Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/f17562-3020-46ef-9cff-a772e5834fd2/1/SSxwv8YqMdwDXSyPSVMtQHH0r_k.roa
File: SSxwv8YqMdwDXSyPSVMtQHH0r_k.roa (raw, json)
Hash identifier: n9jdkrfDEie4nbxoZTUAGP7DeYDWWP8hLnlVOe5RGLA=
Subject key identifier: 49:2C:70:BF:C6:2A:31:DC:03:5D:2C:8F:49:53:2D:40:71:F4:AF:F9
Certificate issuer: /CN=17ec31441691b859b347fd17217a5e5d1b0be303
Certificate serial: 018A71EC6C203E13EAC461F6B1F14A1FF8E4
Authority key identifier: 17:EC:31:44:16:91:B8:59:B3:47:FD:17:21:7A:5E:5D:1B:0B:E3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F-wxRBaRuFmzR_0XIXpeXRsL4wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/f17562-3020-46ef-9cff-a772e5834fd2/1/SSxwv8YqMdwDXSyPSVMtQHH0r_k.roa
Signing time: Thu 07 Sep 2023 23:13:54 +0000
ROA not before: Thu 07 Sep 2023 23:13:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 194.107.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:71:ec:6c:20:3e:13:ea:c4:61:f6:b1:f1:4a:1f:f8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17ec31441691b859b347fd17217a5e5d1b0be303
Validity
Not Before: Sep 7 23:13:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=492c70bfc62a31dc035d2c8f49532d4071f4aff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2e:92:fe:75:ff:f7:b9:77:3a:08:19:af:1f:
f1:7f:c0:14:3f:bb:66:07:0a:14:6e:48:86:0b:bc:
8b:25:83:58:ab:ce:ee:e1:73:79:61:fe:38:af:11:
5f:ad:cc:5b:54:37:d4:e3:6e:cd:ac:f2:e4:71:0c:
08:1d:51:36:64:f9:83:88:14:fd:d0:d3:32:57:5b:
b0:27:f3:c8:e8:59:64:b7:4a:95:4a:9a:f4:ce:c9:
45:04:55:1a:c0:88:62:56:62:d1:96:03:36:61:ca:
96:f9:7e:83:56:fb:a5:60:2f:7d:f3:f6:f3:95:ce:
b6:23:05:2f:ea:08:9b:e0:89:a2:54:c7:3d:84:ea:
3f:e3:57:07:e6:b3:68:f5:6d:30:4f:be:63:5c:94:
f1:e4:46:3c:25:be:2d:71:a0:fa:88:17:fc:53:a7:
c3:36:9d:4e:2e:6c:38:9d:7f:ca:be:47:d0:06:5b:
b8:df:b7:ca:be:34:21:cc:f0:16:b0:66:00:8a:2e:
54:ac:49:f1:55:26:19:c8:70:e2:fd:84:ef:f8:82:
9c:8e:06:56:6b:a2:44:70:65:17:5f:e1:b3:b5:a1:
aa:63:78:71:38:12:d1:f3:f7:8c:ba:15:07:ca:4e:
ce:22:4e:ea:f2:bb:b7:76:90:f5:f8:e6:b2:df:74:
fa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2C:70:BF:C6:2A:31:DC:03:5D:2C:8F:49:53:2D:40:71:F4:AF:F9
X509v3 Authority Key Identifier:
keyid:17:EC:31:44:16:91:B8:59:B3:47:FD:17:21:7A:5E:5D:1B:0B:E3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F-wxRBaRuFmzR_0XIXpeXRsL4wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f17562-3020-46ef-9cff-a772e5834fd2/1/SSxwv8YqMdwDXSyPSVMtQHH0r_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f17562-3020-46ef-9cff-a772e5834fd2/1/F-wxRBaRuFmzR_0XIXpeXRsL4wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.126.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:39:c4:ce:8c:8d:d6:0c:9f:02:a9:43:ef:6a:90:2c:ee:b9:
a6:5f:ea:8a:b8:2b:08:86:2f:bf:b5:84:8a:ef:9e:39:cb:ac:
71:fe:aa:1d:9f:b6:a1:a9:e3:79:e0:10:d3:dd:2b:76:82:49:
3e:42:21:0d:ee:b2:c4:29:b2:82:ca:ee:8d:a9:5b:22:d9:0a:
c7:37:b9:18:04:e7:bf:ac:48:d2:62:46:76:ad:6d:f8:96:f8:
73:f5:3d:57:05:8f:0b:d1:1a:4a:c9:3a:93:83:5c:bb:00:23:
71:67:94:0f:67:40:e9:55:96:2f:51:07:d4:e3:6c:95:94:c6:
fb:ed:95:d5:a4:f3:8a:b9:d3:a6:00:93:87:90:0d:f3:28:5b:
01:7a:23:8d:e3:a3:67:f5:86:be:3d:b2:bb:64:c5:f2:b1:6a:
d6:2b:3a:a9:ed:3a:eb:34:bf:a5:4a:ca:7a:60:35:83:89:0a:
0a:69:64:53:dc:3c:11:e7:08:b9:05:08:9e:d5:a6:bb:3a:a8:
8c:b1:3d:ef:4e:9e:14:ca:4e:36:ae:d8:b2:3a:f0:9a:30:64:
b7:ea:1a:fe:43:51:c1:aa:03:8a:2b:6f:46:ea:b9:6b:00:65:
ec:9e:2a:59:28:50:8c:f7:d7:0d:77:49:d0:06:26:8a:3b:2a:
06:80:4b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:54 2025 by rpki-client