Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/da9489-6b8f-47b0-a69d-b69e44349395/1/42jqQA4nlqWcdrujL69tiJndx9E.roa
File: 42jqQA4nlqWcdrujL69tiJndx9E.roa (raw, json)
Hash identifier: oAdEcvAkwDFJkUnz+j+MFxDm3UAQ8KwGbgzLGUxtfhY=
Subject key identifier: E3:68:EA:40:0E:27:96:A5:9C:76:BB:A3:2F:AF:6D:88:99:DD:C7:D1
Certificate issuer: /CN=5725add2bff3e668ae18554beebf31a23a69dda5
Certificate serial: 018571553A4FBDA471FA7B156C283E1E4C6D
Authority key identifier: 57:25:AD:D2:BF:F3:E6:68:AE:18:55:4B:EE:BF:31:A2:3A:69:DD:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyWt0r_z5miuGFVL7r8xojpp3aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/da9489-6b8f-47b0-a69d-b69e44349395/1/42jqQA4nlqWcdrujL69tiJndx9E.roa
Signing time: Mon 02 Jan 2023 07:14:49 +0000
ROA not before: Mon 02 Jan 2023 07:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12823
IP address blocks: 193.53.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:3a:4f:bd:a4:71:fa:7b:15:6c:28:3e:1e:4c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5725add2bff3e668ae18554beebf31a23a69dda5
Validity
Not Before: Jan 2 07:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e368ea400e2796a59c76bba32faf6d8899ddc7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1b:38:c7:6f:c8:ba:e3:62:1e:cd:cc:a2:4f:
38:3d:ae:8b:71:d5:f3:ce:1c:81:73:d1:da:af:51:
7c:3e:d2:c5:3b:a2:ad:c1:a6:47:5d:db:5f:6c:dc:
b7:91:ba:fa:f7:2f:82:d9:b3:ba:7f:67:f9:ba:78:
47:61:5c:dd:f6:76:c4:04:c8:ea:57:d6:9a:39:bb:
7e:64:e0:10:f4:eb:9a:eb:86:17:a3:6a:11:3b:88:
0d:5e:14:1b:a0:74:30:7e:d1:57:47:e4:33:70:55:
a2:6b:c3:34:8e:07:69:ec:78:2a:50:bd:a7:00:2e:
dc:0d:23:a4:60:68:42:a0:fb:16:d9:f0:a6:64:1b:
15:5a:03:90:19:8b:c0:0e:b4:3b:d5:a4:d1:91:04:
93:9a:59:0a:ec:b7:f6:c0:4e:09:56:24:48:94:f9:
73:8f:99:8f:3f:98:65:de:d2:84:4a:24:94:0c:5d:
c1:79:4b:07:5d:02:8a:fa:e3:5b:22:a4:20:69:5d:
3e:0f:f9:11:8c:28:12:de:b3:12:d5:14:a7:50:da:
66:c1:6b:fe:45:39:a3:15:85:7b:2e:f9:ef:85:b0:
82:1a:b2:49:72:5c:2c:43:62:4d:e2:56:d0:f4:3d:
87:f5:1b:56:c7:d5:bc:1d:e9:86:29:64:3b:91:45:
bf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:68:EA:40:0E:27:96:A5:9C:76:BB:A3:2F:AF:6D:88:99:DD:C7:D1
X509v3 Authority Key Identifier:
keyid:57:25:AD:D2:BF:F3:E6:68:AE:18:55:4B:EE:BF:31:A2:3A:69:DD:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyWt0r_z5miuGFVL7r8xojpp3aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/da9489-6b8f-47b0-a69d-b69e44349395/1/42jqQA4nlqWcdrujL69tiJndx9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/da9489-6b8f-47b0-a69d-b69e44349395/1/VyWt0r_z5miuGFVL7r8xojpp3aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.106.0/24
Signature Algorithm: sha256WithRSAEncryption
50:aa:c0:52:e1:7c:c3:ab:f6:75:7f:f0:3e:70:0b:41:ec:37:
b2:7a:6f:1a:a9:70:07:af:7f:27:6c:e9:a0:72:02:3a:da:ff:
3a:b1:c2:94:ac:1e:f8:21:90:9b:37:18:8c:93:0e:85:f2:55:
2f:72:da:90:a7:25:67:5f:ce:1d:c7:c1:c9:8a:15:8b:f3:d0:
7d:bf:b0:7f:1b:97:25:b1:c5:95:ee:93:2e:a2:ff:0c:a1:93:
e0:2a:60:99:f5:c9:a5:d8:5c:e8:81:4f:e5:6b:af:7f:83:5e:
b2:a6:6a:b0:03:88:cf:78:39:9c:8d:2b:c5:00:17:ca:a0:16:
09:57:c9:f7:e9:02:b2:4c:d8:c6:e3:39:7a:73:90:63:b1:74:
fd:13:a8:3e:d8:d8:d9:e8:91:28:a7:f8:16:df:fa:38:28:22:
a6:a9:78:1f:df:fa:6e:7c:45:b4:da:56:7d:d1:f1:09:4e:3d:
ed:ba:bf:f4:3c:41:47:06:f4:59:e0:1c:d1:16:e7:10:fe:a2:
d5:7d:9c:5c:26:99:7a:9c:e8:1c:6f:f2:79:15:a2:96:5c:93:
c8:8d:10:d3:49:30:2e:1e:69:26:22:8b:25:26:5c:55:0f:db:
2f:93:fd:48:f7:af:9e:a9:6e:92:25:17:0c:48:99:3d:ba:b2:
49:2d:54:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:49 2025 by rpki-client