Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/Pv3omCp1VqNmVQLwe42e6kiazyQ.roa
File: Pv3omCp1VqNmVQLwe42e6kiazyQ.roa (raw, json)
Hash identifier: ij8Gk77ivM7fAdztR+sW8LxSB74Y5rKHKXDfPiDakSU=
Subject key identifier: 3E:FD:E8:98:2A:75:56:A3:66:55:02:F0:7B:8D:9E:EA:48:9A:CF:24
Certificate issuer: /CN=be18e2d9f509c9d3b455112aa288d336185801a0
Certificate serial: 01489E36
Authority key identifier: BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/Pv3omCp1VqNmVQLwe42e6kiazyQ.roa
Signing time: Sat 01 Jan 2022 11:57:47 +0000
ROA not before: Sat 01 Jan 2022 11:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211425
IP address blocks: 193.56.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21536310 (0x1489e36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be18e2d9f509c9d3b455112aa288d336185801a0
Validity
Not Before: Jan 1 11:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3efde8982a7556a3665502f07b8d9eea489acf24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:34:da:14:2e:66:77:7c:4c:f2:7e:18:6c:e9:
e8:06:a4:1f:9e:20:ce:3c:57:45:b8:1c:af:9c:55:
a2:58:60:f2:41:c0:1f:37:76:12:19:32:1f:7c:50:
86:26:a4:12:2c:0f:9d:95:9d:5f:b3:29:4f:ce:2f:
41:2b:b3:a7:35:7d:02:da:8f:86:d6:98:14:17:34:
4c:40:6b:5f:de:30:d0:cf:56:1f:b2:ad:64:48:ae:
88:f6:b9:7d:64:21:eb:39:0b:de:5d:38:cd:ca:a7:
77:fb:c0:7f:93:8b:54:3d:07:77:4e:74:cf:a9:59:
ec:35:29:82:f9:af:20:67:69:bd:75:20:e3:28:a7:
37:7d:39:38:2a:c0:cd:c7:cf:13:3e:02:65:54:67:
78:3f:45:8a:d0:2e:70:96:85:ab:1a:c5:5d:5f:60:
d6:46:41:4a:a0:56:24:ce:90:b9:7f:c3:05:78:68:
02:91:54:31:7b:14:21:8f:68:24:27:99:09:05:04:
f1:01:d2:2c:5b:5d:49:49:8b:31:f6:c1:0a:17:36:
a0:f2:e2:eb:26:39:4a:1a:ef:37:4c:37:35:d5:fb:
72:29:13:d3:f7:f5:79:5a:2d:1e:55:bd:5f:91:9b:
da:b1:1b:30:d3:23:a9:31:57:8c:5e:08:04:60:88:
ad:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FD:E8:98:2A:75:56:A3:66:55:02:F0:7B:8D:9E:EA:48:9A:CF:24
X509v3 Authority Key Identifier:
keyid:BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/Pv3omCp1VqNmVQLwe42e6kiazyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:72:f8:a3:96:66:a8:ec:c7:89:2c:c6:97:f4:b0:77:fb:bd:
fc:8c:4b:ca:e3:24:7b:53:5b:02:2f:60:0d:80:54:0a:6d:f7:
1f:f0:8a:55:62:a9:65:b8:34:07:c8:e5:f3:55:d9:a0:e8:e5:
ee:bf:53:18:26:79:6f:a3:7b:32:51:c3:15:7a:32:6a:f4:80:
5a:d8:66:ed:ba:bf:21:48:f3:87:e2:92:3c:d5:4e:b2:7d:ab:
6f:5c:ef:7f:89:7a:eb:48:e4:15:aa:61:3e:7b:73:e4:d5:2b:
59:7a:28:b4:0e:a8:30:35:5b:15:60:6f:68:70:16:4e:f1:6f:
ca:3e:2e:32:67:22:b5:70:6b:92:15:01:3a:2c:c8:ca:5c:e4:
41:cd:24:67:ba:c3:4c:e2:97:3f:4b:94:c8:1c:9e:7f:21:d5:
78:ac:ba:3e:f4:fb:bc:40:67:01:d4:43:d4:16:2b:27:0b:82:
72:c3:a6:2f:68:8f:56:08:74:0e:9d:c4:bf:b1:46:1b:db:43:
b0:5b:f5:24:99:1c:92:b4:b4:7c:96:52:e3:7d:6e:ce:21:2e:
81:cd:66:24:1c:02:40:d2:1b:65:41:f8:08:00:a2:1b:d8:c2:
96:d5:8d:58:55:82:3f:a3:d2:c6:0d:c0:be:99:b4:1b:ff:97:
7f:2f:8d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:45:23 2025 by rpki-client