Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/hZv3mRlvtV5AJWq08ZMKGNU8EBM.roa
File: hZv3mRlvtV5AJWq08ZMKGNU8EBM.roa (raw, json)
Hash identifier: O+tcgytRL6k9dNH0FwHlJ5NntGbuGP+yaAR8WnYquk8=
Subject key identifier: 85:9B:F7:99:19:6F:B5:5E:40:25:6A:B4:F1:93:0A:18:D5:3C:10:13
Certificate issuer: /CN=89e21a2b8a25b971bdb741a0aae325992304194e
Certificate serial: 0737ECD6
Authority key identifier: 89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/hZv3mRlvtV5AJWq08ZMKGNU8EBM.roa
Signing time: Sat 01 Jan 2022 12:02:15 +0000
ROA not before: Sat 01 Jan 2022 12:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398395
IP address blocks: 193.25.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121105622 (0x737ecd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e21a2b8a25b971bdb741a0aae325992304194e
Validity
Not Before: Jan 1 12:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=859bf799196fb55e40256ab4f1930a18d53c1013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:56:11:56:ed:02:70:c2:5e:6d:ad:6c:02:b8:
0a:1f:4d:e7:f9:6c:0a:93:55:43:fb:d7:c2:81:36:
4f:8d:17:72:06:e3:dc:a2:16:09:88:97:8a:11:71:
2b:69:2d:db:3b:2e:6f:5e:30:cc:95:15:f4:1e:18:
cd:90:40:c7:60:ef:f8:c1:95:e9:01:0a:97:5b:ae:
9e:a7:a4:ee:da:ee:53:6b:00:74:f6:36:75:aa:2d:
9b:50:0e:7a:fb:7b:91:81:35:4b:86:97:0e:b0:64:
8d:d4:22:18:94:ae:a8:f9:50:3e:88:ec:1d:55:77:
a4:65:9a:1c:9e:b4:af:64:56:ef:6c:6c:8c:fe:a6:
02:d1:bb:1d:97:5f:1b:66:06:ce:e0:67:bc:53:0f:
b2:e3:6c:79:15:fc:49:f3:2f:b7:b1:97:13:9a:35:
0d:0f:90:5d:b7:a8:5c:61:70:99:fb:55:09:0b:a1:
e2:3d:c6:ef:26:a0:f6:23:9d:55:51:01:57:94:57:
dc:5b:3f:fa:d6:33:d8:63:e4:3c:2e:27:dd:c7:3c:
38:30:b1:61:b3:28:76:37:80:d4:9e:16:b9:90:f7:
33:58:d4:80:ef:a4:a8:0b:fe:b8:ae:0f:be:86:31:
a4:b9:a2:0e:fc:ce:36:30:f1:94:6c:1a:f0:37:a2:
df:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9B:F7:99:19:6F:B5:5E:40:25:6A:B4:F1:93:0A:18:D5:3C:10:13
X509v3 Authority Key Identifier:
keyid:89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/hZv3mRlvtV5AJWq08ZMKGNU8EBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/ieIaK4oluXG9t0GgquMlmSMEGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.252.0/24
Signature Algorithm: sha256WithRSAEncryption
04:78:7e:e0:95:85:07:13:df:fb:dc:60:43:06:a2:a6:22:ca:
54:95:19:6b:db:74:53:8b:36:4f:84:e3:d1:90:02:1d:4d:db:
5e:39:d4:bb:a1:04:38:52:55:57:9a:14:77:b2:d9:79:d8:51:
11:a9:cb:ab:b1:ae:c0:f4:84:c3:8c:5b:49:e5:97:55:7c:83:
bc:52:23:74:1c:26:1c:ad:41:0b:2e:bb:ac:3c:f8:58:de:dc:
6b:48:c5:b3:57:37:c8:55:e2:e5:c8:b4:09:1e:65:7a:5e:e3:
b8:39:76:a4:d4:41:04:2c:6a:ba:e7:e3:20:6a:1b:39:22:e9:
b1:02:64:ba:b4:b2:2d:c5:20:59:4f:37:30:d9:d8:0e:fa:27:
67:ec:be:7f:00:68:31:78:81:d3:3e:15:8f:ca:61:e2:b5:9e:
af:f1:91:95:fa:e0:71:22:a8:6b:2e:a4:fc:7e:f1:00:aa:74:
f5:af:63:dd:2c:56:0b:b8:ad:15:b5:d0:82:14:05:b3:53:30:
5c:be:70:a3:c3:a8:c9:79:4f:c8:84:0f:e9:c3:d8:4b:1f:fd:
86:2c:d1:b0:d9:e9:ab:8c:46:71:66:a3:37:aa:f6:de:17:8d:
2b:02:31:19:80:45:98:db:91:f4:9f:da:5a:62:3a:21:a6:50:
72:d3:41:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:44:35 2025 by rpki-client