Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/vnCPajAHk-XjqvMDO9ZpjK8ECto.roa
File: vnCPajAHk-XjqvMDO9ZpjK8ECto.roa (raw, json)
Hash identifier: XA8RSgiyb8dJYjTM6dBS1a3NCFk5eaVdUzODY6iyoKk=
Subject key identifier: BE:70:8F:6A:30:07:93:E5:E3:AA:F3:03:3B:D6:69:8C:AF:04:0A:DA
Certificate issuer: /CN=d5a193671dc59d76fc311db2d6689a3c88299094
Certificate serial: 0B226659
Authority key identifier: D5:A1:93:67:1D:C5:9D:76:FC:31:1D:B2:D6:68:9A:3C:88:29:90:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aGTZx3FnXb8MR2y1miaPIgpkJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/vnCPajAHk-XjqvMDO9ZpjK8ECto.roa
Signing time: Sat 01 Jan 2022 09:56:00 +0000
ROA not before: Sat 01 Jan 2022 09:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 193.186.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186803801 (0xb226659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a193671dc59d76fc311db2d6689a3c88299094
Validity
Not Before: Jan 1 09:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be708f6a300793e5e3aaf3033bd6698caf040ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:41:75:b9:94:2d:43:74:e6:f7:91:49:ab:c6:
b6:3b:c9:6d:ed:e5:99:6d:53:3d:24:bf:59:ed:bb:
6a:77:24:5d:69:35:3d:56:39:cf:5a:18:69:9d:03:
59:3d:c7:13:af:09:e6:73:3d:7a:19:06:c1:4a:96:
dc:b5:ef:ba:e6:4a:86:19:81:37:84:22:14:e4:d5:
d2:75:f9:c1:f3:a1:b7:ec:e0:36:fb:71:e8:47:a4:
eb:da:0e:9d:19:90:44:fd:dc:a5:af:1c:33:11:ed:
3b:1a:f9:fb:09:c5:40:94:ed:5d:9f:27:57:ba:b3:
60:b6:b7:cf:10:14:e3:27:0e:f9:74:64:01:09:57:
6a:d4:15:cc:9b:c2:c0:c5:19:4a:19:4c:3e:31:c3:
d2:44:e9:f8:b8:96:22:aa:56:a5:6b:7a:99:88:76:
78:67:c5:19:1b:fe:c3:94:cc:9f:40:3b:ea:52:1d:
fd:85:4d:ae:6a:c3:01:d6:6e:f0:45:db:dd:73:eb:
28:f7:4e:64:44:89:b2:7d:df:4b:23:b9:0d:58:9b:
e7:b7:66:1e:0b:cc:c7:27:e7:29:0d:fe:ae:df:6f:
1f:e9:7f:24:49:29:ec:0e:aa:ce:c3:1e:12:e1:71:
76:08:82:54:98:56:9e:87:04:6d:c1:4c:51:3d:5c:
f7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:70:8F:6A:30:07:93:E5:E3:AA:F3:03:3B:D6:69:8C:AF:04:0A:DA
X509v3 Authority Key Identifier:
keyid:D5:A1:93:67:1D:C5:9D:76:FC:31:1D:B2:D6:68:9A:3C:88:29:90:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aGTZx3FnXb8MR2y1miaPIgpkJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/vnCPajAHk-XjqvMDO9ZpjK8ECto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d259d-9183-40a0-92a1-2b2a6e27f96f/1/1aGTZx3FnXb8MR2y1miaPIgpkJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.35.0/24
Signature Algorithm: sha256WithRSAEncryption
37:bc:d1:da:f4:5b:d6:df:12:4d:b7:b0:b9:d7:e8:9f:17:fb:
bd:ce:7e:0b:0d:dd:b6:48:6c:9d:3b:25:9d:4f:d3:46:15:82:
cc:28:f5:20:5e:67:77:7b:53:58:95:78:49:93:61:07:8b:81:
49:78:6b:32:2b:9c:37:f9:76:18:ee:e3:89:f9:82:b3:79:89:
65:91:ed:1b:6a:6c:f8:59:a8:27:0b:56:7d:de:0e:10:68:0f:
7b:1e:60:b4:a9:a4:ff:38:13:8b:e0:97:56:67:fa:17:b5:a5:
cf:0e:9d:f3:65:a9:c4:5e:a9:fc:42:a4:34:c4:bb:93:68:17:
7f:d5:d4:0a:c4:4e:70:1a:fc:9f:bb:e8:50:32:af:0f:20:56:
41:e5:f6:6e:73:6e:d8:6e:a4:8d:ca:5f:d4:99:01:8f:09:35:
17:14:81:be:c8:e3:65:0e:c2:c0:af:e6:1b:80:50:61:47:f4:
22:bb:49:75:f0:06:62:7e:8f:47:c7:5f:62:e2:c3:27:f3:0c:
b7:69:0c:e1:77:76:e7:09:1c:7f:f9:f7:c8:58:9c:ec:1c:0a:
53:a7:55:26:55:a1:5c:83:cf:e8:1b:fa:99:63:cc:2f:78:24:
de:86:bd:ef:ed:80:22:14:13:9e:43:3d:95:27:53:94:f0:fd:
83:82:b6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:07 2025 by rpki-client