Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/P5u6aZnQFmKf7RYuhNf2bewfMME.roa
File: P5u6aZnQFmKf7RYuhNf2bewfMME.roa (raw, json)
Hash identifier: Dl/ohMmgKaMwe47fl5BNSI6jRuHI9d1FJ2QYvmm66IM=
Subject key identifier: 3F:9B:BA:69:99:D0:16:62:9F:ED:16:2E:84:D7:F6:6D:EC:1F:30:C1
Certificate issuer: /CN=27f130b6f45f00f7c1d135b6c93b20e690412cfc
Certificate serial: 09BD5C56
Authority key identifier: 27:F1:30:B6:F4:5F:00:F7:C1:D1:35:B6:C9:3B:20:E6:90:41:2C:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_EwtvRfAPfB0TW2yTsg5pBBLPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/P5u6aZnQFmKf7RYuhNf2bewfMME.roa
Signing time: Sat 01 Jan 2022 13:07:44 +0000
ROA not before: Sat 01 Jan 2022 13:07:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200930
IP address blocks: 193.58.181.0/24 maxlen: 24
193.58.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163404886 (0x9bd5c56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f130b6f45f00f7c1d135b6c93b20e690412cfc
Validity
Not Before: Jan 1 13:07:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f9bba6999d016629fed162e84d7f66dec1f30c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:45:37:73:ff:d2:48:37:0b:2c:f3:85:e2:
13:d5:ba:ac:55:7c:8d:9c:12:97:8f:35:d4:32:0e:
e4:f0:03:02:1e:5f:ec:f3:cb:31:39:45:dd:6f:8c:
48:49:1a:50:66:42:41:3c:d7:16:db:98:4f:33:2e:
54:2b:92:0d:0f:c4:90:7d:fe:e4:20:7f:21:7b:ff:
29:cd:57:14:96:4c:90:11:0a:ce:fd:98:59:98:e1:
80:f4:5c:6f:92:64:cd:40:a0:90:a6:d6:c3:bc:5b:
81:a3:a2:7f:d5:b1:ef:0a:40:5d:4f:c6:6d:98:1d:
e3:38:42:ff:b1:88:f8:87:93:d3:6c:6c:5c:29:d1:
59:42:2c:3c:7a:a2:aa:59:70:c0:da:8f:3a:8c:39:
da:c2:0d:44:fb:5c:83:3d:2e:d6:e8:75:91:ec:2c:
e7:20:61:44:bd:8a:d0:89:c5:bf:3f:f1:4f:ef:2b:
86:c4:40:a2:1d:a9:0f:fb:21:cb:4e:26:08:69:d9:
21:c2:36:02:ab:4c:c5:cd:2b:50:3f:79:9f:9a:91:
f8:73:3f:f5:98:32:1b:1e:34:34:6e:ab:85:56:dc:
f0:e5:28:17:98:d0:dc:0e:32:a7:7f:62:2e:6a:dd:
4a:55:0d:c0:40:ee:f5:92:c3:32:4f:4a:03:60:04:
d6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9B:BA:69:99:D0:16:62:9F:ED:16:2E:84:D7:F6:6D:EC:1F:30:C1
X509v3 Authority Key Identifier:
keyid:27:F1:30:B6:F4:5F:00:F7:C1:D1:35:B6:C9:3B:20:E6:90:41:2C:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_EwtvRfAPfB0TW2yTsg5pBBLPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/P5u6aZnQFmKf7RYuhNf2bewfMME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/J_EwtvRfAPfB0TW2yTsg5pBBLPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.180.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:14:78:47:ce:ac:ff:a9:12:a3:51:6e:66:cb:b6:fd:b7:79:
2d:09:bd:f1:1f:11:6d:ff:4b:ec:49:9e:f2:6b:10:a3:3c:25:
71:16:4f:2e:58:54:e6:87:5c:52:ee:d8:6b:4e:15:c0:aa:42:
5a:0f:d3:11:16:e4:1b:0a:e6:cf:a3:5e:28:e5:09:f1:d3:5c:
b9:ae:8f:bf:40:07:e1:69:35:ba:08:f3:88:b8:7e:fd:7a:d4:
0a:51:a8:08:f8:66:ba:a7:f2:cf:a6:4e:d7:2b:8f:b7:32:38:
cf:35:7c:16:25:14:80:7e:a0:1b:61:fd:af:7c:88:f5:ec:a1:
d3:4a:bb:98:47:a2:61:50:c2:84:42:41:83:09:c4:22:43:06:
6a:8d:c0:86:d9:c1:81:ea:99:75:7a:cc:eb:cd:c6:83:86:53:
04:0b:1a:b5:8f:bf:07:58:40:fe:94:fa:28:4a:ff:ec:01:c8:
e0:60:5b:31:f7:95:39:dc:63:00:d7:96:14:e9:2c:88:50:95:
48:3c:02:b9:56:a1:09:f6:1f:68:77:cb:8f:d1:25:6c:07:13:
5b:52:b0:60:08:f5:a3:74:bf:18:49:a3:a5:d9:f1:c5:81:16:
c5:c1:7e:f8:8e:1e:a2:ac:34:29:da:50:89:69:c1:ed:23:0c:
18:ee:9e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:46 2025 by rpki-client