Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/7c0c57-15a8-4307-850d-e021f8ce6c51/1/6jhJB0I-plbMIo2GeXxRdxW5nQU.roa
File: 6jhJB0I-plbMIo2GeXxRdxW5nQU.roa (raw, json)
Hash identifier: iw+PRRPeues2m7SyongAMZ+7pJaoaW9dbw54iifhBFA=
Subject key identifier: EA:38:49:07:42:3E:A6:56:CC:22:8D:86:79:7C:51:77:15:B9:9D:05
Certificate issuer: /CN=7755cd8be71e29e72d9690c7cd4087b5f26116f0
Certificate serial: 018C7D4B74989C78069D4F3FB2600CFBDACE
Authority key identifier: 77:55:CD:8B:E7:1E:29:E7:2D:96:90:C7:CD:40:87:B5:F2:61:16:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1XNi-ceKectlpDHzUCHtfJhFvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/7c0c57-15a8-4307-850d-e021f8ce6c51/1/6jhJB0I-plbMIo2GeXxRdxW5nQU.roa
Signing time: Mon 18 Dec 2023 14:19:06 +0000
ROA not before: Mon 18 Dec 2023 14:19:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2611
IP address blocks: 193.53.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7d:4b:74:98:9c:78:06:9d:4f:3f:b2:60:0c:fb:da:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7755cd8be71e29e72d9690c7cd4087b5f26116f0
Validity
Not Before: Dec 18 14:19:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea384907423ea656cc228d86797c517715b99d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9f:53:e1:33:0f:36:e8:ab:9d:81:ca:6a:9c:
90:b7:14:ac:3d:41:80:53:8b:19:a1:5e:3e:73:fa:
2d:a1:f5:40:aa:0f:a3:45:9d:7a:2f:b2:c6:9b:bd:
fc:64:ea:f1:2b:3b:f0:b7:3a:48:0d:0c:f1:b2:60:
6e:85:21:b9:16:d9:c8:e5:36:03:0c:99:e2:a4:8d:
16:c7:18:f0:7a:ae:1c:35:56:c0:25:b1:8d:5e:a2:
fb:8a:0f:59:58:ba:43:32:6a:c6:2c:58:55:db:21:
9c:ac:c3:f6:76:2c:06:62:5b:ee:a0:66:df:85:64:
39:a0:dd:b9:54:4a:09:fb:98:9b:77:73:48:91:df:
f3:5f:8e:40:21:01:9e:33:e7:79:47:25:52:0a:67:
e8:f2:b0:d4:47:8d:ab:f7:46:11:1d:d2:10:d7:07:
99:56:50:22:99:c3:16:48:22:fe:f5:1e:e8:2c:45:
02:a2:1b:7b:0c:af:b3:bb:f5:66:fd:de:9a:04:b6:
04:f2:55:43:f1:46:f5:e2:db:36:7b:1c:7f:12:99:
9a:46:0c:20:87:18:2c:74:7b:0a:eb:c6:1f:44:b8:
7a:28:27:d7:00:d7:f0:01:7d:39:74:66:ed:69:11:
6f:86:48:ff:0e:5b:73:e0:35:ed:f9:76:b8:6f:8d:
a1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:38:49:07:42:3E:A6:56:CC:22:8D:86:79:7C:51:77:15:B9:9D:05
X509v3 Authority Key Identifier:
keyid:77:55:CD:8B:E7:1E:29:E7:2D:96:90:C7:CD:40:87:B5:F2:61:16:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1XNi-ceKectlpDHzUCHtfJhFvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/7c0c57-15a8-4307-850d-e021f8ce6c51/1/6jhJB0I-plbMIo2GeXxRdxW5nQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/7c0c57-15a8-4307-850d-e021f8ce6c51/1/d1XNi-ceKectlpDHzUCHtfJhFvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.125.0/24
Signature Algorithm: sha256WithRSAEncryption
67:57:32:02:ca:86:8b:78:18:cc:2e:a7:59:ba:5e:6c:90:e8:
71:67:65:d0:47:4e:23:d1:08:29:67:25:ab:8a:49:a8:b0:4c:
32:dc:0a:5d:7e:94:dd:ba:5d:11:1b:93:ee:9c:b6:29:3a:44:
70:74:d4:cd:c8:21:04:ea:7b:9e:6c:a3:31:a9:ef:c0:51:75:
ac:07:0a:46:23:ab:8b:de:d6:e1:79:48:b6:f6:30:40:70:97:
1f:9f:ce:14:38:16:75:20:43:27:ab:75:06:d9:8f:0d:e4:80:
a3:b0:e7:6c:d9:7e:46:6b:f1:e3:22:f6:4f:72:fa:0e:27:30:
1d:0c:9e:b5:27:6d:fd:40:60:bf:b6:90:22:dc:52:3b:c3:13:
34:0e:8c:8a:a1:04:f2:b1:9c:ad:4d:f3:7f:29:98:88:05:f6:
b0:4a:be:44:43:6f:f9:61:0c:cb:cf:45:89:03:de:2f:ac:1e:
2a:bc:5e:bc:93:3e:f0:e3:2d:f2:36:e4:af:fa:41:36:70:11:
47:8c:ae:5c:44:f0:36:9d:8b:42:59:90:52:19:f6:3e:52:cd:
ab:3d:a1:16:a9:67:6f:77:15:bc:3b:fa:6c:d5:6f:99:6e:dd:
bc:ff:3c:bc:12:66:63:5b:3e:f3:98:cb:4c:1d:d8:d8:e0:83:
2f:ba:bd:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:17 2025 by rpki-client