Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/Oiye8dxh25nnarjhF3zla5yK9VU.roa
File: Oiye8dxh25nnarjhF3zla5yK9VU.roa (raw, json)
Hash identifier: LbcarPhfKWr4TvQjtPvBQNdtXbJBCtmhjK5gyr+JvuU=
Subject key identifier: 3A:2C:9E:F1:DC:61:DB:99:E7:6A:B8:E1:17:7C:E5:6B:9C:8A:F5:55
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 055A7F0F
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/Oiye8dxh25nnarjhF3zla5yK9VU.roa
Signing time: Sat 01 Jan 2022 07:55:31 +0000
ROA not before: Sat 01 Jan 2022 07:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 193.56.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89816847 (0x55a7f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Jan 1 07:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a2c9ef1dc61db99e76ab8e1177ce56b9c8af555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fe:89:a4:0f:2b:22:df:e3:b8:f1:75:e1:58:
01:68:18:bd:99:e1:c7:2b:3e:1e:d3:e2:90:53:71:
f7:69:e3:0b:d3:dc:cc:97:04:31:94:af:49:2f:c5:
fc:eb:37:75:76:a5:0b:12:9c:76:b3:ee:15:f4:27:
aa:cd:89:79:70:2f:20:03:54:56:6f:a7:fa:35:aa:
27:72:e1:dd:f1:f3:e0:f3:f5:78:0a:1a:6f:1a:4f:
c5:fd:9b:d6:40:e1:f9:45:3d:7e:12:18:da:1d:49:
c1:38:98:d0:8e:4d:6e:2d:ab:e1:28:e4:08:00:44:
4c:4b:70:58:65:6a:19:f9:f9:e5:26:55:19:e8:35:
cb:90:9b:5c:49:b0:04:24:cf:54:c4:01:35:8a:03:
68:5f:65:f1:6e:63:d0:70:6b:36:6d:d3:25:a0:dc:
96:8b:34:ec:3d:82:e1:ea:8b:96:5c:f2:45:cd:95:
fb:19:33:59:77:35:4f:54:ef:58:7d:2e:66:54:3b:
a0:25:31:0e:e3:46:3f:c4:80:1d:e7:be:a2:a2:45:
de:b3:f4:21:f0:05:11:3f:4d:dd:6a:cc:82:e6:ea:
7e:53:a2:bd:79:41:57:e4:f9:75:3a:a9:63:46:a5:
d0:6b:b3:2f:a5:32:8e:2f:ff:10:97:5d:fa:b8:92:
07:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2C:9E:F1:DC:61:DB:99:E7:6A:B8:E1:17:7C:E5:6B:9C:8A:F5:55
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/Oiye8dxh25nnarjhF3zla5yK9VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:97:fb:81:2c:a1:c0:03:3c:96:49:9d:41:4e:8b:96:20:d9:
20:1e:8a:ec:07:6a:db:08:1c:aa:5e:88:77:c4:db:7e:28:45:
49:d5:c5:37:3e:3a:e5:c4:b2:af:ad:ba:2f:64:55:27:8d:8a:
8d:c4:bf:96:82:07:0a:7b:0d:5f:d8:fa:70:06:4f:cf:a0:4c:
8f:da:0e:c8:03:05:a3:b5:61:f8:2e:36:d5:07:26:ff:74:37:
28:ef:12:fa:99:83:97:a8:bb:cf:2e:20:36:4b:70:e7:0d:b5:
69:8b:19:ae:94:f7:80:2e:a9:cd:dc:5a:d7:f1:8f:91:d5:43:
9d:d0:ff:10:d5:8c:c7:71:0d:af:6e:fe:cb:ef:89:cb:50:60:
81:21:e7:91:45:85:c4:17:f4:ae:09:f8:cb:87:0f:c5:d0:3f:
47:0a:0c:34:a5:86:c3:59:d4:97:75:bf:db:b7:8e:5d:99:75:
99:c1:36:eb:c7:58:a1:08:37:1c:65:fa:91:13:0b:be:70:8d:
4e:f1:77:12:33:44:cb:f0:c9:74:17:1c:1c:b5:41:80:45:71:
fc:0d:ee:34:01:15:99:d2:05:3c:7e:d4:f9:f3:83:f0:3f:ea:
7e:1a:0e:77:a8:57:5d:7d:28:f7:ea:89:8c:57:91:16:09:2f:
6b:d7:e7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:03 2025 by rpki-client