:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1700394836ab636c011237959d5f558682129de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:a8:18:b4:58:48:9e:59:6d:a6:11:af:9e:
bc:f0:d7:b5:70:18:cf:24:76:fd:a2:d9:be:66:7e:
84:b7:b5:63:2b:82:47:8d:33:dc:14:52:2e:84:64:
87:4c:ff:6c:4f:8a:7e:9e:ad:ef:09:f5:63:10:57:
db:0b:f5:1a:97:9a:7a:43:cd:bf:51:65:c3:08:c7:
94:55:92:d2:61:2b:23:b4:0b:6a:96:ca:b6:79:13:
3e:94:25:17:18:f0:34:d3:ae:32:70:38:f7:83:ae:
ff:f3:b4:00:7b:32:92:12:32:21:0b:7b:2c:ff:1b:
95:4b:2a:29:1d:9d:a1:49:1a:75:63:cf:f2:cc:77:
5b:43:38:37:ef:87:00:6d:0d:1b:82:92:4f:dd:66:
72:28:40:8f:35:45:1e:02:16:50:1a:15:32:54:87:
77:5d:b2:7d:b4:a2:01:0f:9e:85:e7:f6:e1:70:c0:
c8:ca:ba:7a:3c:6c:75:e7:85:e0:01:96:ef:b9:02:
ae:ad:df:b6:d4:6a:12:dd:a5:1d:4e:81:fa:88:b9:
8a:c0:d8:eb:15:3d:b8:e4:6f:ed:1b:f4:42:ce:2f:
4e:ad:fc:df:51:44:28:3e:89:20:ad:2f:6f:63:ec:
27:ea:6b:54:6d:51:f3:81:bb:67:f7:90:5f:1d:a0:
17:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:00:39:48:36:AB:63:6C:01:12:37:95:9D:5F:55:86:82:12:9D:E0
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/FwA5SDarY2wBEjeVnV9VhoISneA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.178.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3c:06:2b:9e:81:d1:96:eb:b8:2a:33:f8:e4:be:d9:3d:f6:
19:6b:12:58:fb:a6:c3:44:96:a2:00:0b:f1:5e:8f:90:db:62:
ec:3c:a8:6a:2c:25:a9:cf:06:8f:82:1f:0c:51:e6:67:49:a6:
6a:4f:76:ba:cd:e2:49:3d:ab:cc:97:19:24:15:de:ab:ce:3d:
b9:0d:84:b1:12:90:19:83:9a:e9:6d:90:ce:75:a3:d5:1a:c1:
13:6c:b6:f1:e1:64:66:90:64:78:3c:bc:07:c8:f7:5e:58:2d:
10:12:72:13:63:8b:af:65:52:b7:9c:d0:ed:4e:79:7d:49:a9:
1e:85:c3:c6:2d:f9:e7:44:4c:60:f6:ae:ce:10:b9:d7:87:01:
99:7a:c7:d1:16:e1:b9:ee:2f:94:3e:e4:80:ed:d8:cf:a4:4a:
70:86:d8:3a:a1:a6:c5:d2:d3:1e:03:bb:a1:11:f6:0c:b2:a0:
22:51:24:ba:23:27:a8:ff:ca:81:00:58:5f:95:4c:ea:60:79:
78:e8:7c:f4:a5:25:1c:41:f4:b8:25:00:5d:eb:cc:06:e6:2e:
5f:81:7d:7e:d3:6e:1f:e5:d3:a4:11:fc:36:02:f1:d5:01:21:
e7:31:dc:c9:36:01:3e:3b:1e:05:6b:9a:2e:28:2a:99:d3:85:
da:2a:4e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:25:28 2025 by rpki-client