Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/dQytC19Qaui-WcJ6dJGKBx_hkKo.roa
File: dQytC19Qaui-WcJ6dJGKBx_hkKo.roa (raw, json)
Hash identifier: ze4WcZNvk5pfD0VBWao4Ok+1hMpXZrGKRnr3t1ePn64=
Subject key identifier: 75:0C:AD:0B:5F:50:6A:E8:BE:59:C2:7A:74:91:8A:07:1F:E1:90:AA
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 35B86ECF
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/dQytC19Qaui-WcJ6dJGKBx_hkKo.roa
Signing time: Sat 01 Jan 2022 12:06:26 +0000
ROA not before: Sat 01 Jan 2022 12:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 789
IP address blocks: 193.48.100.0/24 maxlen: 24
193.48.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901279439 (0x35b86ecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 1 12:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=750cad0b5f506ae8be59c27a74918a071fe190aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0a:87:07:17:f6:ce:08:bd:27:1d:7f:34:80:
72:00:36:52:c8:fe:4c:f2:2a:cf:c2:03:9b:63:8d:
66:94:a7:0e:af:63:87:7c:cb:78:33:2f:43:91:eb:
28:16:71:61:59:e0:87:8c:c9:4d:c6:ef:31:5c:a8:
fc:25:02:4c:4d:88:b5:bc:ac:f5:65:31:0d:b2:7d:
50:20:0d:ff:c7:df:b0:85:f6:45:2f:5b:bc:fe:d4:
05:13:c7:a7:35:2e:c2:bd:fd:88:9d:1c:31:53:af:
36:8c:51:cb:37:17:92:dd:d1:0e:8b:37:dc:12:e1:
42:f2:c2:39:3d:4d:0d:2a:cb:bd:32:8e:48:6b:dc:
e4:32:06:7d:df:04:82:d7:64:c3:a3:83:38:4e:be:
a0:18:3e:5d:e8:55:5e:93:c2:83:fe:7f:36:b3:23:
b5:de:13:c4:6a:e8:83:a7:6f:c8:01:6f:e4:a5:80:
5a:68:e2:3a:6e:85:3e:76:62:26:92:60:8f:a0:7d:
3a:d1:76:9f:3a:3e:0e:04:62:e3:38:e0:31:56:14:
a1:6b:6a:fa:f9:53:83:96:14:1a:f5:f4:a5:fc:b5:
70:51:c7:09:3d:9b:65:89:98:1d:c9:b9:0d:a4:c9:
23:ee:fa:42:36:7a:40:d4:62:a1:e7:e4:73:51:ed:
92:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0C:AD:0B:5F:50:6A:E8:BE:59:C2:7A:74:91:8A:07:1F:E1:90:AA
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/dQytC19Qaui-WcJ6dJGKBx_hkKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.48.99.0-193.48.100.255
Signature Algorithm: sha256WithRSAEncryption
25:89:01:4f:92:44:83:83:2b:61:d1:df:f3:5c:0d:f5:86:4f:
05:ff:e7:32:99:22:f3:1c:6e:77:94:d5:1f:45:17:95:8f:2c:
ef:1e:c6:8d:a7:31:09:7d:de:43:15:09:77:f3:4a:c2:47:68:
6b:43:07:fc:63:b4:48:c7:ec:c6:11:19:f7:af:ce:54:5d:0e:
40:4d:ec:55:ec:44:3c:27:ad:12:31:10:db:b8:7a:17:11:7a:
a5:24:33:70:ed:0a:c0:3c:80:fd:54:3f:8c:4a:88:4d:7c:82:
33:5b:4c:34:df:4c:61:18:2e:9a:88:69:06:cb:00:95:95:f1:
ca:53:3b:18:97:af:52:a7:ab:c9:03:25:b5:90:8f:6a:59:8e:
c8:91:02:9d:e4:c8:c7:18:89:1d:ec:94:32:eb:3d:03:23:85:
ec:19:2a:1b:a6:a9:2b:b8:e9:83:15:50:84:ef:cf:72:b2:96:
66:8e:17:70:19:09:c2:59:27:76:a2:47:7a:b1:b8:aa:5e:2b:
49:82:04:7e:21:07:f5:f4:9c:35:fd:b9:8c:dc:0c:37:e0:c3:
b0:21:37:27:80:fa:7a:dd:76:87:15:b6:e6:59:3d:99:0b:07:
32:90:b7:34:9f:d1:8f:90:bf:3d:0c:63:f6:01:47:72:86:be:
04:93:67:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:13 2025 by rpki-client