Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/AbpxSrPNPe5m9a0IF2vO6Np529Y.roa
File: AbpxSrPNPe5m9a0IF2vO6Np529Y.roa (raw, json)
Hash identifier: fq9+yEYdJXPdNMB9GKuxUZHbhdybFL2Bwm5cXr+fOzc=
Subject key identifier: 01:BA:71:4A:B3:CD:3D:EE:66:F5:AD:08:17:6B:CE:E8:DA:79:DB:D6
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 074528D2
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/AbpxSrPNPe5m9a0IF2vO6Np529Y.roa
Signing time: Sat 01 Jan 2022 10:00:58 +0000
ROA not before: Sat 01 Jan 2022 10:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 193.200.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121972946 (0x74528d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Jan 1 10:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01ba714ab3cd3dee66f5ad08176bcee8da79dbd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:da:99:bb:ba:6b:45:c5:08:2b:78:13:cf:
1a:ae:50:ef:68:42:cb:a4:91:17:44:a3:b2:70:40:
6f:41:b4:26:20:25:a2:d9:2b:00:f2:4b:0b:05:3b:
35:85:3b:86:2a:f9:70:d4:77:52:92:32:60:3b:27:
1a:cc:71:23:ae:dd:3d:f5:85:fa:08:d7:15:57:77:
f1:8a:8b:d0:34:c2:02:30:f7:27:c2:76:37:84:91:
72:61:e0:f2:af:6a:d6:93:7f:17:c1:bc:9d:b1:cd:
56:7a:17:2d:d5:c8:c1:fc:7d:8b:b9:b1:90:a9:f8:
e1:90:50:67:b1:b6:db:89:7f:cd:7a:52:2a:25:10:
c0:61:8a:96:28:f3:e4:b3:6c:a0:37:16:a1:47:e9:
67:7f:96:77:db:6b:e7:9c:fb:a3:ef:af:8e:16:db:
f4:c9:d1:9a:21:97:67:b6:c1:59:0f:85:dc:a8:d1:
fd:14:83:5a:d1:33:ef:93:6b:bb:33:5b:2a:aa:5d:
12:df:c0:71:36:ff:07:b1:15:9e:85:c5:5c:2c:e8:
1e:48:c7:db:70:6b:94:08:17:ea:f3:43:75:25:7d:
d6:04:28:0c:40:ed:d0:d0:3a:69:b1:84:54:50:cd:
50:b0:f2:62:80:89:70:1b:9f:ca:5b:01:a1:e1:6b:
6e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BA:71:4A:B3:CD:3D:EE:66:F5:AD:08:17:6B:CE:E8:DA:79:DB:D6
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/AbpxSrPNPe5m9a0IF2vO6Np529Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.3.0/24
Signature Algorithm: sha256WithRSAEncryption
93:2e:d4:4d:1f:6d:76:da:ca:54:43:bf:ad:77:1b:2a:ea:9d:
87:17:50:9b:7c:6d:d2:b7:60:f7:17:c2:18:07:de:b7:63:b7:
26:a0:14:e4:9f:7b:08:44:c1:1f:c1:77:51:6b:e6:63:23:06:
99:29:c6:24:4e:d7:6e:1c:a5:9b:d6:05:c2:ed:f3:31:45:71:
cc:9b:43:d2:22:9f:64:d4:db:15:b7:3d:98:bd:70:46:41:68:
92:5a:31:f4:4c:27:01:20:34:4b:7a:66:45:d7:91:1e:96:ad:
4d:39:36:d2:c4:70:8a:a8:14:ea:e8:fc:b6:96:fc:61:83:f6:
aa:4d:fe:d1:43:5b:c0:7b:7c:7b:62:3e:b1:a7:26:ed:74:4c:
3b:6f:70:19:83:6a:82:4d:a8:54:f9:40:8a:47:00:4b:be:fd:
d0:88:c9:ed:d7:d2:94:89:e7:7e:3a:5a:1a:3a:3a:db:2a:a0:
6f:6f:ab:7a:41:7e:cc:ff:86:5b:fc:ac:db:65:55:12:b8:f5:
ad:3b:51:97:7a:64:d5:91:5b:3d:d9:47:38:22:dd:26:ba:11:
b8:12:c9:a4:4d:bf:86:c4:8a:6f:69:1a:ef:5c:74:b4:a3:3c:
4b:bb:e2:69:ce:0f:10:8d:60:10:d0:20:26:39:70:73:40:78:
2d:fd:09:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:45 2025 by rpki-client