Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/W7FxeSPuv1tKKqGsr5Pzuse2ewk.roa
File: W7FxeSPuv1tKKqGsr5Pzuse2ewk.roa (raw, json)
Hash identifier: sLNo4IMeVSk6PcnfwMV3k0Bd33696RUKiVr7tJEXVHE=
Subject key identifier: 5B:B1:71:79:23:EE:BF:5B:4A:2A:A1:AC:AF:93:F3:BA:C7:B6:7B:09
Certificate issuer: /CN=eb153da3c24ce1236e20c46861635dc8efb56a92
Certificate serial: 742A
Authority key identifier: EB:15:3D:A3:C2:4C:E1:23:6E:20:C4:68:61:63:5D:C8:EF:B5:6A:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6xU9o8JM4SNuIMRoYWNdyO-1apI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/W7FxeSPuv1tKKqGsr5Pzuse2ewk.roa
Signing time: Tue 26 Apr 2022 06:43:49 +0000
ROA not before: Tue 26 Apr 2022 06:43:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 193.201.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29738 (0x742a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb153da3c24ce1236e20c46861635dc8efb56a92
Validity
Not Before: Apr 26 06:43:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bb1717923eebf5b4a2aa1acaf93f3bac7b67b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:20:4a:f0:cd:96:ad:be:0b:5f:5a:b6:be:f4:
b0:43:ce:73:94:5d:90:d2:a4:6c:0d:b6:93:04:23:
8a:c1:22:04:1f:6e:69:fc:ba:18:34:3b:9c:0e:cc:
b3:73:1d:f6:b5:aa:b6:1a:97:e8:52:04:92:95:79:
a1:0d:f8:92:97:c9:f5:01:df:5f:94:a0:c9:32:77:
be:aa:c8:9b:37:dc:42:b0:01:fd:9e:60:c6:17:26:
15:43:d4:63:51:7f:c6:72:bd:d5:e4:24:7b:36:a5:
18:3c:d6:e9:eb:e1:8d:d9:50:09:1d:04:30:0f:40:
52:83:9f:ff:ae:16:5d:6c:26:73:60:93:ce:59:e4:
14:fd:b2:87:61:e2:2f:23:48:b5:f9:86:20:23:68:
79:ea:66:22:e2:dd:2f:94:b0:8a:3a:88:1b:06:05:
44:e9:5b:55:2e:0b:6a:58:19:db:d1:0c:25:7c:85:
55:b2:2b:5c:19:09:bc:6c:91:fa:ed:e2:03:b9:8c:
0b:c6:90:f2:1a:7c:af:fd:b9:e8:cc:8f:bb:1e:57:
ba:01:d8:c3:50:03:f3:d3:0f:89:1b:be:6f:60:96:
ae:4f:94:2a:b8:18:82:98:97:c8:c2:dd:14:14:ed:
1c:7b:22:ce:78:7a:b1:fe:78:eb:27:5b:50:ea:82:
27:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B1:71:79:23:EE:BF:5B:4A:2A:A1:AC:AF:93:F3:BA:C7:B6:7B:09
X509v3 Authority Key Identifier:
keyid:EB:15:3D:A3:C2:4C:E1:23:6E:20:C4:68:61:63:5D:C8:EF:B5:6A:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6xU9o8JM4SNuIMRoYWNdyO-1apI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/W7FxeSPuv1tKKqGsr5Pzuse2ewk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/6xU9o8JM4SNuIMRoYWNdyO-1apI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.20.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:af:e9:e6:d1:c6:aa:3b:0e:01:e0:0b:ee:aa:d7:61:55:5b:
f5:d1:1b:b9:fb:4f:ab:a8:98:e9:f2:1f:33:c1:d2:56:79:59:
4f:d8:c3:27:49:9f:f5:40:ee:39:75:04:44:32:dc:86:35:1c:
f3:a9:0b:11:18:c7:33:6b:92:c3:b7:93:91:9d:30:25:8d:c1:
a5:94:d2:a2:7a:15:3a:3b:d3:58:9c:0d:4b:15:36:3b:14:68:
9d:18:19:e8:fd:7c:69:25:9f:00:09:65:a6:a4:75:5f:d2:02:
f0:1f:34:9c:1e:90:c0:57:57:4e:e8:70:e8:b3:d5:43:fc:f9:
20:47:f5:b5:bb:7b:08:ea:ff:c0:74:66:86:ac:bc:05:26:be:
1b:7b:fa:be:3d:5d:4f:90:97:d5:a1:d5:e7:4b:2d:75:51:38:
d7:19:e8:1a:75:d7:2d:1b:75:d4:73:8b:c6:64:81:11:de:79:
e1:8d:f4:27:d2:54:0b:60:b1:50:20:4f:fb:3e:3c:3f:e2:e2:
6f:2c:4a:29:fb:38:21:91:80:69:84:03:c2:13:8e:ab:cc:2b:
75:d4:b6:9d:4d:65:e0:72:25:ff:a1:12:dc:d2:67:d8:1b:25:
ed:63:9e:50:f1:d7:9f:43:c4:6b:4b:bb:d3:1e:7e:78:8d:42:
f5:ff:be:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:00 2025 by rpki-client