Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZkKQO9geA5XTd2de4R9ktKWwKOg.roa
File: ZkKQO9geA5XTd2de4R9ktKWwKOg.roa (raw, json)
Hash identifier: IALbZkVu6O44beKgQzG6AF7iTtugVGcVfwYAhxGnKk0=
Subject key identifier: 66:42:90:3B:D8:1E:03:95:D3:77:67:5E:E1:1F:64:B4:A5:B0:28:E8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0152D83C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZkKQO9geA5XTd2de4R9ktKWwKOg.roa
Signing time: Sat 01 Jan 2022 05:55:05 +0000
ROA not before: Sat 01 Jan 2022 05:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22206524 (0x152d83c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 05:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6642903bd81e0395d377675ee11f64b4a5b028e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:83:7f:39:f1:64:3b:96:fb:73:2c:1e:1f:80:
bb:b4:92:19:8b:23:bc:79:52:47:03:e1:d0:85:6f:
73:7a:d6:8d:cd:16:16:f3:70:e2:02:03:71:2f:ab:
bf:b5:40:7f:64:db:9b:ce:8e:66:39:3e:8e:21:03:
78:7e:f3:ae:e3:1b:86:3a:31:f3:f9:62:7b:94:97:
87:6e:e0:0b:c0:a9:89:a6:0f:ec:cc:0e:ee:15:26:
47:db:fb:a2:82:28:b4:4f:70:b6:c7:76:72:7b:57:
66:20:53:2c:3d:43:4e:e0:ed:ef:55:16:68:38:fe:
96:c2:3c:d2:bb:24:a4:b0:d7:aa:19:dd:a5:9f:84:
c5:45:4f:67:b1:59:9d:f9:bb:b1:12:c6:a1:69:63:
0d:0e:8c:20:21:c4:8e:22:e3:a6:7e:7a:4a:ee:bb:
39:b5:f3:e1:29:38:57:3e:9e:b5:ed:dd:2f:a1:1d:
95:96:3f:5b:0a:8b:58:3e:02:5a:24:99:33:67:cf:
cf:dd:90:f3:a0:54:99:42:4b:70:63:05:a0:a6:80:
95:61:4d:02:94:3a:0b:b5:e3:7a:70:e4:cc:c6:31:
1c:bf:ac:76:21:96:96:70:d2:a6:83:91:ed:59:be:
34:2d:2e:ea:9c:56:68:11:98:7d:49:4f:be:02:9f:
ea:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:42:90:3B:D8:1E:03:95:D3:77:67:5E:E1:1F:64:B4:A5:B0:28:E8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZkKQO9geA5XTd2de4R9ktKWwKOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.122.0/23
Signature Algorithm: sha256WithRSAEncryption
95:2d:65:fe:b7:cb:f3:8d:ee:a3:27:c0:eb:5e:98:17:c7:a8:
30:0d:2b:4c:cc:88:57:31:c6:c1:47:1d:55:ef:50:4b:a7:e6:
99:e1:74:33:3d:f2:4d:9f:60:39:8e:2f:47:90:46:f2:55:dd:
09:30:72:f3:24:a0:d3:f6:72:96:f6:cc:03:78:92:e8:ed:70:
df:0c:ed:c2:b5:74:17:83:8c:5d:ff:4d:35:9f:1b:df:e8:eb:
0a:57:a4:e6:1e:b7:0e:a1:b4:80:17:31:cb:b2:6d:52:2d:7d:
f0:0e:83:a8:49:8d:e9:86:45:a4:03:75:02:73:91:a3:10:71:
5f:2e:a0:69:54:59:ed:76:95:f3:8e:fb:ce:af:cc:6a:c1:f1:
cf:cc:62:b6:84:9e:03:4c:92:4f:30:04:02:34:1c:96:e0:c9:
32:73:a1:fd:d7:12:c7:7a:90:aa:21:ac:71:2e:26:27:a8:b5:
1f:fe:0e:a3:2f:dc:16:a2:aa:db:0e:3e:21:ec:f1:cf:eb:24:
ec:94:fc:dd:ee:0d:87:7c:8a:fb:9d:1c:4c:47:f0:e5:81:4c:
5b:14:75:91:13:a8:5e:12:7e:e4:53:f4:9e:c2:6b:79:b6:bf:
50:4c:a0:15:c7:6c:a2:79:32:1f:b0:c4:24:11:c1:85:08:bc:
04:34:a2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:04 2025 by rpki-client