Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/Bh8bKPFVO3rIY8j8CASKQwlYVJs.roa
File: Bh8bKPFVO3rIY8j8CASKQwlYVJs.roa (raw, json)
Hash identifier: N+236tiVpqSSGE6GLhxPouFk3l4ob29lg4Mc8j8X5y0=
Subject key identifier: 06:1F:1B:28:F1:55:3B:7A:C8:63:C8:FC:08:04:8A:43:09:58:54:9B
Certificate issuer: /CN=f353c73f1fbf4bfb46d06750e25660cda1d801b1
Certificate serial: 018AFE78B5403BF1D7783366902DE29C2CFD
Authority key identifier: F3:53:C7:3F:1F:BF:4B:FB:46:D0:67:50:E2:56:60:CD:A1:D8:01:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81PHPx-_S_tG0GdQ4lZgzaHYAbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/Bh8bKPFVO3rIY8j8CASKQwlYVJs.roa
Signing time: Thu 05 Oct 2023 06:13:58 +0000
ROA not before: Thu 05 Oct 2023 06:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 193.162.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:78:b5:40:3b:f1:d7:78:33:66:90:2d:e2:9c:2c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f353c73f1fbf4bfb46d06750e25660cda1d801b1
Validity
Not Before: Oct 5 06:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=061f1b28f1553b7ac863c8fc08048a430958549b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:78:8e:ed:52:19:fd:67:4d:f9:ed:b1:db:
9a:21:6b:17:76:dc:08:d9:5d:6e:c6:64:4f:a9:09:
b9:ea:8d:6f:69:34:b6:48:1c:35:e2:7d:a8:16:2b:
08:36:d2:2f:b7:8f:8f:eb:c8:b0:9c:d5:18:c2:4f:
3c:78:f0:24:7c:d1:f9:61:25:7a:ce:3a:7e:82:b5:
e4:b1:cd:60:de:1c:84:06:99:34:99:ae:e2:c0:fc:
9a:ef:cf:aa:9b:b5:09:46:99:9e:68:23:bd:54:2f:
d8:18:ee:0c:f6:2d:11:57:06:ec:ab:c3:12:7e:cf:
02:3c:85:5f:06:5c:a0:c0:ab:87:10:73:17:cf:3e:
95:fb:6d:6d:75:8b:5e:25:57:b1:1b:02:45:b6:4d:
89:06:2e:f7:ef:9e:01:22:29:4a:32:0a:1c:91:ff:
0b:b8:bd:c9:d0:92:09:b7:1b:cb:33:a4:4c:78:19:
62:f6:6c:b1:b8:9e:8a:24:1b:57:fe:76:fc:28:0c:
9b:0e:5c:69:0c:75:94:01:54:db:e1:8a:22:75:d5:
9f:57:da:0a:04:d3:c8:fa:04:5f:eb:10:c8:8c:d6:
59:2d:68:12:b0:e2:2a:0e:9d:d2:b7:10:0f:9b:9b:
a7:42:f3:6c:8f:28:e9:89:38:25:7f:b8:1a:66:6d:
48:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1F:1B:28:F1:55:3B:7A:C8:63:C8:FC:08:04:8A:43:09:58:54:9B
X509v3 Authority Key Identifier:
keyid:F3:53:C7:3F:1F:BF:4B:FB:46:D0:67:50:E2:56:60:CD:A1:D8:01:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81PHPx-_S_tG0GdQ4lZgzaHYAbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/Bh8bKPFVO3rIY8j8CASKQwlYVJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/81PHPx-_S_tG0GdQ4lZgzaHYAbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.35.0/24
Signature Algorithm: sha256WithRSAEncryption
35:ba:37:41:71:34:c2:b0:17:52:e1:93:24:ef:bc:c3:96:53:
0b:60:2f:92:49:46:c6:42:ef:88:0c:88:a6:d2:e6:b2:84:68:
ad:9e:c3:27:c6:92:38:e0:b9:6d:75:c8:31:15:0d:b0:30:66:
7a:58:6f:96:2d:4a:a1:d6:3d:c5:59:99:d1:08:f4:63:64:55:
84:68:f8:0a:23:3f:d5:c2:bd:b0:70:c4:3f:9e:05:f3:82:93:
e6:a8:c4:2d:82:5c:5c:8d:e5:5a:67:9b:b5:91:ed:54:54:00:
2d:e1:ec:00:d8:19:73:97:1f:03:04:ea:b9:a4:f4:79:e2:c1:
47:5a:e1:0d:3f:09:8b:b8:dc:9f:4d:d9:2c:fc:e4:46:42:86:
d5:27:9b:9c:19:85:db:9f:78:a3:29:dd:aa:6f:6e:4c:5d:fc:
c2:81:67:bd:55:0a:8a:79:48:5d:d8:98:82:c0:8a:0f:8e:b7:
01:8e:b2:74:d5:9d:13:69:e2:ed:12:b0:be:35:b0:1d:f8:12:
4d:22:ef:d0:8e:40:46:e8:cd:16:c7:b9:7c:2a:41:53:64:e0:
65:8a:96:93:2a:b9:5c:2e:3e:18:22:c7:49:e6:8e:af:24:76:
61:2f:5b:b3:06:2b:fb:2e:4a:56:88:a0:a4:ef:3f:af:79:f7:
e5:86:e0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:05 2025 by rpki-client