Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1d97a-5b9d-40bb-9b27-53ffa5f9985c/1/oLu4KBQ9kPvfCRsJwXyCpJk5fjM.roa
File: oLu4KBQ9kPvfCRsJwXyCpJk5fjM.roa (raw, json)
Hash identifier: 3AElMjajrXEyPSgTBwPjm5KylODxzJsO4Yxl0B5JrS8=
Subject key identifier: A0:BB:B8:28:14:3D:90:FB:DF:09:1B:09:C1:7C:82:A4:99:39:7E:33
Certificate issuer: /CN=1dc29e5749ee91c5a33ae8e30b7dc9fff395ffe6
Certificate serial: 0189535205758966F73F58B18845D3EEB26D
Authority key identifier: 1D:C2:9E:57:49:EE:91:C5:A3:3A:E8:E3:0B:7D:C9:FF:F3:95:FF:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HcKeV0nukcWjOujjC33J__OV_-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1d97a-5b9d-40bb-9b27-53ffa5f9985c/1/oLu4KBQ9kPvfCRsJwXyCpJk5fjM.roa
Signing time: Fri 14 Jul 2023 07:33:51 +0000
ROA not before: Fri 14 Jul 2023 07:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200020
IP address blocks: 193.105.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:52:05:75:89:66:f7:3f:58:b1:88:45:d3:ee:b2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dc29e5749ee91c5a33ae8e30b7dc9fff395ffe6
Validity
Not Before: Jul 14 07:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0bbb828143d90fbdf091b09c17c82a499397e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6c:c7:47:46:0b:95:7b:4b:a1:9c:81:8f:91:
6a:5c:0c:73:c7:97:8c:eb:cb:29:7a:75:76:4a:78:
05:9b:0b:44:36:b3:b2:8f:bf:e7:8d:54:6b:91:9b:
25:5e:74:19:58:9b:7a:5b:6f:09:90:ad:02:66:eb:
a8:4f:2f:2a:52:14:88:b6:6d:5f:e0:ab:8e:3a:e2:
a1:22:fc:05:3e:86:69:b7:02:a1:9d:44:ba:4f:95:
19:ab:08:65:df:1f:49:58:59:f7:ec:05:12:be:f8:
43:f0:5f:72:86:75:c5:0a:85:4a:b4:c4:0e:db:e4:
dc:45:3f:7b:6b:fe:2e:80:7a:40:f6:bb:48:9d:9e:
8e:67:b7:02:9c:d3:bf:0e:25:3c:2e:28:ac:da:d5:
c5:b3:27:4b:0d:35:cd:64:cf:2c:2a:2d:28:f0:0d:
55:70:d3:17:a1:62:7f:9b:6f:37:bd:7c:f3:ee:ca:
ac:13:27:9c:c7:63:b4:13:e8:0b:96:8d:ce:24:65:
49:23:0b:22:44:35:f3:3a:ec:0e:67:b6:56:da:3e:
e4:c0:ba:fe:45:b4:41:ae:23:60:89:30:d0:7e:50:
12:27:f1:6a:86:62:3d:4a:c0:8b:8c:ec:f9:52:5f:
3c:fd:b7:18:52:d7:71:d2:f9:35:29:67:7b:e9:a4:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BB:B8:28:14:3D:90:FB:DF:09:1B:09:C1:7C:82:A4:99:39:7E:33
X509v3 Authority Key Identifier:
keyid:1D:C2:9E:57:49:EE:91:C5:A3:3A:E8:E3:0B:7D:C9:FF:F3:95:FF:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcKeV0nukcWjOujjC33J__OV_-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1d97a-5b9d-40bb-9b27-53ffa5f9985c/1/oLu4KBQ9kPvfCRsJwXyCpJk5fjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1d97a-5b9d-40bb-9b27-53ffa5f9985c/1/HcKeV0nukcWjOujjC33J__OV_-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.50.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b9:0c:61:95:ba:10:35:4c:e7:38:1e:f7:54:3b:eb:9d:16:
79:ec:64:99:34:e9:55:6c:ff:cc:97:ce:5f:85:46:4f:e8:3c:
26:4c:84:b9:cf:95:04:89:76:15:6d:0b:8d:dc:03:b9:87:fa:
ce:09:3a:77:c1:40:71:31:90:d9:07:18:ca:42:7d:1d:7a:43:
fd:9c:09:71:01:5c:11:06:1d:15:c8:72:82:11:53:4c:90:b8:
d6:98:a8:6c:e4:a2:98:3b:33:22:3f:9d:da:d7:c6:4e:cf:c6:
f4:83:49:f4:76:97:1b:70:5c:c0:8b:ed:ae:f0:f4:29:b9:b2:
29:4e:1c:a3:78:cd:b2:ae:c3:a7:4b:65:74:d7:53:30:b1:7b:
49:97:bc:c2:da:17:ae:c2:4c:e0:69:28:92:60:2b:50:62:55:
9d:62:14:63:56:c8:54:f5:97:b4:0b:40:68:2a:b8:10:d5:0a:
34:13:b1:92:aa:5f:f5:34:93:bb:7d:04:b2:d8:1b:ee:b1:df:
25:d0:8a:7d:0a:9a:a0:80:80:05:a2:62:d7:d3:d8:5f:30:47:
fc:56:67:df:d0:0e:b5:a3:1c:36:bf:4b:b9:88:c7:fc:cc:d9:
41:84:80:87:ad:90:99:5f:53:5b:58:2a:70:fb:1d:03:ce:b9:
da:a2:96:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:22:00 2025 by rpki-client