Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/7U_mT9-RSNKhnpOOyO34hayU0TI.roa
File: 7U_mT9-RSNKhnpOOyO34hayU0TI.roa (raw, json)
Hash identifier: fRQRNYPUSY6pOzkH4eyRxkEBuVPJdcDxjInzE/lO4ac=
Subject key identifier: ED:4F:E6:4F:DF:91:48:D2:A1:9E:93:8E:C8:ED:F8:85:AC:94:D1:32
Certificate issuer: /CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Certificate serial: 018BED00E98A6A2B98B8C47B15BA29C1E80D
Authority key identifier: 0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/7U_mT9-RSNKhnpOOyO34hayU0TI.roa
Signing time: Mon 20 Nov 2023 13:52:21 +0000
ROA not before: Mon 20 Nov 2023 13:52:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197823
IP address blocks: 194.152.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ed:00:e9:8a:6a:2b:98:b8:c4:7b:15:ba:29:c1:e8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Validity
Not Before: Nov 20 13:52:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed4fe64fdf9148d2a19e938ec8edf885ac94d132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b6:4d:89:2b:14:02:4c:16:ca:17:9d:3b:6e:
e7:48:85:bc:24:fb:ae:ed:46:c0:fd:10:7e:f2:94:
b1:94:1a:fe:78:9d:84:49:5a:4d:ad:42:7c:a6:56:
ba:56:cf:63:2f:b2:20:c0:02:33:fb:15:ef:0e:bd:
12:ad:3b:7a:39:f4:fd:d5:10:6b:32:1e:71:13:9f:
3c:49:01:07:ec:cc:b0:3e:a8:52:32:64:66:85:97:
c5:2c:3a:49:72:d8:13:c0:fa:45:93:a9:ec:18:5b:
ce:78:4c:6a:12:6c:0a:c1:fc:ef:7e:9e:38:6a:37:
02:be:66:aa:ab:01:37:e6:a3:57:0f:ee:aa:d1:5c:
2e:5b:03:3b:e7:f1:16:f5:40:89:54:e4:8c:04:6a:
5d:d0:f3:7d:25:46:f1:88:6b:b5:d7:77:9c:25:69:
54:f8:a0:fc:d0:12:71:90:ec:2c:f7:3a:06:21:49:
a9:7f:58:ef:24:b4:9e:7b:f3:92:51:fa:7a:4b:f8:
c4:bb:74:3c:da:8d:b3:97:56:be:50:1b:b1:86:ed:
96:1a:bb:c9:bd:32:c6:0a:00:31:23:e1:78:a0:52:
94:9c:b5:41:7f:9b:27:00:5a:ea:ee:48:a0:22:b6:
79:b9:60:02:8b:9d:00:2d:a1:bf:b8:d2:7e:72:60:
00:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4F:E6:4F:DF:91:48:D2:A1:9E:93:8E:C8:ED:F8:85:AC:94:D1:32
X509v3 Authority Key Identifier:
keyid:0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/7U_mT9-RSNKhnpOOyO34hayU0TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/Dg9Icq0cH0_LITtrLts4ii2cmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.152.215.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:50:8c:cd:97:67:0d:2e:88:39:79:b3:42:08:16:78:66:3a:
65:34:6d:df:5f:57:8e:d5:95:04:91:30:4b:c8:7a:0f:60:19:
92:17:a7:d1:f9:16:89:a5:a0:29:c5:0b:9d:a5:ce:c5:53:26:
12:b0:c5:7d:97:f0:cd:d1:ab:de:1a:a1:6e:c5:0a:a1:7d:91:
14:c9:f3:e9:81:cb:74:c2:92:af:04:d5:44:dd:52:81:67:23:
92:dd:ef:09:3d:27:d5:bc:18:8b:75:9a:db:4d:33:4b:ed:64:
6d:a4:43:7b:ce:c4:12:a1:3e:d4:31:92:c0:89:8e:0b:4e:2a:
7e:7e:fb:69:f8:07:67:e6:a2:48:e4:b4:c4:8b:ae:49:be:39:
72:87:d8:ba:47:76:a4:1f:70:c4:0c:d8:c2:a5:fe:5e:23:6d:
96:94:1e:f9:b9:25:8c:15:d3:03:c9:d4:1b:e5:36:5b:35:eb:
37:bb:df:d1:7c:da:ef:ec:01:ab:81:52:da:5a:28:0d:f8:76:
c3:a1:d1:32:6c:42:74:7a:c0:ca:b2:bf:2c:7c:bf:80:d3:88:
e2:77:a5:df:a0:fe:e6:98:a3:bb:3b:d5:dd:1f:b5:9b:4d:a8:
c0:05:d4:df:3c:72:69:31:89:c3:12:6e:fb:45:19:f1:55:2c:
b3:91:80:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:55 2025 by rpki-client