Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9bcbaf-4993-4d08-b9a8-0355ef11589c/1/3CUNqx5FJIhinVuIUj9wEAGB91Q.roa
File: 3CUNqx5FJIhinVuIUj9wEAGB91Q.roa (raw, json)
Hash identifier: dCgicpWLFR8WIKV2p6U7Yz/Z6FU8ZXNRpFZvB/PlROc=
Subject key identifier: DC:25:0D:AB:1E:45:24:88:62:9D:5B:88:52:3F:70:10:01:81:F7:54
Certificate issuer: /CN=48c39de25ffa7eaf02b2a6d8c2cf6e2ceb562bf3
Certificate serial: 033ABC2D
Authority key identifier: 48:C3:9D:E2:5F:FA:7E:AF:02:B2:A6:D8:C2:CF:6E:2C:EB:56:2B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SMOd4l_6fq8CsqbYws9uLOtWK_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9bcbaf-4993-4d08-b9a8-0355ef11589c/1/3CUNqx5FJIhinVuIUj9wEAGB91Q.roa
Signing time: Sat 01 Jan 2022 10:55:28 +0000
ROA not before: Sat 01 Jan 2022 10:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42867
IP address blocks: 194.143.140.0/24 maxlen: 24
194.143.140.0/23 maxlen: 23
194.143.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54180909 (0x33abc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48c39de25ffa7eaf02b2a6d8c2cf6e2ceb562bf3
Validity
Not Before: Jan 1 10:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc250dab1e452488629d5b88523f70100181f754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c8:30:42:b4:6d:b3:57:eb:5c:23:74:54:2f:
fc:e4:a3:c7:51:de:97:a2:ea:f8:1a:5b:d9:c1:8d:
05:17:72:e7:0d:07:b3:8b:4b:55:d9:9e:42:3e:ae:
31:7e:a1:84:48:de:1b:ce:9d:1b:87:aa:bd:55:aa:
1d:16:e5:8c:98:22:5c:07:4f:d1:e5:fa:87:3f:82:
40:a8:55:49:59:df:bd:48:0d:ba:35:a6:c4:d4:63:
71:58:b3:49:f0:95:b3:77:0a:e7:51:c5:df:c7:0f:
10:f1:6b:c2:da:94:d1:93:98:0c:06:2c:a7:16:79:
ac:1c:f1:43:0a:b6:21:89:3b:4d:bf:f0:03:8a:06:
00:62:df:9b:90:a3:0a:73:03:d8:39:88:40:e0:a5:
73:70:5c:99:9e:3c:b7:21:4a:50:dd:3b:22:b4:2b:
e2:ce:21:af:5a:24:14:0d:2b:44:85:a6:38:c6:f9:
b1:c0:1b:69:23:18:74:ce:b1:0f:7d:67:d8:65:eb:
c7:6a:5f:bc:03:22:fa:91:28:aa:59:99:f8:98:4e:
26:c6:48:3e:74:ed:22:9e:32:d0:3c:79:fc:27:53:
92:bd:9b:71:8f:d6:8a:d9:d6:35:78:d6:9b:56:c5:
4f:99:26:6e:83:59:bb:be:f1:58:7b:15:f4:63:05:
ea:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:25:0D:AB:1E:45:24:88:62:9D:5B:88:52:3F:70:10:01:81:F7:54
X509v3 Authority Key Identifier:
keyid:48:C3:9D:E2:5F:FA:7E:AF:02:B2:A6:D8:C2:CF:6E:2C:EB:56:2B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SMOd4l_6fq8CsqbYws9uLOtWK_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9bcbaf-4993-4d08-b9a8-0355ef11589c/1/3CUNqx5FJIhinVuIUj9wEAGB91Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9bcbaf-4993-4d08-b9a8-0355ef11589c/1/SMOd4l_6fq8CsqbYws9uLOtWK_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.140.0/23
Signature Algorithm: sha256WithRSAEncryption
63:17:38:f2:31:3b:fa:e1:40:2c:4b:a7:ce:cb:5f:32:e0:06:
c9:a3:c1:0d:66:d1:c0:1a:6d:7f:0e:60:fd:20:6c:2e:61:87:
ae:96:49:59:7c:db:b2:af:b4:6c:e2:d3:8a:61:f0:70:30:fd:
a9:89:db:93:ae:ca:83:b0:01:65:83:43:72:44:b0:5a:2d:74:
b8:c6:e4:5b:2b:29:a5:a1:f9:79:47:40:5b:c4:e1:54:24:4f:
15:ce:7b:6f:d0:25:16:b0:ac:97:4b:01:75:60:70:aa:bb:01:
1b:a1:75:d0:ae:17:61:21:5c:88:a5:22:10:26:ea:68:1b:53:
a0:79:87:f2:e9:5e:cc:27:35:2e:23:52:1e:62:fa:e3:38:e1:
4b:0a:cf:13:ac:05:0d:0b:28:b1:b8:bc:5e:67:43:85:91:99:
0a:ea:b2:0e:2a:44:38:be:45:af:7c:ae:f5:88:71:1d:ae:f1:
97:ee:fe:16:b6:26:c4:bc:da:f2:af:81:ea:7c:fa:a3:86:ab:
6c:a4:d0:0e:09:fa:f2:e3:49:cd:f5:a5:07:96:67:0d:6e:9d:
5d:35:f7:a5:16:f9:7a:be:62:9d:39:d2:2e:9e:9f:eb:5f:06:
e8:cf:93:91:33:4c:8f:43:f7:73:76:a5:34:6f:4c:82:8e:11:
f5:e8:7e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:51 2025 by rpki-client