Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/p2JjOOHYiOBvGtoheH9lG5k-lck.roa
File: p2JjOOHYiOBvGtoheH9lG5k-lck.roa (raw, json)
Hash identifier: wVjTa/P2aKgmg6YcsV53ZsorUiYQWw0qnmziSGREIVo=
Subject key identifier: A7:62:63:38:E1:D8:88:E0:6F:1A:DA:21:78:7F:65:1B:99:3E:95:C9
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 0186F344099C3F0AF7B5966AA46B63515123
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/p2JjOOHYiOBvGtoheH9lG5k-lck.roa
Signing time: Sat 18 Mar 2023 05:49:27 +0000
ROA not before: Sat 18 Mar 2023 05:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140885
IP address blocks: 194.50.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:44:09:9c:3f:0a:f7:b5:96:6a:a4:6b:63:51:51:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Mar 18 05:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7626338e1d888e06f1ada21787f651b993e95c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:88:ad:5e:be:e1:f4:81:93:a5:ae:16:e2:24:
c2:2f:0c:cc:de:db:35:8b:b2:75:f2:a0:cf:83:bb:
dd:8f:e6:0b:08:f5:98:0b:09:e4:14:17:5f:ea:23:
9a:26:c4:b6:99:01:68:ae:d9:db:48:85:63:c5:ee:
ef:2a:79:9f:08:c0:3e:1a:3f:0a:a6:e1:4a:40:e9:
55:02:a0:d6:cf:db:31:08:c5:be:ea:17:2a:02:51:
30:c3:26:83:4c:9f:94:dc:94:be:39:8f:e2:c9:21:
cd:8f:de:65:80:43:7e:ff:12:eb:2d:21:0e:d7:98:
45:4a:92:ef:31:0d:4a:87:0c:46:d2:2a:c1:f9:26:
4d:fb:7f:05:77:56:c7:ae:a8:70:9d:e6:8b:26:15:
97:c4:88:e2:e4:b3:61:78:41:b5:d3:d5:1a:c1:47:
24:00:83:70:e4:a8:fb:46:af:e7:9f:55:01:fe:f1:
2e:98:e6:66:b2:ab:1a:74:97:cb:b7:c9:4f:17:2f:
8c:05:d1:41:8c:2e:6a:cd:28:76:5a:07:2b:f3:f0:
fb:2b:89:e3:e0:c0:ac:27:36:da:2b:0d:b4:63:8b:
54:31:81:90:e8:9c:0b:6b:70:c5:a1:37:e9:95:5a:
9a:7a:6f:13:cf:88:28:a5:7b:18:d7:29:1b:79:39:
ad:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:62:63:38:E1:D8:88:E0:6F:1A:DA:21:78:7F:65:1B:99:3E:95:C9
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/p2JjOOHYiOBvGtoheH9lG5k-lck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.5.0/24
Signature Algorithm: sha256WithRSAEncryption
49:45:48:4a:d5:fb:ce:7f:05:a6:3b:b7:ae:98:1e:56:e9:c8:
ec:3b:b6:07:8d:9a:7b:cf:a8:bf:84:c1:7b:60:5d:aa:c1:00:
0b:7c:d6:2e:42:fc:69:88:e9:78:60:80:f1:67:da:ba:e9:4e:
3f:e0:97:c0:43:0b:ed:70:f2:26:0f:96:38:d8:a2:61:5e:2b:
c5:48:d8:f4:3f:ed:77:20:81:3d:ad:c0:61:5f:67:b3:f6:96:
e3:55:07:d6:87:ec:bb:10:15:0f:82:b5:b1:9f:1b:0e:66:ed:
83:a8:a2:b2:59:cd:16:1c:34:12:6a:72:86:5a:10:b4:f7:f4:
38:c5:cc:1d:1a:b6:82:f3:ba:7b:2e:69:9a:c0:8a:82:7d:3a:
21:e2:39:00:3b:cf:12:5b:44:d6:c1:4b:a9:93:25:22:99:7c:
40:6f:46:be:f8:ba:31:7b:3b:79:4d:13:09:c5:b9:ba:f8:e3:
c1:00:cd:67:7f:1c:12:4b:da:c6:43:09:69:44:91:4f:0e:49:
5e:99:80:51:a6:15:35:51:c7:e4:8a:ff:23:f7:e7:da:d4:6c:
9f:5a:3f:0c:a4:d0:6b:bd:3a:b4:1b:ef:8f:31:85:6b:7d:de:
52:98:7d:ae:57:87:7a:8c:ed:ba:4f:6a:bb:a4:79:d6:38:ca:
be:f6:1a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:42 2025 by rpki-client