Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/49akgzim5fHM3RYHL6TTvdoVWkc.roa
File: 49akgzim5fHM3RYHL6TTvdoVWkc.roa (raw, json)
Hash identifier: SreLaLoRYq4O/DbQY/Dpc03HZMoO8G5xO9uuicwcXc4=
Subject key identifier: E3:D6:A4:83:38:A6:E5:F1:CC:DD:16:07:2F:A4:D3:BD:DA:15:5A:47
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378EE6353772DF383218AE17D794D00
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/49akgzim5fHM3RYHL6TTvdoVWkc.roa
Signing time: Mon 27 Mar 2023 14:29:00 +0000
ROA not before: Mon 27 Mar 2023 14:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197497
IP address blocks: 83.139.46.0/24 maxlen: 24
83.139.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:ee:63:53:77:2d:f3:83:21:8a:e1:7d:79:4d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3d6a48338a6e5f1ccdd16072fa4d3bdda155a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:40:90:1f:d3:21:c1:d7:3c:bf:25:89:fd:
0c:75:7b:cc:34:d8:47:a3:0f:96:7d:f3:67:34:ea:
e8:7a:46:6b:ef:d8:f1:c4:14:f0:57:85:a7:40:d9:
a7:0e:39:ef:ce:d4:25:a4:84:62:c4:e5:3a:06:22:
f1:d4:2b:36:63:5b:6c:ce:0a:e7:70:47:23:82:c0:
b6:ce:0c:f1:62:f4:9e:eb:e1:2c:fa:47:e0:5d:86:
48:eb:b8:ae:8c:df:43:e8:61:6b:58:7c:a4:f0:62:
b1:39:0e:43:57:8b:63:1e:45:de:5a:89:a4:2d:7c:
11:b1:db:36:fd:71:51:09:6d:1c:e6:71:2f:63:5c:
0d:ff:36:da:a8:a8:f8:c8:db:01:44:22:c0:90:ca:
75:22:83:6d:91:06:ba:a3:e8:67:65:10:c1:37:33:
92:89:c7:73:b9:76:9e:6f:df:9d:95:99:c8:70:a7:
dd:0f:ec:3f:0e:7b:64:5d:f0:7c:3b:4f:6f:99:ac:
25:ba:64:1f:c3:b2:5f:7a:1c:19:28:83:15:d0:a3:
74:d2:52:c8:0c:60:fb:09:45:b9:c0:ca:65:79:05:
72:36:9f:00:c4:bf:13:2e:8d:17:f9:24:1e:fe:c7:
fb:e4:d0:ba:a3:c2:61:af:8e:16:43:e9:da:2f:b3:
98:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D6:A4:83:38:A6:E5:F1:CC:DD:16:07:2F:A4:D3:BD:DA:15:5A:47
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/49akgzim5fHM3RYHL6TTvdoVWkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.46.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:13:91:71:fa:ef:34:fd:ca:0a:0d:bf:01:7b:9a:e2:f4:69:
e5:05:bb:d2:4f:ec:5f:f5:a0:5f:59:4e:3d:ef:08:be:16:8d:
a8:e5:2e:89:a9:d0:e7:73:8d:98:fc:a9:12:3d:19:15:98:7e:
56:90:e2:a3:66:c1:90:1b:ea:2a:0f:8b:73:79:2d:bb:40:00:
3f:37:17:d0:a0:bc:2f:ec:95:87:a9:e4:b1:4a:70:e2:60:a5:
7c:63:63:52:6d:d4:20:8f:3b:fb:02:42:f8:ae:ac:07:18:ca:
49:2c:17:08:bc:f0:31:e8:46:ac:8c:21:73:04:bc:7b:61:b9:
53:57:d5:68:4a:94:06:04:5a:ee:c9:e0:c1:69:95:ea:8b:1c:
99:9b:d3:64:cc:ff:99:ed:29:f5:55:47:83:59:6b:da:4c:1f:
e6:04:c6:96:87:d6:4c:25:c9:24:22:83:05:18:42:6a:f5:a0:
42:10:d0:24:b5:0a:c5:bc:8c:7d:fe:d6:59:b8:5b:61:53:60:
2f:29:4a:dc:94:ad:46:d0:0a:9f:6d:c3:09:48:19:d5:c2:a9:
72:cc:e5:13:09:95:42:dc:61:c3:81:17:aa:40:c5:2a:b8:13:
b4:74:89:b3:77:9c:03:44:c9:81:6f:e6:c4:59:63:41:1b:50:
23:63:07:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:54 2025 by rpki-client