Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/RUkkxh2SB-L5WLp9xwXujSIQJLg.roa
File: RUkkxh2SB-L5WLp9xwXujSIQJLg.roa (raw, json)
Hash identifier: +0jpaj6iYlJV1OGX0OA5PEtF4uHPh7/x93vDLNwBTvg=
Subject key identifier: 45:49:24:C6:1D:92:07:E2:F9:58:BA:7D:C7:05:EE:8D:22:10:24:B8
Certificate issuer: /CN=40254d4a767ad099606e442e092f91241a363670
Certificate serial: 049EC82F
Authority key identifier: 40:25:4D:4A:76:7A:D0:99:60:6E:44:2E:09:2F:91:24:1A:36:36:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCVNSnZ60JlgbkQuCS-RJBo2NnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/RUkkxh2SB-L5WLp9xwXujSIQJLg.roa
Signing time: Thu 10 Feb 2022 07:27:01 +0000
ROA not before: Thu 10 Feb 2022 07:27:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207864
IP address blocks: 193.22.168.0/24 maxlen: 24
193.22.170.0/24 maxlen: 24
193.22.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77514799 (0x49ec82f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40254d4a767ad099606e442e092f91241a363670
Validity
Not Before: Feb 10 07:27:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=454924c61d9207e2f958ba7dc705ee8d221024b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:92:d1:00:61:05:20:3e:aa:b9:4b:27:8f:5d:
c6:9d:fe:c8:75:cd:89:83:cb:42:3a:66:a8:d5:5f:
1b:28:7e:0b:be:67:c4:26:20:80:f0:bc:e7:ca:90:
b0:28:42:c1:1e:a7:f4:bc:8d:a0:b5:6e:d8:a0:81:
d5:5c:2a:06:6a:69:3c:7e:a7:b7:f5:d4:e5:7c:fd:
b3:f3:27:00:a1:36:5d:61:82:22:47:98:0e:24:72:
6e:82:07:d3:93:29:25:38:ac:4f:2a:78:9f:ea:25:
c3:18:d0:32:fd:e9:33:14:14:bc:33:a8:a9:b9:b5:
1a:05:d8:94:5a:d8:9d:60:c1:e5:02:7f:90:d6:d9:
b7:f4:64:76:3d:d4:53:ca:ea:4a:22:3f:4a:cd:e9:
05:b0:e0:85:3e:e9:0a:4e:48:61:b1:4a:6c:39:5d:
9a:53:b1:4d:60:76:22:fb:43:ef:5b:f8:fc:5e:66:
b9:65:24:9b:2a:3e:e3:09:5f:f2:c8:87:4d:dd:03:
bf:b6:96:a8:c3:b8:f8:a9:ae:1d:ca:e5:b4:f0:1d:
73:8b:21:ee:3c:be:aa:f1:c5:83:be:56:97:b5:81:
8b:81:d1:b5:7a:94:b9:75:06:59:ae:92:bc:7e:f9:
0e:0a:1d:63:5d:9c:f9:80:a2:69:27:ad:9a:c7:bf:
40:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:49:24:C6:1D:92:07:E2:F9:58:BA:7D:C7:05:EE:8D:22:10:24:B8
X509v3 Authority Key Identifier:
keyid:40:25:4D:4A:76:7A:D0:99:60:6E:44:2E:09:2F:91:24:1A:36:36:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCVNSnZ60JlgbkQuCS-RJBo2NnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/RUkkxh2SB-L5WLp9xwXujSIQJLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/QCVNSnZ60JlgbkQuCS-RJBo2NnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.108.0/24
193.22.168.0/24
193.22.170.0/24
Signature Algorithm: sha256WithRSAEncryption
95:f2:02:bf:46:3f:3b:94:2a:c5:b4:1f:df:d3:19:dd:e6:18:
e3:6b:6b:b3:d2:21:0a:cf:24:a6:78:45:24:e8:58:3a:19:28:
b3:8d:6f:78:fe:e9:ee:fa:35:a4:f0:b1:7f:52:d3:cc:da:cf:
88:29:45:17:f5:51:d8:a0:c9:8c:bf:05:89:2c:93:cb:3f:d3:
ac:13:82:5c:f0:cd:fa:d9:66:0a:15:ae:6e:da:07:56:fd:ee:
fe:e6:e4:af:21:02:33:af:cc:e1:bd:c6:2b:93:88:94:ce:64:
23:b0:a4:d6:79:83:98:e4:44:d7:f9:63:44:05:7a:54:cc:16:
c1:c6:39:89:60:04:76:36:e1:30:f7:6a:cb:2c:2e:c7:8f:2d:
47:a7:10:de:0e:bb:1a:ca:f8:36:c7:49:df:03:be:86:0c:cc:
8f:8f:55:60:40:3a:c5:df:95:af:bd:05:f4:d1:b0:28:5d:7c:
75:12:1c:6d:e4:61:d7:5b:fd:bd:91:57:6c:48:6f:8a:26:d8:
bd:1d:30:6d:9f:0b:da:ff:cd:02:d4:a7:86:f4:71:1d:82:eb:
0a:fd:6d:b5:de:f1:6b:02:27:29:68:61:da:01:db:4d:42:58:
6b:b7:3c:62:6a:24:84:bc:64:1e:d4:13:cc:67:7a:e6:0d:41:
4c:44:e0:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:23 2025 by rpki-client