Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c66ff9-10ea-4b44-9169-c5f670239718/1/WRHorVreohaT2RvawYEW-Trm2oQ.roa
File: WRHorVreohaT2RvawYEW-Trm2oQ.roa (raw, json)
Hash identifier: jAqAf8JzhFYQBV/v+0KKvAS7YqMdOiHj3NWesSsqSeQ=
Subject key identifier: 59:11:E8:AD:5A:DE:A2:16:93:D9:1B:DA:C1:81:16:F9:3A:E6:DA:84
Certificate issuer: /CN=fe24fb2812ae2f3d4d9bb4589dd731e546979109
Certificate serial: 0185737A9CE5EE0DE9FEAA4C4A282FBA7AFD
Authority key identifier: FE:24:FB:28:12:AE:2F:3D:4D:9B:B4:58:9D:D7:31:E5:46:97:91:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_iT7KBKuLz1Nm7RYndcx5UaXkQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c66ff9-10ea-4b44-9169-c5f670239718/1/WRHorVreohaT2RvawYEW-Trm2oQ.roa
Signing time: Mon 02 Jan 2023 17:14:53 +0000
ROA not before: Mon 02 Jan 2023 17:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42180
IP address blocks: 194.0.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:9c:e5:ee:0d:e9:fe:aa:4c:4a:28:2f:ba:7a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe24fb2812ae2f3d4d9bb4589dd731e546979109
Validity
Not Before: Jan 2 17:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5911e8ad5adea21693d91bdac18116f93ae6da84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6a:40:e5:46:e0:4e:00:a9:d5:0d:50:ce:c7:
fa:05:93:90:10:df:39:6f:3a:e7:91:98:bc:14:e2:
8a:08:f8:01:4a:17:57:e6:49:ea:04:de:49:c7:9d:
68:ff:f4:3e:cb:3b:c5:fd:b6:fa:37:64:98:02:9c:
f4:37:a4:38:3a:ac:e9:ea:b8:83:90:79:e1:f5:b6:
6e:8c:b8:e7:f6:50:1a:80:20:c1:6e:ff:ad:b0:6a:
d1:0e:ea:6f:59:c8:03:93:f7:65:a3:09:7b:62:18:
cd:7f:be:6f:f4:45:63:ae:1f:d7:b3:33:6f:a8:88:
c2:7d:0c:a8:25:6b:3e:4a:7c:4b:4c:5e:1b:5f:7e:
d5:d1:aa:05:66:87:e8:9b:70:60:12:63:56:1b:ce:
22:40:59:97:fa:f4:e4:05:46:b1:14:30:08:2e:5f:
01:ef:a8:cf:2e:66:f3:e8:64:52:50:6f:09:6d:68:
a9:d4:9f:3b:0b:35:06:22:a3:14:e9:11:f0:c2:08:
de:dd:6b:03:84:04:52:53:a6:2b:60:9f:9c:db:b5:
03:eb:e9:14:75:7e:86:0b:00:6b:10:e5:b5:e2:b9:
3f:4e:80:9d:8f:c3:af:a1:4d:27:7a:e4:b3:4d:7a:
08:18:2c:1c:78:ce:7e:95:1e:5d:f6:33:5a:e7:6c:
2f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:11:E8:AD:5A:DE:A2:16:93:D9:1B:DA:C1:81:16:F9:3A:E6:DA:84
X509v3 Authority Key Identifier:
keyid:FE:24:FB:28:12:AE:2F:3D:4D:9B:B4:58:9D:D7:31:E5:46:97:91:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_iT7KBKuLz1Nm7RYndcx5UaXkQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c66ff9-10ea-4b44-9169-c5f670239718/1/WRHorVreohaT2RvawYEW-Trm2oQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c66ff9-10ea-4b44-9169-c5f670239718/1/_iT7KBKuLz1Nm7RYndcx5UaXkQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:9f:86:2d:74:31:95:96:e8:84:02:9e:c2:09:cf:79:de:d7:
19:5d:bb:ba:11:bf:04:49:d9:d0:91:fd:0e:f1:4a:4f:20:5c:
94:5b:56:03:36:d9:7b:f1:0d:b6:c5:40:dd:5f:47:8b:fa:06:
32:b0:11:e0:d1:42:96:e5:62:8d:33:e9:c6:d8:79:46:81:99:
1b:26:d9:d5:61:65:2c:53:e0:13:6b:93:01:7c:83:42:da:d6:
68:96:af:fd:62:8b:93:f0:fe:77:af:fe:25:91:c8:91:e5:d0:
9f:a2:fe:8c:09:8e:c3:d5:4c:73:c7:1f:2c:c2:e5:6c:69:14:
e5:f0:94:6c:3d:92:88:f8:ac:35:fd:bf:8d:19:96:b0:65:a3:
4f:0e:be:eb:a3:08:b4:cd:85:1e:fc:27:3d:a1:f4:d4:a6:ed:
b1:20:58:f6:3c:ef:aa:49:08:12:f9:fb:c9:d7:19:c9:34:b8:
7d:05:4e:0c:d4:a4:16:09:12:7c:08:84:58:db:68:da:df:8e:
74:82:b7:06:f6:d8:e4:f1:6f:cc:60:37:3e:bb:16:70:09:cb:
25:89:d5:8b:29:fe:81:90:bf:5f:c1:45:ba:c3:3e:ae:7e:fc:
93:28:23:ed:70:2f:59:88:f5:b7:13:57:2f:64:ee:ba:1b:76:
8a:4b:fd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:24 2025 by rpki-client