Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/O9a5LXJytLEHQ_qlgznbzywYV4M.roa
File: O9a5LXJytLEHQ_qlgznbzywYV4M.roa (raw, json)
Hash identifier: f9VpN/0b2i8D0F7baVQgSYL28KRWYiKJozYuzf4Y+lA=
Subject key identifier: 3B:D6:B9:2D:72:72:B4:B1:07:43:FA:A5:83:39:DB:CF:2C:18:57:83
Certificate issuer: /CN=5ad630b61d2e7292f9cef893bb6d71242a5f4bed
Certificate serial: 03BC3E99
Authority key identifier: 5A:D6:30:B6:1D:2E:72:92:F9:CE:F8:93:BB:6D:71:24:2A:5F:4B:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtYwth0ucpL5zviTu21xJCpfS-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/O9a5LXJytLEHQ_qlgznbzywYV4M.roa
Signing time: Sat 01 Jan 2022 05:02:07 +0000
ROA not before: Sat 01 Jan 2022 05:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50813
IP address blocks: 193.105.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62668441 (0x3bc3e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ad630b61d2e7292f9cef893bb6d71242a5f4bed
Validity
Not Before: Jan 1 05:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bd6b92d7272b4b10743faa58339dbcf2c185783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cc:e0:b0:1f:8f:fc:71:06:71:29:1b:54:ee:
9d:a0:05:fa:36:36:5e:92:2b:54:b4:be:1f:3c:dd:
46:63:64:eb:e1:85:3c:c4:de:23:c4:88:bb:cc:14:
76:2c:c5:06:8f:0c:76:a3:1d:5f:73:da:06:d1:c7:
53:25:f6:5a:01:6a:cc:78:d2:d5:64:ca:40:cb:64:
bb:77:40:48:52:50:3f:5a:bc:36:bc:b2:06:c4:e7:
27:df:19:8c:05:b9:71:f8:a6:5b:e8:2c:46:55:21:
89:32:00:94:70:fc:de:c3:45:a7:4e:1d:0e:2b:07:
e9:63:65:55:c7:a3:72:00:df:7e:af:5d:46:57:41:
a9:f8:76:d2:c7:c9:63:12:58:5b:94:dd:ef:98:fa:
ca:ab:4f:9a:bd:bd:e0:6a:b6:57:db:9f:d5:36:d2:
24:d0:4d:b1:61:a0:f1:4f:9c:c0:5a:6a:93:01:00:
da:89:1a:a0:71:23:14:fb:00:b9:55:17:0c:8b:37:
7e:3e:6f:0f:4b:3a:3e:4c:c5:19:04:51:db:a4:ab:
b7:70:59:e5:71:ca:2f:cc:bb:e3:88:d4:ae:66:be:
9b:0c:2c:46:df:aa:c3:b3:63:64:7b:e2:a1:01:df:
16:e1:06:ff:16:a9:a5:e5:34:65:6a:f5:28:9b:c4:
28:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D6:B9:2D:72:72:B4:B1:07:43:FA:A5:83:39:DB:CF:2C:18:57:83
X509v3 Authority Key Identifier:
keyid:5A:D6:30:B6:1D:2E:72:92:F9:CE:F8:93:BB:6D:71:24:2A:5F:4B:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtYwth0ucpL5zviTu21xJCpfS-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/O9a5LXJytLEHQ_qlgznbzywYV4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.253.0/24
Signature Algorithm: sha256WithRSAEncryption
43:0f:12:99:25:54:bd:fe:69:94:f1:82:b4:76:79:5c:ee:21:
4f:ca:ed:b0:4b:8d:bc:39:72:2a:d3:93:0d:4c:5c:21:c9:3e:
f2:b5:b6:90:3c:b3:73:ac:a6:cc:8a:bd:c5:a8:c1:90:30:ff:
ca:c7:95:a6:4a:b4:a7:a6:81:f9:cc:e1:2a:f0:64:92:cb:19:
91:c3:93:15:40:48:13:12:ff:67:68:1a:5d:50:dc:58:4f:e2:
a0:7b:aa:0d:3c:63:3c:86:e6:bc:6d:bb:83:4a:0a:4e:38:cc:
d8:62:7f:3c:3d:d0:91:91:2a:d1:6b:8a:c3:bd:f6:2c:4c:ed:
96:d8:08:4d:36:15:ed:0d:e9:8e:4d:54:da:fd:4a:82:e3:5c:
1b:84:0b:fe:cd:12:83:ee:3b:9a:90:18:5a:40:5a:5a:d4:40:
ea:93:e6:69:a4:a3:f1:9f:2a:9a:3b:3a:87:20:88:22:af:f5:
2d:65:82:0a:60:11:05:e5:b3:b2:ea:24:12:26:db:e8:8d:41:
83:ab:5e:e0:d3:ef:c2:78:6f:d6:06:77:7b:c6:27:be:4a:12:
ad:6d:25:c5:85:15:21:b0:9f:c2:95:7b:b5:a7:e7:4f:9f:ec:
29:7c:eb:75:86:47:46:e3:3c:dd:3f:19:ff:1e:56:7e:8c:eb:
10:5d:5a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:59 2025 by rpki-client