Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/uC8ZPMyr8CRPfDU6vxwgqM8DpNg.roa
File: uC8ZPMyr8CRPfDU6vxwgqM8DpNg.roa (raw, json)
Hash identifier: ZGQmV6kWqa+fwORMj62ejl9f//sJb+vzEQq9VXrrtf4=
Subject key identifier: B8:2F:19:3C:CC:AB:F0:24:4F:7C:35:3A:BF:1C:20:A8:CF:03:A4:D8
Certificate issuer: /CN=1e5fe0ae25c6eae27763dcdec51a0e10ebc6c374
Certificate serial: 01857042A07C6823A2DC2EFF857E554C5B54
Authority key identifier: 1E:5F:E0:AE:25:C6:EA:E2:77:63:DC:DE:C5:1A:0E:10:EB:C6:C3:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/uC8ZPMyr8CRPfDU6vxwgqM8DpNg.roa
Signing time: Mon 02 Jan 2023 02:14:52 +0000
ROA not before: Mon 02 Jan 2023 02:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41072
IP address blocks: 193.104.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a0:7c:68:23:a2:dc:2e:ff:85:7e:55:4c:5b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5fe0ae25c6eae27763dcdec51a0e10ebc6c374
Validity
Not Before: Jan 2 02:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b82f193cccabf0244f7c353abf1c20a8cf03a4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:34:bf:bd:59:7a:e0:6b:a1:63:9c:bb:44:53:
be:12:34:0c:c8:90:23:82:48:30:46:6a:a0:bc:f3:
40:90:62:ea:20:4b:03:71:86:02:ba:09:ed:58:f6:
21:f3:1c:f4:d9:49:f8:e5:b0:f4:c4:b6:1b:c1:22:
c0:8a:90:34:f0:b6:9f:65:1a:89:2a:17:ee:19:41:
e5:52:e4:ce:4a:09:47:ef:74:17:0f:b9:99:81:42:
b4:e0:c5:30:38:56:63:99:68:07:e9:7a:07:3a:ed:
a5:08:7f:01:5c:ca:20:ae:7d:f1:8f:d0:f4:05:52:
63:d7:60:ba:09:66:45:fe:d3:7c:87:96:c9:68:9a:
f0:94:3d:44:7c:6a:50:72:25:a7:e9:52:6d:a2:12:
72:1e:5c:9f:0e:94:db:32:9f:0e:ab:86:47:24:69:
17:50:28:ce:3a:7b:50:ce:ab:9b:dc:7b:33:bb:83:
df:5d:08:d5:91:d5:9e:67:db:7c:79:10:40:ca:af:
6c:f1:32:44:63:84:39:52:d7:00:b8:06:93:a0:1b:
ef:41:aa:b0:eb:b6:01:31:1f:41:20:42:06:fc:a3:
bd:8a:ce:a3:2a:d0:41:66:d5:fa:9b:4a:c7:89:aa:
7c:8c:1e:21:01:ec:a9:4b:6c:15:72:14:e5:ea:2d:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2F:19:3C:CC:AB:F0:24:4F:7C:35:3A:BF:1C:20:A8:CF:03:A4:D8
X509v3 Authority Key Identifier:
keyid:1E:5F:E0:AE:25:C6:EA:E2:77:63:DC:DE:C5:1A:0E:10:EB:C6:C3:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/uC8ZPMyr8CRPfDU6vxwgqM8DpNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.0.0/24
Signature Algorithm: sha256WithRSAEncryption
10:60:dc:95:8e:25:20:f9:fc:c5:31:27:48:fa:e9:ad:50:15:
57:81:14:73:3a:1c:45:11:56:2c:e0:2f:80:8a:68:c3:87:1f:
d5:a9:29:2b:47:33:fb:23:66:b2:dc:60:fb:2c:ce:eb:b2:bf:
bf:c3:65:c3:5d:5e:2b:39:bd:33:a0:a3:56:62:6d:10:f1:6e:
2b:b0:d0:4b:2a:79:58:96:08:c5:e3:42:5f:52:05:27:d6:33:
54:4d:60:c3:f2:b1:85:3c:c2:64:92:ec:a9:c4:74:0d:2e:92:
1d:43:06:d0:b0:13:2b:98:60:d2:b5:0d:f0:e9:d3:c1:d3:e5:
f0:77:f9:54:93:ab:73:19:eb:5b:eb:54:e8:df:7f:24:cd:a3:
2d:c2:0b:e8:d5:9f:0f:01:10:65:f7:34:db:d7:45:c8:98:26:
ee:23:87:20:fe:31:37:6d:fa:e6:e3:1e:61:ed:73:58:12:6d:
81:b0:91:aa:1f:6a:7c:ad:f7:98:a8:9f:5b:80:da:99:05:6f:
ca:ce:60:7d:bb:ce:e5:8d:c1:3a:b1:12:fd:9e:39:73:1c:2b:
91:78:2e:53:51:a8:c2:4b:b1:6f:69:d8:da:a9:41:f1:3b:6b:
1c:e8:16:ae:58:04:7b:21:01:0e:45:6f:ef:1e:08:92:59:67:
da:2e:70:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:24 2025 by rpki-client