Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lDiSYhv2AW25gHimTVEqR9jS54Q.roa
File: lDiSYhv2AW25gHimTVEqR9jS54Q.roa (raw, json)
Hash identifier: ZPYthxZCI3INYwME1MMR6EXsxIuiOiMZQAs6zMgyJuQ=
Subject key identifier: 94:38:92:62:1B:F6:01:6D:B9:80:78:A6:4D:51:2A:47:D8:D2:E7:84
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD515527EF1C62501642E9838BCC700
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lDiSYhv2AW25gHimTVEqR9jS54Q.roa
Signing time: Mon 02 Jan 2023 00:15:13 +0000
ROA not before: Mon 02 Jan 2023 00:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33829
IP address blocks: 188.241.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:15:52:7e:f1:c6:25:01:64:2e:98:38:bc:c7:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=943892621bf6016db98078a64d512a47d8d2e784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d9:fe:d8:53:c3:b4:c7:cd:49:53:5a:d0:02:
ca:51:cf:a4:cd:12:a7:05:a5:de:22:d2:60:3e:3a:
01:56:28:80:e6:78:80:37:34:47:f5:24:d6:bd:b6:
7f:f8:9b:95:5a:b3:99:65:8f:68:41:3b:65:1e:fb:
95:1e:46:e2:ad:97:27:f2:54:23:27:26:02:64:bc:
00:fe:71:11:01:e6:aa:1e:7f:3e:6a:82:21:34:5b:
74:be:9e:b6:5a:bb:ab:51:b2:75:84:6c:e9:e6:bc:
3c:4d:17:30:21:53:3a:a2:0c:c7:82:21:0a:cd:ed:
98:45:5f:ca:28:e5:3c:5f:c7:ba:e1:a1:82:6e:98:
64:d5:4b:76:17:95:d3:37:ce:42:2e:cb:ad:73:f7:
4b:dc:66:89:d7:8d:bc:b8:6c:60:a4:cb:19:ea:46:
fa:d1:1f:10:58:ef:79:0c:10:29:b2:69:dd:e6:7e:
1d:d7:a8:b0:ec:60:47:72:a1:3f:9a:eb:93:0d:56:
67:c5:6d:df:f8:4b:7c:2f:d5:1e:ed:59:f4:58:a5:
df:a7:2f:65:11:03:23:32:73:f8:ef:d1:46:72:fb:
42:89:98:c5:50:63:0e:30:cd:8c:03:47:1a:5d:53:
d5:3e:f9:2a:c2:31:62:4d:43:f4:bb:91:4f:05:dd:
e4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:38:92:62:1B:F6:01:6D:B9:80:78:A6:4D:51:2A:47:D8:D2:E7:84
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lDiSYhv2AW25gHimTVEqR9jS54Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.64.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:b7:54:58:ac:dd:87:74:23:31:c3:2b:1a:80:25:9d:0a:6e:
09:7f:cb:5f:8c:12:d8:11:00:bc:27:ba:8a:4a:1f:a2:bb:c4:
03:d7:9e:fb:6a:7d:e6:0c:87:a4:3b:a3:16:4c:a0:65:16:b9:
da:57:1f:f5:f1:01:3a:13:6a:a8:53:e2:a2:77:98:91:19:40:
1e:c9:07:fb:b1:66:03:a8:f6:b9:09:dd:31:37:0b:72:d4:a0:
34:a0:cd:9f:73:1c:92:98:dd:3f:4b:8d:c6:4e:02:9b:1f:c0:
1b:49:fb:b9:11:8a:26:ea:fc:13:b9:b9:e1:1d:da:98:f8:0d:
13:c4:31:ad:42:b0:4f:0b:7b:6b:90:cf:d9:9e:85:d9:6e:32:
6f:a2:15:00:ef:38:ed:96:bf:17:f8:7c:fa:76:95:7f:80:5f:
0d:f9:31:c7:ee:0a:e2:32:f0:b9:bb:30:b9:b6:0f:93:da:d1:
a6:74:01:c1:fd:6f:33:0b:e8:b2:4b:ad:cb:96:0e:a9:f6:7e:
60:8b:d1:fd:8e:26:7c:9f:7c:c1:ec:78:08:2b:84:6d:c5:05:
1f:09:5f:69:3e:32:e2:90:81:a9:94:10:8b:92:63:54:43:ab:
ec:ae:c8:dc:c8:f3:77:00:f2:92:ff:b4:08:91:14:c6:36:a4:
c5:f1:54:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:01 2025 by rpki-client