Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/0mAVNO7CmBM4nmpjomGfjr4QkWM.roa
File: 0mAVNO7CmBM4nmpjomGfjr4QkWM.roa (raw, json)
Hash identifier: F9+iPmVin124Rh8OguJHbrb/RiRF7NrPOAq1KrLUORY=
Subject key identifier: D2:60:15:34:EE:C2:98:13:38:9E:6A:63:A2:61:9F:8E:BE:10:91:63
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 018BECA9B1598336D1C307FF6C906199F6E2
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/0mAVNO7CmBM4nmpjomGfjr4QkWM.roa
Signing time: Mon 20 Nov 2023 12:17:05 +0000
ROA not before: Mon 20 Nov 2023 12:17:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210669
IP address blocks: 193.107.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:a9:b1:59:83:36:d1:c3:07:ff:6c:90:61:99:f6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Nov 20 12:17:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2601534eec29813389e6a63a2619f8ebe109163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7b:a4:9a:55:5f:c5:21:61:02:4b:5c:eb:8c:
72:7b:cc:36:62:60:9a:2c:2a:9e:77:e2:26:b9:d6:
d8:8b:ce:11:6b:df:01:fc:ee:76:30:17:2e:95:ff:
87:8f:06:5a:58:5b:5a:48:31:22:02:21:81:c2:dd:
a9:ed:5d:a4:e5:ca:50:4f:6c:36:39:8f:d1:7d:67:
b6:4a:82:43:33:98:d0:95:85:6d:15:48:04:db:d6:
56:b0:b8:f9:3e:f1:1f:b3:f2:47:35:45:0a:6a:3e:
06:1e:93:0d:46:91:fa:2e:2b:b8:ab:b2:8d:dd:28:
1e:c8:2a:40:12:b9:32:5e:92:a5:93:5d:54:95:e2:
36:c6:fb:3a:b5:07:1a:6e:52:b3:82:cb:6a:34:6b:
55:88:45:64:07:1e:69:bd:1f:01:38:bc:55:98:b0:
aa:56:be:e2:53:e9:50:fd:00:ae:48:e7:78:c1:5a:
43:99:44:bf:af:f1:fd:06:43:41:1b:a4:10:49:c9:
91:e9:0d:63:5e:d6:27:b6:33:43:97:42:92:00:bf:
b7:e3:c3:bc:bf:5e:b6:f2:5b:d5:e8:e6:9c:55:e1:
a7:a0:21:1d:98:8b:31:44:aa:e9:55:17:12:40:28:
01:34:b1:94:36:45:42:8f:96:5e:74:b9:96:83:1e:
7e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:60:15:34:EE:C2:98:13:38:9E:6A:63:A2:61:9F:8E:BE:10:91:63
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/0mAVNO7CmBM4nmpjomGfjr4QkWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.81.0/24
Signature Algorithm: sha256WithRSAEncryption
94:12:c1:0b:7e:0e:ca:95:af:70:b3:d8:f3:38:14:12:dc:8e:
0c:15:46:50:49:b2:96:88:44:2c:6c:e9:7d:38:03:74:73:13:
e1:10:be:42:76:bd:6b:fc:16:28:d3:96:17:34:71:77:0a:6d:
b9:eb:49:7a:64:71:68:f6:af:4c:d2:46:ce:23:76:85:14:70:
11:02:4d:fc:71:fa:9e:a4:50:e6:3c:4d:21:07:a6:bb:f8:f8:
4a:77:54:7f:39:1f:f8:ee:73:ce:22:59:8f:df:a5:d3:7a:cd:
63:3b:d3:b5:f0:5e:ee:29:4d:23:6f:3e:7d:b0:54:1b:cb:8a:
07:05:3a:74:01:d6:33:52:28:e7:46:dd:6a:0e:d9:52:bf:76:
cd:37:b6:37:d2:1a:3f:ba:e8:bf:a1:4e:bd:8b:84:28:8b:29:
c5:1a:8c:2f:b5:1e:a4:04:9e:82:9e:f9:6b:3b:a5:7a:8e:b1:
b1:87:e5:36:ee:4d:c4:25:2e:73:6f:8d:5b:1f:53:b9:26:0b:
e5:2e:ab:aa:77:24:cf:01:44:33:cc:c6:c6:b6:15:46:ab:6a:
71:47:e6:ff:b8:7b:ec:dd:94:95:41:7c:e7:f1:42:68:7a:a0:
c6:66:2d:b1:66:f4:cf:60:37:d6:3f:c8:c3:3c:85:8a:a5:98:
a1:87:b5:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:34:52 2025 by rpki-client