Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/UrsnkwrF0grYtkDLhUgFh2RWg2Q.roa
File: UrsnkwrF0grYtkDLhUgFh2RWg2Q.roa (raw, json)
Hash identifier: TgFuXoGMJWWdmeTbnQu8Pyug5LsGqP9IODp5u8p71cY=
Subject key identifier: 52:BB:27:93:0A:C5:D2:0A:D8:B6:40:CB:85:48:05:87:64:56:83:64
Certificate issuer: /CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Certificate serial: 08442E91
Authority key identifier: 86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/UrsnkwrF0grYtkDLhUgFh2RWg2Q.roa
Signing time: Sat 01 Jan 2022 12:56:31 +0000
ROA not before: Sat 01 Jan 2022 12:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41151
IP address blocks: 194.140.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138686097 (0x8442e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Validity
Not Before: Jan 1 12:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52bb27930ac5d20ad8b640cb8548058764568364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a2:ea:05:31:5f:99:10:5d:ff:0a:de:a5:30:
a4:dc:1b:d0:b3:18:e2:0b:94:15:7e:10:f3:b3:31:
02:24:0b:8b:b7:3a:08:bf:4e:59:7f:62:1a:10:f5:
65:b8:f0:ff:b1:fe:19:61:0d:6f:fa:3c:ce:05:db:
f1:b0:e8:af:05:fb:8e:fc:40:d3:49:30:c3:df:78:
3d:12:92:f1:fd:ed:a1:0c:21:8d:1e:6b:f3:df:22:
13:f3:b6:e0:59:46:96:9b:08:32:61:15:ba:cf:17:
05:bd:b9:d7:70:4c:ef:81:4f:69:d9:d4:6a:f9:fa:
18:0d:7d:5d:9f:cc:1f:4c:cf:e2:f1:e0:c2:57:1b:
65:97:6b:c1:bb:0a:8c:7e:f8:61:c9:77:ab:d2:54:
24:e4:74:56:69:7c:38:b9:de:a6:4d:f4:6d:78:2a:
ab:05:79:eb:f4:8e:ac:87:a3:c8:f4:25:c5:a2:c5:
34:9b:77:5f:5d:11:e2:34:9a:0a:b7:98:3d:17:66:
b7:50:62:29:f7:ae:0b:7b:02:e7:d2:71:ae:92:41:
8c:68:bd:a9:70:83:26:5c:ea:f9:4a:9f:29:b3:22:
52:3e:02:03:3f:8e:4f:7d:c1:3d:ab:17:cc:aa:99:
32:01:a0:c7:86:73:26:c2:52:cc:63:8e:76:86:5d:
49:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BB:27:93:0A:C5:D2:0A:D8:B6:40:CB:85:48:05:87:64:56:83:64
X509v3 Authority Key Identifier:
keyid:86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/UrsnkwrF0grYtkDLhUgFh2RWg2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.245.0/24
Signature Algorithm: sha256WithRSAEncryption
85:39:69:55:0a:34:08:9d:21:53:ee:26:da:89:68:32:57:10:
59:b9:ba:55:2f:99:8d:a2:2b:87:75:17:6b:a8:b1:e2:cd:8a:
db:2b:66:5a:e4:b5:05:82:f4:13:9f:66:1e:5c:97:e1:d1:8b:
ef:2c:2c:4d:5b:2a:45:de:29:c8:4c:8b:14:e9:d7:4a:a3:c6:
13:5e:2c:6b:b0:2f:59:2b:ab:9f:47:87:a0:45:61:29:d6:0c:
aa:2d:81:12:26:f8:eb:6d:8c:5e:39:b2:d2:fe:14:43:2b:7f:
40:fc:b8:9e:1c:73:52:32:98:fd:60:c1:3f:05:80:71:f1:ec:
83:d7:74:58:4b:5e:96:64:82:2c:1a:49:39:f5:88:0f:16:cc:
23:70:0b:19:72:d2:1c:00:0a:84:f5:89:2d:4c:c7:b6:8c:16:
58:01:d3:51:47:10:1e:0d:de:f4:02:8a:c4:17:d8:32:29:1f:
77:18:a4:fd:1a:80:05:9f:16:41:85:d7:02:11:ca:28:47:11:
ca:77:8e:c2:fe:f0:38:61:4c:a2:31:c5:2a:c9:c2:de:11:48:
5a:9d:86:63:dc:fc:f7:47:6e:57:0e:ec:4f:e9:1c:27:16:cf:
31:8d:b2:cf:df:5b:b3:57:6d:b6:07:20:e3:4c:45:b7:0e:3b:
44:8e:eb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:24 2025 by rpki-client