Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/SSp43sU_bafkf9fwQxAc7zv0j10.roa
File: SSp43sU_bafkf9fwQxAc7zv0j10.roa (raw, json)
Hash identifier: 2GpEHMpLO9Z1jw2Is+gl2ByZxVPpE2BAX2BqWOZ9gDc=
Subject key identifier: 49:2A:78:DE:C5:3F:6D:A7:E4:7F:D7:F0:43:10:1C:EF:3B:F4:8F:5D
Certificate issuer: /CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Certificate serial: 018571D7A0574D67CF8BC05C2A43151E6688
Authority key identifier: 05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/SSp43sU_bafkf9fwQxAc7zv0j10.roa
Signing time: Mon 02 Jan 2023 09:37:14 +0000
ROA not before: Mon 02 Jan 2023 09:37:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1257
IP address blocks: 193.241.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a0:57:4d:67:cf:8b:c0:5c:2a:43:15:1e:66:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Validity
Not Before: Jan 2 09:37:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=492a78dec53f6da7e47fd7f043101cef3bf48f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:31:bb:5b:67:36:8e:50:18:d6:a3:df:2a:c5:
36:3c:b1:c3:83:69:89:92:35:f5:c4:8a:97:7c:8d:
f0:33:be:62:6f:5b:c7:d9:7b:1a:12:bd:3e:d9:e8:
86:c3:53:63:7c:9a:e4:ac:da:10:23:1a:fc:b5:e8:
0a:0a:c2:2c:8d:a7:87:20:c2:a0:ff:01:7d:2e:3f:
6a:8b:d2:57:ab:28:ab:cf:7b:e7:c7:a8:52:9b:ca:
81:10:f6:05:60:85:25:31:32:aa:e0:ca:74:70:bd:
11:a6:41:42:db:fa:7d:d8:8d:e5:ab:21:ac:7d:2b:
df:83:eb:0e:df:df:d7:7a:b6:08:9e:48:d8:95:2d:
72:d4:8f:d9:2b:b8:2d:15:b2:69:a9:a7:cd:b7:0e:
23:b7:f5:cc:6d:89:8f:cd:4b:b6:ac:28:2c:50:17:
bc:44:63:8e:5a:33:1d:81:46:35:e8:88:ba:51:99:
e8:c8:58:43:72:7c:5f:99:1b:24:a4:bf:ab:b2:be:
bc:df:a1:2d:cd:1b:37:ef:a9:37:f0:58:c1:b2:8a:
f0:73:38:6b:84:e9:dc:28:bc:1e:ba:be:4a:ce:80:
ee:56:35:59:45:51:e1:53:fb:ba:1a:9e:21:6b:15:
8f:43:39:74:c5:c1:93:11:4a:62:ef:12:05:d7:a1:
8f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2A:78:DE:C5:3F:6D:A7:E4:7F:D7:F0:43:10:1C:EF:3B:F4:8F:5D
X509v3 Authority Key Identifier:
keyid:05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/SSp43sU_bafkf9fwQxAc7zv0j10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.241.250.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c7:73:f4:1f:ef:bf:10:cb:58:56:8e:2e:a0:55:4d:db:6f:
b0:32:36:cb:06:31:28:f4:3d:48:ea:92:32:e3:65:ff:9b:fa:
32:9e:54:fc:50:af:7d:1b:ab:7d:8a:e7:46:6d:a6:12:38:fc:
0b:12:cf:5a:f4:7a:da:ad:4f:49:02:38:98:2e:73:28:f1:54:
d2:22:5c:de:bb:f7:5e:4a:0e:64:cc:ad:f4:7e:06:1f:d1:d6:
bc:05:6d:e4:a3:b0:31:9f:b1:81:fb:a8:2c:95:bc:99:dc:fc:
7f:a3:85:e7:ce:c7:26:b0:d4:da:1f:01:39:41:77:7a:bd:67:
26:3f:dc:b9:65:f6:8f:5a:9d:3d:95:e9:1a:42:e7:6f:17:54:
f4:38:88:3d:b7:15:2c:b6:bd:4e:bc:f8:4a:93:15:6c:f8:40:
82:18:ab:3e:8b:61:3b:51:d4:d5:76:d8:d6:9a:60:9b:c5:21:
41:8c:f9:29:fa:50:42:7c:ce:a1:2b:0f:2e:a3:10:03:02:ef:
07:17:ae:a3:ab:bd:2a:d5:51:c3:c5:43:a6:c4:cb:d1:24:bd:
3e:ba:94:a2:b0:3a:95:3d:86:46:98:04:b4:04:b9:10:1e:a1:
3b:06:a8:2e:3a:41:67:b2:37:52:96:f4:b6:21:07:ab:48:88:
25:3e:9a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:24 2025 by rpki-client