Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/5S1qi-KIGDqAZA_fVAAxgLWblao.roa
File: 5S1qi-KIGDqAZA_fVAAxgLWblao.roa (raw, json)
Hash identifier: eyLUngDVeWhWeQPHvJqI6mczZpIbcChsUr81xTVs7Tw=
Subject key identifier: E5:2D:6A:8B:E2:88:18:3A:80:64:0F:DF:54:00:31:80:B5:9B:95:AA
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 01857315D34F51E683EED9944464B73F1E24
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/5S1qi-KIGDqAZA_fVAAxgLWblao.roa
Signing time: Mon 02 Jan 2023 15:24:48 +0000
ROA not before: Mon 02 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199279
IP address blocks: 83.230.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:d3:4f:51:e6:83:ee:d9:94:44:64:b7:3f:1e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Jan 2 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e52d6a8be288183a80640fdf54003180b59b95aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b2:a4:ab:ab:52:76:9f:8a:66:92:9c:c5:4c:
3b:19:03:dd:70:9d:8e:75:7b:ec:cb:b1:63:49:ee:
e5:d6:d8:c2:80:46:8d:20:1e:7d:c1:89:98:dd:43:
7f:b1:6e:65:88:49:1f:06:99:3b:2a:5a:a2:87:98:
fc:e9:99:3c:4e:5a:7b:a7:d6:b3:6c:01:ed:f9:31:
01:c8:b6:1f:dd:95:7e:84:2c:6d:bf:40:d6:2b:15:
30:12:3f:48:cc:38:40:97:15:6a:37:04:42:b9:83:
c1:a4:69:dc:05:fa:c3:e3:7d:6a:00:e7:e8:7d:dc:
a1:87:35:39:18:30:9b:9d:ca:e2:18:6e:82:d0:52:
5b:0f:01:98:08:9e:35:bc:0f:4f:2a:c9:f9:74:e0:
f5:35:62:25:77:c3:18:ad:fb:c3:46:14:4e:88:8d:
bd:3e:bf:fc:ba:ac:42:4a:57:98:6f:f4:b3:12:90:
7f:0c:ca:d3:0a:c0:e1:13:51:38:09:9a:a5:06:42:
2e:5d:9f:41:48:0f:30:16:9f:4f:1c:42:1d:9c:7b:
7b:bd:35:dd:dc:6c:96:fe:a5:4f:44:9e:20:08:61:
ab:4e:70:ca:bc:76:71:28:1a:6a:a1:3e:f6:5b:5e:
22:fb:eb:7d:d7:8a:6a:a5:71:5d:75:b4:6f:80:9e:
ca:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2D:6A:8B:E2:88:18:3A:80:64:0F:DF:54:00:31:80:B5:9B:95:AA
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/5S1qi-KIGDqAZA_fVAAxgLWblao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.230.94.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:58:a5:01:b7:e1:3e:8b:94:89:09:ae:02:6b:08:f2:63:3e:
7f:9b:28:c4:62:d2:32:7a:33:fc:ac:02:24:af:c9:6c:08:f6:
7c:5a:b0:95:0b:d7:18:ed:5d:e7:01:00:f8:10:9c:11:97:1a:
cb:48:94:6b:88:ff:82:78:dc:df:f5:6e:05:36:dd:a3:a1:35:
ab:c0:07:0d:aa:9b:dc:67:97:77:86:33:d8:cc:f1:8a:de:82:
6e:3b:61:64:0c:00:5e:f2:40:38:ab:da:eb:82:33:83:78:7c:
c0:a0:bf:d9:5c:50:cd:ef:6e:4b:42:79:78:8b:83:f5:8e:d5:
cd:51:79:88:15:d6:84:94:e3:6a:c4:5e:4a:36:7d:02:c6:bf:
12:95:e8:47:c2:35:5a:ec:9b:55:2c:de:da:05:c1:de:82:15:
38:3b:28:4a:62:ba:b2:51:b9:74:0b:f6:09:dc:13:06:3f:d8:
9d:f7:60:a5:22:7b:14:12:fa:93:ce:1c:80:85:8c:35:c4:db:
2e:de:81:b8:57:37:4a:21:e6:2b:f6:a1:af:20:9a:54:8e:c5:
8e:c5:87:41:b5:86:c6:23:f5:78:3e:e4:1a:9f:49:34:c9:54:
3a:57:ba:d3:16:65:65:f6:02:13:88:43:62:8a:4c:75:66:91:
9b:32:56:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:53:33 2025 by rpki-client