Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PEOPNWt-YR-W6Ab2KFO7IsMUHoY.roa
File: PEOPNWt-YR-W6Ab2KFO7IsMUHoY.roa (raw, json)
Hash identifier: Z7u89/Vze1502V6F0QmbeCsSr0pAMjHZ9O2wxh+7Bn8=
Subject key identifier: 3C:43:8F:35:6B:7E:61:1F:96:E8:06:F6:28:53:BB:22:C3:14:1E:86
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0188955A71936861EDC1F675B2D6BFFC4560
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PEOPNWt-YR-W6Ab2KFO7IsMUHoY.roa
Signing time: Wed 07 Jun 2023 10:15:12 +0000
ROA not before: Wed 07 Jun 2023 10:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 193.41.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:5a:71:93:68:61:ed:c1:f6:75:b2:d6:bf:fc:45:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 7 10:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c438f356b7e611f96e806f62853bb22c3141e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:8d:2b:93:04:49:07:9a:2f:00:e7:b2:ef:
cb:ba:d9:55:03:01:f2:98:2e:bc:f5:01:49:a4:0b:
99:3c:4a:95:01:63:63:23:5a:bf:28:e6:d4:7e:5f:
44:a5:4c:19:d6:b2:32:25:6c:29:b5:65:16:0a:f6:
83:1b:4a:c1:5f:15:7f:26:4a:6f:d1:5e:d1:45:66:
15:41:a9:72:b8:2e:00:17:a7:d7:0f:37:f8:46:3d:
91:cd:c6:76:85:10:fa:ed:bf:c1:65:0e:84:16:03:
ba:60:b0:60:d1:2f:f9:1e:c7:0e:00:a7:b2:93:85:
1a:76:cc:fb:38:d0:1b:63:97:65:28:b0:f6:97:a6:
6b:a4:f6:e6:2d:23:9b:1d:61:87:28:2e:1f:4a:01:
72:71:8d:9d:2e:4a:18:3b:7b:bd:dd:b9:2b:dc:f6:
4b:5e:df:4b:82:40:bb:46:6a:e3:25:6c:f3:f6:ff:
f3:d0:83:09:3f:27:03:99:77:83:9f:51:e5:3e:48:
4e:06:b0:70:39:e6:90:6d:3d:bd:8d:b3:c3:cf:a5:
7a:bb:a9:96:25:4b:3c:ed:ac:e1:42:3e:2c:11:56:
6d:53:b4:ce:bd:00:18:67:6b:63:54:aa:08:f0:2e:
9f:c5:37:ec:27:d5:da:ea:a9:12:8a:fc:9d:a4:c2:
ff:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:43:8F:35:6B:7E:61:1F:96:E8:06:F6:28:53:BB:22:C3:14:1E:86
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PEOPNWt-YR-W6Ab2KFO7IsMUHoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.69.0/24
Signature Algorithm: sha256WithRSAEncryption
89:2d:76:80:60:7f:14:ab:17:5c:16:ad:82:8a:5d:5b:bd:1a:
00:bf:48:70:a6:2c:d9:28:3b:ae:35:b8:ec:8a:24:b1:ef:58:
40:83:a8:b8:d7:15:a8:66:ee:34:6a:06:cf:10:0d:01:82:f1:
ba:0a:63:76:6a:d6:1b:fe:b8:01:e8:10:e6:a5:9b:30:6e:47:
63:49:09:45:9a:cd:f7:ce:79:5c:3b:16:6d:96:7d:5c:fb:c8:
96:bb:58:dc:81:5f:7a:8c:02:cd:65:53:8d:23:28:82:23:43:
a1:30:93:2e:c6:35:08:7f:65:9d:69:8b:56:21:d1:2a:73:46:
0d:8a:9e:ea:dc:58:25:a8:36:ac:fc:63:eb:0d:71:b3:09:49:
97:6a:4a:1e:56:4a:96:a7:03:01:04:85:b9:a9:b4:b3:69:16:
82:83:0e:79:3e:30:70:0f:88:b9:32:91:21:b2:a7:62:9f:7b:
9f:d0:a5:50:33:4f:fb:a5:e7:74:bf:d2:6f:79:0b:af:6d:97:
b8:a7:38:0a:dc:08:6d:47:6f:d8:cc:3c:53:b1:ec:10:26:82:
6b:79:5a:07:ee:f8:4b:78:21:ed:72:2d:25:0f:ba:ae:07:6b:
42:94:bd:9f:7f:14:0e:6d:77:c4:15:cf:5a:51:17:ec:7d:b7:
74:02:9c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:58 2025 by rpki-client