Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/gN4Z2jSprozPFD-5A8b2hoKNjAg.roa
File: gN4Z2jSprozPFD-5A8b2hoKNjAg.roa (raw, json)
Hash identifier: 73ARLyIkEiFg11hqHJ1XayrG8a36ofsHpzL6b4aG0E0=
Subject key identifier: 80:DE:19:DA:34:A9:AE:8C:CF:14:3F:B9:03:C6:F6:86:82:8D:8C:08
Certificate issuer: /CN=d5a193671dc59d76fc311db2d6689a3c88299094
Certificate serial: 018572710EAC42D7975C8E5C00ADD116E3AD
Authority key identifier: D5:A1:93:67:1D:C5:9D:76:FC:31:1D:B2:D6:68:9A:3C:88:29:90:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aGTZx3FnXb8MR2y1miaPIgpkJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/gN4Z2jSprozPFD-5A8b2hoKNjAg.roa
Signing time: Mon 02 Jan 2023 12:24:49 +0000
ROA not before: Mon 02 Jan 2023 12:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 193.186.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:0e:ac:42:d7:97:5c:8e:5c:00:ad:d1:16:e3:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a193671dc59d76fc311db2d6689a3c88299094
Validity
Not Before: Jan 2 12:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80de19da34a9ae8ccf143fb903c6f686828d8c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f8:75:a3:b3:11:75:6a:1f:07:41:35:ef:3a:
c7:97:f9:62:72:89:89:31:88:ab:48:dd:22:3a:b9:
64:01:3a:f3:12:de:9d:5c:70:00:86:fe:7a:9a:60:
3f:3c:42:91:6b:6c:8c:64:14:1e:00:60:e0:00:8b:
98:1c:80:3a:15:df:6f:da:37:7c:0b:e4:b2:f3:9f:
99:b9:67:52:bf:5f:66:1c:91:29:86:eb:be:6b:0c:
4f:14:bd:1c:4c:b0:9c:73:5a:11:7c:99:b7:a7:5d:
c8:79:4b:5e:58:18:77:69:f2:1a:49:ac:8d:23:04:
71:da:03:07:38:b6:33:8c:4c:f1:44:9d:f8:27:4e:
e7:b5:c1:9b:47:bd:d6:eb:3a:a4:ba:f0:1a:c3:95:
22:59:e3:62:fc:7d:89:8e:73:67:5d:a0:79:41:b0:
b8:1f:59:a4:8d:7a:6d:07:0e:c3:a5:22:aa:80:a9:
74:58:1d:27:04:11:27:6e:ae:29:f0:67:1b:e5:40:
04:8d:74:61:0b:7d:ab:45:f8:58:eb:47:ad:47:2b:
f6:d5:b3:06:e6:df:f4:b8:a4:93:86:cc:8b:8c:5c:
50:a9:25:4b:9a:2e:74:48:05:db:18:a5:89:7e:df:
04:a5:7b:89:bf:97:c6:a1:f9:1d:d6:d7:ff:20:53:
3e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DE:19:DA:34:A9:AE:8C:CF:14:3F:B9:03:C6:F6:86:82:8D:8C:08
X509v3 Authority Key Identifier:
keyid:D5:A1:93:67:1D:C5:9D:76:FC:31:1D:B2:D6:68:9A:3C:88:29:90:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aGTZx3FnXb8MR2y1miaPIgpkJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/gN4Z2jSprozPFD-5A8b2hoKNjAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/1aGTZx3FnXb8MR2y1miaPIgpkJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.35.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:d7:3f:24:79:1e:31:d7:41:d1:d0:86:51:d7:4a:da:2a:65:
85:fe:4e:38:c3:b4:71:dd:37:ed:ba:55:9c:34:78:37:c6:29:
6b:ce:ca:b8:bc:45:46:f0:b5:2c:dc:fb:26:69:84:c3:3d:9e:
04:2e:aa:45:df:0a:27:fa:8c:75:de:03:5b:c2:75:b7:18:d3:
47:4a:2d:4a:41:16:a9:b9:80:2b:72:f1:8f:8e:c5:33:32:bd:
9d:e9:0c:f9:ff:0d:87:87:37:13:ec:4d:ed:b5:4a:9d:c5:ac:
f0:cc:e8:ec:86:84:50:2d:fd:0a:4e:6e:0a:53:c5:14:a9:69:
98:5a:2f:95:ac:52:d6:8d:87:88:a0:b5:b0:c3:fe:39:7f:ea:
e7:46:43:9b:e6:12:ea:a5:1f:21:eb:5d:9d:97:56:79:53:45:
c3:db:a7:09:4a:09:14:65:8a:b9:00:fa:4e:3d:ed:f5:89:ee:
41:49:53:dd:d7:6b:0c:d3:fa:74:0c:53:40:ab:02:82:89:a7:
aa:e1:0e:32:27:f8:63:7b:9a:38:1a:e7:e5:6e:8a:13:2d:bb:
54:e9:37:f2:f1:93:6d:c9:a9:d6:4b:ab:81:95:2e:46:9b:e1:
79:fb:30:eb:60:26:a2:b9:1d:3c:06:e2:2e:52:95:ea:38:f3:
a3:78:17:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:42 2025 by rpki-client