Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uXDlQyO9Sm2ip-pO1eF6cOXDrDM.roa
File: uXDlQyO9Sm2ip-pO1eF6cOXDrDM.roa (raw, json)
Hash identifier: Q5hKuCesyuEo9xec3H3BBl5yNKEivzoKuXcnvDq2ofM=
Subject key identifier: B9:70:E5:43:23:BD:4A:6D:A2:A7:EA:4E:D5:E1:7A:70:E5:C3:AC:33
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018AFF9884ECDEE70B415454F4E7A7B046A4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uXDlQyO9Sm2ip-pO1eF6cOXDrDM.roa
Signing time: Thu 05 Oct 2023 11:28:20 +0000
ROA not before: Thu 05 Oct 2023 11:28:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211619
IP address blocks: 193.41.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:98:84:ec:de:e7:0b:41:54:54:f4:e7:a7:b0:46:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 5 11:28:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b970e54323bd4a6da2a7ea4ed5e17a70e5c3ac33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:40:c2:9b:25:a2:d3:80:bc:74:ca:ed:35:cc:
1d:30:81:66:48:7e:ec:8b:27:c2:20:a4:2b:5c:1f:
82:db:7d:9d:89:d8:70:59:41:16:1e:16:55:30:9b:
a7:74:fc:f2:35:7a:02:71:fb:c7:54:5d:ea:d5:35:
0d:3f:1a:2c:a1:3d:57:6d:c0:95:e7:3b:f9:e8:e4:
dc:7c:62:f5:be:84:d3:b7:3e:65:bb:fb:b4:a1:50:
16:ef:26:b8:66:b5:d6:c7:91:c2:0c:04:19:66:3f:
ca:62:1d:89:99:eb:90:fa:f2:b0:d7:1a:10:25:d6:
19:77:72:ac:4c:db:6f:61:1a:9b:a5:85:88:b4:43:
a3:70:16:af:e8:10:23:1e:a7:d4:34:b0:83:64:3c:
31:ad:15:e8:e8:28:b8:20:0e:27:36:57:f2:9e:8a:
0a:9f:d9:1b:3d:74:00:3d:0b:8b:c2:63:b5:64:6e:
88:38:c9:a5:19:f1:7f:15:85:de:b8:85:41:33:63:
82:f2:94:8b:2f:6c:71:2e:0e:8a:a5:62:0a:de:c1:
4e:73:2a:55:f9:9e:9d:cd:55:1e:96:e5:63:9b:7a:
37:18:44:b0:ba:f9:97:80:db:90:e9:9f:e7:e0:2f:
6f:70:f2:36:be:40:6e:85:0a:c7:39:4e:1d:19:66:
5e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:70:E5:43:23:BD:4A:6D:A2:A7:EA:4E:D5:E1:7A:70:E5:C3:AC:33
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uXDlQyO9Sm2ip-pO1eF6cOXDrDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.115.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:76:03:16:86:7e:ed:d6:29:e8:d8:d3:90:b8:cf:5e:58:55:
1d:7b:34:a0:56:48:e2:ca:00:4c:13:56:79:a7:f0:53:93:07:
bd:c9:79:14:d0:67:52:95:d7:5b:2f:bb:23:40:6e:1b:c7:f4:
bc:05:43:95:8d:21:c3:a7:44:78:d5:8f:c6:76:da:52:c0:f9:
a8:c0:3a:e8:14:e3:c4:5d:14:6d:f9:d9:eb:2c:84:5f:78:17:
51:49:af:f8:b9:e7:07:9f:a9:d1:42:2e:c5:c0:d0:7c:4d:1e:
5e:de:fd:6d:b1:fe:91:db:21:62:2e:2d:d0:db:fd:29:0e:bf:
09:61:2a:c8:b8:bb:a1:1a:b2:90:d4:8f:06:ef:59:e1:57:45:
b3:fa:fb:0c:64:3a:67:d9:68:d7:c0:45:0a:66:07:a3:11:b8:
76:40:18:23:5f:55:32:df:a8:c1:1d:33:22:87:44:6d:c6:7c:
a8:d5:3a:04:67:53:55:6f:33:b9:8d:da:28:f3:1b:ae:2a:55:
37:be:96:8e:f9:7e:2f:e6:48:41:d0:85:f6:cd:9d:d3:f6:7d:
ac:a0:b4:ae:26:67:4f:15:95:e6:28:09:ae:24:98:af:b2:ba:
be:47:d0:76:64:db:be:fa:f1:b6:64:a7:57:f3:9d:39:17:66:
64:91:9a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:06 2025 by rpki-client