Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/kgiDE7_5SMwheCo83JWmQ3t9TJ4.roa
File: kgiDE7_5SMwheCo83JWmQ3t9TJ4.roa (raw, json)
Hash identifier: DPe5OCMTqVVauJubdau1SHDhBlRY+MVk34tMzG9i44M=
Subject key identifier: 92:08:83:13:BF:F9:48:CC:21:78:2A:3C:DC:95:A6:43:7B:7D:4C:9E
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 032CBAE3
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/kgiDE7_5SMwheCo83JWmQ3t9TJ4.roa
Signing time: Mon 17 Jan 2022 14:09:57 +0000
ROA not before: Mon 17 Jan 2022 14:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200404
IP address blocks: 194.37.93.0/24 maxlen: 24
194.37.92.0/24 maxlen: 24
194.37.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53263075 (0x32cbae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Jan 17 14:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92088313bff948cc21782a3cdc95a6437b7d4c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7a:5f:40:a3:2e:84:3e:45:59:47:33:15:19:
1a:06:68:8a:b6:98:f2:00:5d:51:be:a8:a9:83:b5:
38:1a:fa:34:2b:b8:5d:74:0b:83:15:59:65:b6:45:
87:d0:cf:d4:d4:52:11:d3:e9:43:1b:d9:a6:9d:c6:
cf:d8:67:6f:6c:83:63:a4:16:5e:1e:64:49:bc:6e:
a2:90:5f:46:0e:cc:08:57:89:5c:46:e5:62:49:0f:
9d:72:96:7a:72:24:57:39:c1:4c:0d:a1:0e:b7:b4:
af:48:c4:f3:4f:49:cd:73:d1:ad:2b:d0:79:78:e4:
6e:2a:2b:19:22:0b:73:89:22:78:9a:9f:58:23:23:
d5:a3:b0:02:2e:c2:04:6f:01:6a:06:03:20:eb:27:
6c:91:45:e6:17:cc:ab:e5:fd:57:39:2c:53:6c:cd:
08:b4:52:88:6b:e2:28:1b:c0:6e:fb:65:3d:ec:68:
3a:49:1b:d5:f5:62:f4:09:a3:71:dc:4e:66:68:f0:
99:a0:06:89:4e:8f:c8:f4:22:4e:06:a5:df:29:61:
67:d6:6f:e4:10:6b:20:4c:d9:c2:27:e6:f1:36:b9:
71:5a:23:6b:f5:7d:56:44:f4:ba:3e:9e:fe:7d:d2:
07:83:79:4f:ec:85:69:0c:c2:86:43:b3:7e:bd:82:
cd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:08:83:13:BF:F9:48:CC:21:78:2A:3C:DC:95:A6:43:7B:7D:4C:9E
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/kgiDE7_5SMwheCo83JWmQ3t9TJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.92.0/23
194.37.95.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5e:44:ba:dd:7d:24:aa:48:33:35:88:a2:19:b3:d2:a3:77:
66:67:ee:41:9d:e2:db:7b:a3:55:67:06:99:3c:2d:83:91:ea:
f0:ff:50:6a:f9:7e:6b:19:59:40:27:31:e6:6c:f0:01:0e:7c:
47:bd:c0:7d:13:67:a3:fe:38:5c:3c:63:9e:ac:31:49:50:1c:
a8:ae:04:9a:9c:b8:25:f8:4b:03:5a:6f:eb:51:7d:b7:a8:d2:
ac:cf:1a:1d:dc:bf:71:43:0b:04:41:99:dd:99:8b:ff:04:c6:
0c:e8:e6:76:62:f5:82:4a:82:b9:72:58:a0:84:08:51:22:1b:
8e:21:5c:83:74:09:da:8b:6d:44:02:55:f7:7e:f1:0b:2f:3f:
81:a1:c5:0f:64:07:ea:bf:fa:b6:ae:19:a6:af:dc:1a:35:16:
21:a1:a2:ab:83:00:26:45:22:64:f1:9d:0b:8f:e8:86:fa:71:
c1:ef:6e:67:e8:08:2e:8f:6c:36:b9:db:f2:fc:be:83:d4:7f:
49:ee:79:5e:a8:53:75:2d:1e:d0:3a:17:d2:f1:06:31:e2:7b:
8a:06:0a:d1:76:46:7e:5b:f8:e1:43:65:09:e5:9e:97:5e:18:
eb:a4:06:39:0d:e0:47:c1:ff:16:03:12:45:7c:ad:e7:06:77:
92:a9:90:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:35 2025 by rpki-client