Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/OIVrER6pTz5d0iho10LUfkFNbB4.roa
File: OIVrER6pTz5d0iho10LUfkFNbB4.roa (raw, json)
Hash identifier: 8Vjiqcd1nteUStxxpwRJ3oTHW2e5TcQ0y1n0m3BnKRs=
Subject key identifier: 38:85:6B:11:1E:A9:4F:3E:5D:D2:28:68:D7:42:D4:7E:41:4D:6C:1E
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 0D254064
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/OIVrER6pTz5d0iho10LUfkFNbB4.roa
Signing time: Sat 01 Jan 2022 12:02:14 +0000
ROA not before: Sat 01 Jan 2022 12:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47692
IP address blocks: 193.105.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220545124 (0xd254064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Jan 1 12:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38856b111ea94f3e5dd22868d742d47e414d6c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:1c:74:3f:e3:13:d0:3b:03:f9:8f:79:ba:
0f:22:2c:78:f5:13:9f:73:fb:1a:56:94:2a:f5:41:
14:98:b2:39:c4:98:0a:c8:f9:7a:01:b1:1a:a1:33:
d7:5c:1b:b1:86:1e:f0:0a:18:f2:bd:81:80:48:3a:
5b:7f:e4:c1:73:ef:44:06:e9:a4:2c:b8:f7:31:91:
51:bc:ba:dd:df:73:52:cf:40:c2:a6:98:f6:1e:48:
de:a9:f0:4b:64:fd:15:99:f1:cd:6c:55:88:50:c1:
4a:11:cc:28:5d:a6:67:07:c0:39:9d:67:c2:68:28:
6b:d7:62:9f:45:6a:62:d2:d3:c1:dd:e8:29:6f:66:
cb:2f:8c:6b:36:74:de:56:29:15:a8:9c:68:2f:bb:
9a:aa:d2:18:e6:02:8e:08:aa:31:aa:9a:35:88:80:
ea:bb:ef:27:12:fa:21:d8:d6:bb:e8:0d:c9:b2:b4:
99:f4:c6:81:f0:30:9c:de:f4:2d:28:b3:c1:72:01:
ab:fe:4d:78:6e:e5:ea:81:ce:ca:e9:ff:19:f5:09:
27:ba:e8:ed:ae:b1:34:b7:63:a9:ad:b2:f2:29:41:
85:98:ce:7b:7c:80:77:a4:3d:2b:9b:9d:6d:7c:31:
b8:44:bf:da:1d:05:58:97:80:7a:76:3e:ad:2f:cd:
d3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:85:6B:11:1E:A9:4F:3E:5D:D2:28:68:D7:42:D4:7E:41:4D:6C:1E
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/OIVrER6pTz5d0iho10LUfkFNbB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.181.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f9:a9:5e:e7:54:67:7b:cc:e8:63:ac:01:15:ca:03:77:5f:
34:14:ca:1a:87:d1:e2:2a:d6:5e:9f:fb:6b:1f:e7:b1:7a:f5:
7b:52:76:8a:08:37:cd:06:7b:ec:3e:af:2d:cf:23:27:e6:ea:
72:66:94:b8:27:94:e8:4c:ed:7f:7d:f9:c3:bc:21:73:8a:30:
bf:1a:36:17:b7:8f:3b:b1:ff:40:81:d5:56:b2:47:46:49:96:
40:ab:89:91:2a:6c:5f:d1:2c:33:d4:8d:26:46:4a:6c:90:93:
d6:ae:4e:7a:d6:d1:30:ed:a6:40:d5:b2:e2:b4:5a:c4:79:5c:
a8:dd:5d:4a:42:11:e7:0f:5f:9d:20:8a:eb:a1:d3:25:b7:95:
7c:2b:34:88:13:da:da:ba:c6:2a:35:37:0e:c6:95:b2:96:6b:
d7:cf:14:d3:04:63:a2:3e:87:11:c9:fb:5c:bb:ba:2c:82:ed:
59:31:09:e5:5b:fc:cc:9d:00:99:38:ae:69:dc:0d:f4:80:19:
1f:c4:95:03:0c:d4:3d:51:57:e5:bb:8c:c1:c8:7e:9a:f2:a0:
9f:9e:e5:b3:dd:82:32:45:6c:bb:65:03:e6:77:04:0c:1d:c6:
6b:95:3b:05:e8:cf:4b:ae:80:a6:b9:11:5c:e5:ba:26:cb:9a:
1e:f2:cc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:57 2025 by rpki-client