Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/gOT-W5EWq3bEP2X7R11mhSAWEYw.roa
File: gOT-W5EWq3bEP2X7R11mhSAWEYw.roa (raw, json)
Hash identifier: pa+5YJpF7V4cI8kE1u/eXl508OxKyTpYIDnwItUq41k=
Subject key identifier: 80:E4:FE:5B:91:16:AB:76:C4:3F:65:FB:47:5D:66:85:20:16:11:8C
Certificate issuer: /CN=56d0e3b28f2be33ec5a9d2ca00ac64155536cbc6
Certificate serial: 01856FF98748D911F972C09CAB2F07CC3DF4
Authority key identifier: 56:D0:E3:B2:8F:2B:E3:3E:C5:A9:D2:CA:00:AC:64:15:55:36:CB:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtDjso8r4z7FqdLKAKxkFVU2y8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/gOT-W5EWq3bEP2X7R11mhSAWEYw.roa
Signing time: Mon 02 Jan 2023 00:55:02 +0000
ROA not before: Mon 02 Jan 2023 00:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59451
IP address blocks: 194.165.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:87:48:d9:11:f9:72:c0:9c:ab:2f:07:cc:3d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d0e3b28f2be33ec5a9d2ca00ac64155536cbc6
Validity
Not Before: Jan 2 00:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80e4fe5b9116ab76c43f65fb475d66852016118c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:62:01:ac:08:d8:06:61:24:7c:4e:0a:7c:54:
1e:1e:bf:e0:e0:f4:43:f2:7f:bc:07:a4:52:f9:c7:
b5:6c:77:85:53:de:c2:89:67:f6:5f:9d:87:91:87:
0a:fd:81:65:2a:8f:a1:6f:00:6b:57:80:47:94:1a:
af:61:44:81:a5:6b:91:42:d7:1d:72:77:ac:ba:75:
be:aa:45:37:7e:8a:4e:1e:bf:99:d7:83:7b:26:49:
1a:f5:30:aa:14:c4:17:38:b5:5b:41:09:cf:ee:3f:
0d:97:d2:7f:58:a3:ba:f8:4d:98:52:40:00:38:b4:
1c:28:72:45:6f:f1:1e:38:ef:6e:fc:47:f2:77:9c:
39:60:f8:c4:47:92:ef:7e:a9:66:d9:43:4d:62:2f:
93:3c:3d:9b:27:7e:47:14:89:2c:1a:ff:c1:18:0b:
e8:a5:7c:b5:e8:8b:1b:64:d6:74:33:97:6d:de:7d:
76:73:53:dc:d3:2e:df:02:1d:03:a2:c8:1c:b8:ed:
0a:47:95:8e:2e:7d:01:85:98:5b:f8:74:0f:41:8c:
66:9e:15:71:a5:e6:36:c9:77:76:25:1d:37:75:78:
89:88:c8:1c:c9:67:03:6a:37:b8:09:c0:68:b8:f5:
a0:47:74:a8:5c:ab:1f:ad:8d:e1:fe:19:c0:25:d9:
c7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E4:FE:5B:91:16:AB:76:C4:3F:65:FB:47:5D:66:85:20:16:11:8C
X509v3 Authority Key Identifier:
keyid:56:D0:E3:B2:8F:2B:E3:3E:C5:A9:D2:CA:00:AC:64:15:55:36:CB:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtDjso8r4z7FqdLKAKxkFVU2y8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/gOT-W5EWq3bEP2X7R11mhSAWEYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/VtDjso8r4z7FqdLKAKxkFVU2y8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.131.0/24
Signature Algorithm: sha256WithRSAEncryption
10:ea:24:08:1a:c0:2c:c2:c9:29:c0:cd:87:da:1b:1c:9b:49:
b6:89:bb:ed:1c:19:9d:72:4d:ee:11:d4:22:2c:c2:6e:9a:fa:
e9:c4:74:2d:eb:97:09:34:38:0c:19:80:e4:91:62:91:e3:32:
dc:28:8b:a9:d7:a9:5e:b1:a5:11:f7:9d:1f:4f:4d:a0:4a:41:
b5:15:d8:d7:1a:67:53:5c:7a:67:7c:d9:4f:9b:16:52:43:67:
0d:24:bf:52:c4:33:39:78:29:d9:68:d4:e1:82:24:04:5a:c8:
e8:4f:2b:ab:f4:9d:eb:f7:3a:86:e3:6b:b5:80:71:ff:47:b3:
42:99:62:eb:e2:bf:1f:b4:2f:ca:64:00:dd:46:e5:b4:f8:1a:
4b:76:5f:88:dd:fb:81:52:5e:ab:ef:d5:41:f7:d1:30:a2:e0:
11:1d:31:07:f3:93:fe:87:8a:a5:32:a6:05:ab:d8:d1:cc:13:
45:60:52:75:2f:4d:f7:dd:63:da:13:7a:ed:85:f6:81:8c:a0:
56:ea:08:fd:df:b7:9c:58:82:2f:94:5c:27:fb:9e:a9:9b:68:
2f:53:c9:24:c2:ab:f8:39:b3:8c:3f:d9:b5:6b:ca:ab:23:bc:
46:df:30:0f:9f:ea:70:36:ad:dc:3c:95:08:81:af:8d:a0:8b:
6d:8e:39:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:24 2025 by rpki-client