Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/uV1-udSxXfTsvHgbhyQhI31oaGg.roa
File: uV1-udSxXfTsvHgbhyQhI31oaGg.roa (raw, json)
Hash identifier: uq8dUEVHtgSG6aa4I/uehaFlfLppj0wIrUeJVMgq1Xk=
Subject key identifier: B9:5D:7E:B9:D4:B1:5D:F4:EC:BC:78:1B:87:24:21:23:7D:68:68:68
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 045703D3
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/uV1-udSxXfTsvHgbhyQhI31oaGg.roa
Signing time: Fri 27 May 2022 09:43:15 +0000
ROA not before: Fri 27 May 2022 09:43:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200404
IP address blocks: 194.37.93.0/24 maxlen: 24
194.37.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72811475 (0x45703d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: May 27 09:43:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b95d7eb9d4b15df4ecbc781b872421237d686868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:44:30:14:ab:3d:87:72:b3:ee:ec:b0:f9:e1:
02:0e:4b:89:8a:23:90:46:e3:5f:89:a2:ec:c1:0c:
08:3c:93:59:ec:df:59:09:eb:7c:c2:8c:10:45:1f:
c0:1c:43:1b:86:a9:9b:6d:ae:9e:17:dc:dd:0d:33:
29:26:d6:3f:f5:0b:70:18:ae:5b:7f:ee:6a:fb:f6:
aa:6b:f6:2d:24:c0:0e:aa:48:4a:6f:ec:ae:cf:93:
2a:c6:38:55:b3:ff:84:7a:26:5a:24:01:ea:d3:ce:
21:a7:2b:c6:5b:45:b3:9e:ed:62:89:c5:2b:33:f6:
c2:4c:83:ea:39:7b:bf:51:4b:52:7a:88:9f:40:39:
1c:83:4d:97:2d:47:a1:8e:63:71:3c:a0:c4:e6:9d:
79:a5:5d:49:1d:37:07:00:a3:03:2a:fb:32:6a:c9:
b9:62:91:bb:90:0e:32:ba:4a:63:f1:56:f6:aa:66:
4c:f0:18:00:cc:c7:e0:d9:10:61:8c:70:b0:ae:00:
a9:e9:2a:89:37:76:69:cf:11:0a:2a:9d:06:ac:7a:
cd:cf:f2:1d:e4:21:db:f3:6c:99:69:0a:7c:65:31:
a4:9a:58:94:65:6d:bc:5c:a7:84:dd:32:9f:49:b4:
e4:40:a3:e1:71:54:7f:4d:7f:0a:de:ef:fb:30:1c:
0c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5D:7E:B9:D4:B1:5D:F4:EC:BC:78:1B:87:24:21:23:7D:68:68:68
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/uV1-udSxXfTsvHgbhyQhI31oaGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.93.0/24
194.37.95.0/24
Signature Algorithm: sha256WithRSAEncryption
05:66:a8:b9:37:32:89:54:85:57:00:c3:46:5e:40:8b:6f:59:
de:d0:5d:df:0d:c4:52:0b:b8:11:fc:97:f0:b8:b0:a8:35:a8:
a1:d2:1b:72:64:2c:bc:75:cd:59:3d:9b:f1:62:6b:af:f4:9f:
ac:f8:5d:a8:5f:4c:a7:2e:24:57:67:ae:04:c0:4f:3f:97:b0:
93:ed:a1:53:c5:1a:96:87:73:36:dc:d0:00:43:b7:da:00:74:
b1:82:16:fe:42:4a:27:73:2b:80:91:f8:b8:dd:ae:bf:34:bd:
3a:b7:6f:96:91:a1:ec:f5:e2:20:3f:51:f9:10:1c:e5:99:00:
ee:f7:3e:55:ff:9b:da:a1:6e:4e:70:d4:51:af:4d:db:5c:7b:
29:f4:f4:b4:26:41:70:8e:3c:86:4c:4a:f3:21:ee:dd:d9:a6:
79:46:cb:13:9a:70:50:92:b8:e3:4d:12:0b:5b:38:fe:81:10:
45:3f:54:0e:31:24:66:30:dc:f6:0f:7e:11:04:e1:c7:a8:32:
ea:90:7e:8a:ce:8b:cf:14:bc:17:43:38:d5:e3:2b:7d:d6:4b:
d2:69:b4:c6:da:8d:1c:ac:f4:6d:e5:ce:04:ab:e6:ef:bb:37:
e9:18:55:5a:c2:c6:5d:68:82:fc:db:7b:91:20:1c:c4:d5:b2:
ff:16:af:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:28 2025 by rpki-client