Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/rZskaxTYLO9tg3H9tZEgGe0Gq0o.roa
File: rZskaxTYLO9tg3H9tZEgGe0Gq0o.roa (raw, json)
Hash identifier: 1QVOgAhm40kuuPe0y1EdBQb8Tv4fwVEi/sWX5/ivIik=
Subject key identifier: AD:9B:24:6B:14:D8:2C:EF:6D:83:71:FD:B5:91:20:19:ED:06:AB:4A
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 01856BE5876C3CE0649EB2812A7E1A9DFAA0
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/rZskaxTYLO9tg3H9tZEgGe0Gq0o.roa
Signing time: Sun 01 Jan 2023 05:54:42 +0000
ROA not before: Sun 01 Jan 2023 05:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47692
IP address blocks: 193.105.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:87:6c:3c:e0:64:9e:b2:81:2a:7e:1a:9d:fa:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Jan 1 05:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad9b246b14d82cef6d8371fdb5912019ed06ab4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:bc:1a:f1:d8:3b:07:3b:06:43:1e:9f:9a:
7c:a3:c9:64:d4:f6:d1:5a:9d:67:e4:3e:f6:d7:4b:
57:0d:b3:01:96:d2:28:23:b4:c2:51:a8:aa:76:a6:
b2:18:ef:51:68:a1:58:82:c4:cf:a1:2e:62:d8:15:
13:26:eb:18:f0:91:22:07:27:87:4a:62:a7:64:6d:
ca:47:f6:be:30:aa:47:7b:c4:80:1e:bd:ed:5a:bd:
bc:4e:07:90:c6:e2:5f:05:9e:ac:92:83:20:c4:72:
57:1f:38:7f:40:cb:86:ea:bc:3e:14:d1:53:aa:dd:
cb:fe:28:96:9f:fe:bd:7c:68:67:a9:23:63:1d:b8:
a7:d2:4c:03:f7:de:76:7c:71:08:ec:a9:35:0f:1e:
11:67:6f:f4:35:3a:86:58:ef:8c:3e:63:f4:c1:b9:
58:7a:ac:19:d9:55:b8:09:b2:a5:dd:34:5e:09:47:
25:a7:e6:3a:5a:f9:58:8e:a3:a6:e8:f6:3f:28:ee:
69:d8:a4:9f:7e:7b:0d:d1:e8:f7:3a:32:71:00:f1:
17:b8:45:dd:5d:91:cd:24:83:82:17:7e:57:0c:05:
86:95:ed:ce:48:7f:82:07:71:84:95:eb:7e:1a:0c:
cd:f0:4c:fe:1e:dc:53:26:5e:b6:b1:1f:23:72:c9:
31:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9B:24:6B:14:D8:2C:EF:6D:83:71:FD:B5:91:20:19:ED:06:AB:4A
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/rZskaxTYLO9tg3H9tZEgGe0Gq0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.181.0/24
Signature Algorithm: sha256WithRSAEncryption
67:83:5e:ed:6f:a6:92:1c:5c:68:10:d4:b4:80:f8:37:f7:7b:
b5:6b:26:23:06:93:a5:cb:ca:2e:77:42:bb:9b:94:c6:e6:aa:
2c:2c:61:3f:55:af:ae:b9:71:61:f1:b2:0b:eb:bd:77:35:26:
34:a0:37:20:4e:91:5a:01:e9:99:41:80:80:24:0a:24:20:b1:
b6:fe:77:02:57:0b:ef:9f:2b:b3:48:5c:cc:fe:e9:7b:02:9c:
05:e7:54:6f:5a:e4:9c:ef:59:83:aa:bb:48:60:8d:cf:0d:60:
d4:90:81:1b:dd:cf:76:ce:18:69:7b:1c:0d:17:11:88:3a:fe:
a6:ba:ea:76:27:d1:0a:1a:0a:09:33:8d:b5:e6:42:0c:c8:95:
73:e5:3d:26:ce:43:ca:fa:2f:cd:23:46:29:5b:cd:73:64:a1:
b8:c7:8b:3a:b1:d2:2f:bd:63:f7:a1:7f:62:06:88:9f:b9:79:
56:67:3c:85:61:a6:fc:16:99:f2:f1:3b:6b:6d:d9:92:43:59:
8f:02:88:4e:60:e8:91:4d:b6:b5:2e:1f:b2:0c:c9:ac:d4:ed:
1a:18:e1:45:e9:1d:43:0f:50:f6:6e:a9:22:18:81:61:13:b0:
42:60:4c:71:cd:c9:2b:86:f0:ea:d5:03:24:82:19:8d:a3:54:
af:94:97:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:12 2025 by rpki-client