Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/W925KAqOedhAd0yWSm4-LnyoeaM.roa
File: W925KAqOedhAd0yWSm4-LnyoeaM.roa (raw, json)
Hash identifier: uFPZ3yg8txjtePI6FxUziF+AGszeXPWTfby3tg4EGgw=
Subject key identifier: 5B:DD:B9:28:0A:8E:79:D8:40:77:4C:96:4A:6E:3E:2E:7C:A8:79:A3
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 01856FC281D7C42AAD7F5F7F1C51B2C2B297
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/W925KAqOedhAd0yWSm4-LnyoeaM.roa
Signing time: Sun 01 Jan 2023 23:54:56 +0000
ROA not before: Sun 01 Jan 2023 23:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201711
IP address blocks: 37.77.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:81:d7:c4:2a:ad:7f:5f:7f:1c:51:b2:c2:b2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Jan 1 23:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bddb9280a8e79d840774c964a6e3e2e7ca879a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e9:9b:31:1a:ac:3f:19:e0:c1:71:08:f2:58:
0f:da:0a:84:3b:21:41:7f:82:ae:47:21:5e:8c:6c:
b2:45:15:a2:59:05:bf:ac:c4:fb:b8:a2:8b:07:fa:
5b:b1:fe:7e:28:42:e3:b9:98:85:10:bb:cb:21:33:
9f:65:72:72:73:b2:3d:6c:8d:7f:42:b9:12:bf:d0:
d8:00:28:df:ea:56:33:42:98:12:ac:d4:fc:8a:64:
0d:3a:d8:05:8a:9a:bc:eb:87:d4:3a:03:2e:5d:42:
82:22:b7:ab:30:d2:69:47:1d:ca:21:6e:90:fa:30:
03:36:49:91:c7:f8:26:8e:c0:dd:77:43:af:c7:ed:
05:ca:cc:2b:a3:f6:b2:79:c0:b2:f8:33:be:8f:a5:
ea:cb:66:56:2e:9c:f3:8b:b0:48:5c:36:5f:1b:83:
5e:da:ad:bc:56:80:73:77:a6:80:df:e0:11:c7:f4:
b7:ef:4a:21:31:11:91:7f:c8:53:ca:48:83:41:ce:
05:65:d7:0f:0c:45:33:f4:cf:e3:56:13:b1:50:ea:
ea:f2:9b:12:e6:63:9e:1c:21:55:0a:96:21:1f:cd:
2e:e1:29:ca:7c:7d:b9:2d:24:fc:a7:d3:91:70:ea:
04:2e:13:87:2f:06:ae:34:64:95:3d:25:f3:8e:4a:
e5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DD:B9:28:0A:8E:79:D8:40:77:4C:96:4A:6E:3E:2E:7C:A8:79:A3
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/W925KAqOedhAd0yWSm4-LnyoeaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.175.0/24
Signature Algorithm: sha256WithRSAEncryption
60:96:ac:e5:70:fc:82:68:8a:80:db:a6:2a:ca:2e:23:f9:db:
05:d7:b9:d5:0d:18:d3:2c:78:5a:7d:c4:4a:3c:09:8c:77:ef:
e8:09:2c:3f:8f:70:58:0d:19:02:fc:25:e2:97:4e:84:cf:75:
4b:5f:4a:20:77:ca:72:85:07:12:17:86:6f:4f:92:88:ca:40:
1c:70:de:24:d0:aa:d8:f9:28:38:12:c5:45:0b:da:be:c1:9f:
35:14:ee:e4:e7:ac:4a:c9:cb:d7:1a:6e:67:e7:bd:85:c0:76:
14:75:02:77:47:60:83:10:06:a3:0c:8a:a9:b6:1e:41:41:d5:
03:c4:a2:86:54:38:4e:9d:2a:ea:3b:29:d3:cd:61:b0:3f:92:
73:7d:8a:0f:9a:81:06:c3:31:a6:51:27:c0:ae:72:5f:d1:ea:
5b:b0:4e:76:03:99:2d:0f:85:a4:11:33:0d:97:6b:10:bd:21:
35:28:d8:81:70:1d:4c:a4:ca:f7:25:41:07:b0:42:90:9c:87:
4b:95:54:e9:de:6e:43:f4:56:26:e5:68:31:49:d7:7a:12:f3:
f4:ac:ae:50:a2:45:ff:04:5b:04:27:00:d8:f0:69:e2:34:20:
8f:ce:32:7f:62:17:f9:c4:c9:95:91:68:5c:43:69:ee:e8:62:
b2:e6:24:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:43 2025 by rpki-client