Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d27da2-2754-4d7b-af90-6e02af0a4994/1/pyJLdQ2yjYq7URScVVy79sRPTdQ.roa
File: pyJLdQ2yjYq7URScVVy79sRPTdQ.roa (raw, json)
Hash identifier: wpbYwKANNO4SBE9WWh8HuvLiF1mJpZrIW4dEGsOIFIg=
Subject key identifier: A7:22:4B:75:0D:B2:8D:8A:BB:51:14:9C:55:5C:BB:F6:C4:4F:4D:D4
Certificate issuer: /CN=a0937525577cb2af1b285c96431dbd600f57cbe8
Certificate serial: 018452D659AC8FCDC83C911F2459EB969E72
Authority key identifier: A0:93:75:25:57:7C:B2:AF:1B:28:5C:96:43:1D:BD:60:0F:57:CB:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJN1JVd8sq8bKFyWQx29YA9Xy-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/d27da2-2754-4d7b-af90-6e02af0a4994/1/pyJLdQ2yjYq7URScVVy79sRPTdQ.roa
Signing time: Mon 07 Nov 2022 16:04:50 +0000
ROA not before: Mon 07 Nov 2022 16:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24944
IP address blocks: 194.50.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:d6:59:ac:8f:cd:c8:3c:91:1f:24:59:eb:96:9e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0937525577cb2af1b285c96431dbd600f57cbe8
Validity
Not Before: Nov 7 16:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7224b750db28d8abb51149c555cbbf6c44f4dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8e:2d:a5:d6:c3:dd:f2:26:e1:62:ec:39:13:
02:8b:4d:09:b9:81:b8:f4:0d:57:38:48:d8:2e:5c:
6e:23:21:96:3a:1f:60:c9:8b:21:8d:06:d1:9e:99:
86:ce:5f:12:2e:56:ab:d9:c8:b5:b0:73:ad:27:37:
15:7a:ec:38:18:a5:a6:50:de:ba:97:c2:1e:a9:35:
98:0f:03:38:e7:27:9b:71:8d:2d:d3:c5:cb:58:a2:
d9:b2:99:a5:4d:d9:61:5f:1c:b7:fb:a1:ad:8f:fd:
7e:ea:4d:e4:2a:0d:f8:23:1f:21:c1:79:73:1d:17:
6b:e7:75:f6:52:6c:18:5e:c0:bf:b0:eb:83:9a:05:
82:ce:30:e2:7d:0b:43:1c:39:72:74:5c:65:3f:02:
1a:52:de:84:b7:17:b3:fe:e8:6a:3e:02:42:39:bd:
98:76:1a:0a:e8:83:82:78:c9:00:d7:29:2a:52:95:
57:85:48:60:53:da:24:1a:4a:84:a1:b2:61:03:b1:
28:f6:f6:90:70:ff:ed:8a:31:25:17:e9:37:60:ad:
31:2c:78:80:ff:a8:52:0f:a4:f1:18:bd:d3:9c:30:
11:e0:b1:7d:8e:4d:0d:11:75:a4:8c:82:5e:78:95:
0c:00:c9:c2:a3:c4:ce:20:68:cc:70:ee:55:26:f6:
ea:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:22:4B:75:0D:B2:8D:8A:BB:51:14:9C:55:5C:BB:F6:C4:4F:4D:D4
X509v3 Authority Key Identifier:
keyid:A0:93:75:25:57:7C:B2:AF:1B:28:5C:96:43:1D:BD:60:0F:57:CB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJN1JVd8sq8bKFyWQx29YA9Xy-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d27da2-2754-4d7b-af90-6e02af0a4994/1/pyJLdQ2yjYq7URScVVy79sRPTdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d27da2-2754-4d7b-af90-6e02af0a4994/1/oJN1JVd8sq8bKFyWQx29YA9Xy-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.84.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a0:27:3e:c6:51:4b:2b:43:26:01:be:fa:dd:78:0e:ff:02:
a2:6b:70:26:35:28:49:35:c2:ab:75:ee:f0:46:08:25:b7:09:
f7:82:83:53:3f:d0:96:92:c9:56:7e:3d:ca:df:48:d1:62:ed:
32:67:07:8b:d5:53:cf:84:ad:cd:e7:23:d9:e1:b2:81:d5:0a:
8c:88:81:e3:84:af:bf:44:03:2b:3e:9a:9e:e2:30:cf:9d:76:
4a:3e:be:e5:ff:fb:c2:15:40:0a:4a:26:6a:ba:bb:b0:bf:ec:
47:f4:6a:9b:fe:14:a5:bf:f0:1f:51:ba:9d:ce:d3:37:28:ae:
52:e5:53:0b:81:f7:21:77:8b:17:1d:9d:97:3b:c0:1f:1f:43:
17:e6:90:62:52:fa:25:66:0d:d3:9d:bd:07:9c:02:62:35:55:
ef:7f:49:21:4a:51:db:29:ed:6f:d2:03:44:40:7a:1e:72:71:
6d:32:f4:b4:d6:0b:cd:38:5a:fc:ce:5d:77:e9:ee:fd:36:3a:
72:62:28:f5:90:20:11:ba:72:c9:8f:42:03:16:be:d7:4b:ff:
1b:cd:ab:94:37:c9:c4:e8:4a:e2:41:d7:62:3d:2a:05:74:f8:
af:5d:84:c6:91:21:66:fe:36:60:ae:1b:ec:d9:8d:8c:e6:30:
a8:ba:e7:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:36 2025 by rpki-client