Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/JwhYyrmL5ABanEymjKkuEjStxpI.roa
File: JwhYyrmL5ABanEymjKkuEjStxpI.roa (raw, json)
Hash identifier: E3d7D6X2iKEq5+1xtIVHLtw530yvE4o+9N63VrUXE2Q=
Subject key identifier: 27:08:58:CA:B9:8B:E4:00:5A:9C:4C:A6:8C:A9:2E:12:34:AD:C6:92
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01856E41E736E204E3CE36E9DA4E994AE277
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/JwhYyrmL5ABanEymjKkuEjStxpI.roa
Signing time: Sun 01 Jan 2023 16:54:50 +0000
ROA not before: Sun 01 Jan 2023 16:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211412
IP address blocks: 93.115.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:e7:36:e2:04:e3:ce:36:e9:da:4e:99:4a:e2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=270858cab98be4005a9c4ca68ca92e1234adc692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:59:83:2e:8a:36:58:f1:5b:bc:fe:05:d6:b1:
bb:3c:f6:92:f1:b4:dc:d1:a0:b8:60:13:a2:fd:91:
15:d5:97:ff:04:26:43:fd:76:f3:48:92:91:ee:29:
2f:48:f2:18:7d:6c:3c:0e:3e:40:2c:27:61:16:7b:
06:de:d5:7a:a9:75:23:d8:ba:13:e5:9a:08:5b:66:
eb:02:b3:71:2c:cc:d5:54:cd:e9:fb:82:7f:c0:14:
c2:50:03:8e:12:69:87:33:26:0c:c1:ec:80:9b:c1:
bd:01:79:dc:a8:a2:7f:ec:3d:6f:e7:48:78:ec:a2:
96:c6:6f:51:4e:90:a9:a0:6f:09:a6:51:75:30:11:
96:89:87:84:c4:50:37:34:6e:2d:5e:0f:1f:bb:6a:
77:3a:0b:e0:f4:42:e0:9f:9b:bd:ef:b9:0c:18:89:
c8:6c:90:ae:86:f1:75:d1:f9:6e:03:bd:dd:ab:e0:
82:73:b6:12:e9:82:fc:96:49:85:74:ce:35:63:6e:
73:f1:87:1e:1a:67:cd:ed:e3:6e:48:a7:0c:78:00:
cb:9e:6f:e9:40:13:04:e7:71:b4:4c:94:27:af:56:
ed:58:33:02:d1:5f:0b:d2:7a:24:af:ad:14:ff:78:
e5:f6:a3:e1:14:3d:82:25:80:07:72:7e:85:11:3d:
cb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:08:58:CA:B9:8B:E4:00:5A:9C:4C:A6:8C:A9:2E:12:34:AD:C6:92
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/JwhYyrmL5ABanEymjKkuEjStxpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.115.42.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5e:50:f0:bd:22:a2:b3:04:c7:05:d1:a3:ff:c0:43:ba:29:
23:94:89:42:37:cb:90:f7:dc:3e:72:c7:93:af:38:aa:9a:05:
24:94:04:42:1f:20:3b:a8:51:cb:9f:80:23:f0:10:72:f5:72:
bf:86:dd:0f:14:6c:17:34:48:ef:ac:e2:44:e6:7e:c6:7b:5b:
13:e4:61:ab:da:d7:dc:6e:9e:b0:9a:14:67:c1:05:eb:f3:0c:
a5:f5:5d:4b:62:b2:14:33:73:d6:1c:dc:00:c1:c6:93:3d:ff:
93:f5:ed:c8:61:72:63:3d:ce:39:78:03:68:3f:9d:ea:c0:ce:
fa:a0:95:cf:4c:b2:59:0a:9a:85:83:2e:ba:e0:6c:67:bd:0c:
56:40:5c:34:d6:3d:a5:41:1d:c9:29:e2:19:60:90:3c:82:12:
5e:0f:df:e6:cd:f7:0b:9c:3e:2e:34:95:b7:66:62:30:d4:a4:
ca:50:48:06:30:08:d2:39:63:f9:2e:ff:68:60:63:31:85:5d:
61:1a:e7:bc:54:ea:c5:b1:e9:d0:e1:9b:44:5a:e6:58:61:8c:
a8:4d:5a:72:61:9a:18:dd:79:1a:5c:18:1b:91:c6:96:22:bd:
41:ee:dc:aa:53:2d:d7:a5:8f:a7:a2:1e:b8:9d:a8:d3:41:17:
73:70:99:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:49 2025 by rpki-client