Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/cd9b7f-7e57-4f95-ab39-f4d1bcb5c901/1/5Uctbu8wJibLzAw8RQys0OFYX-U.roa
File: 5Uctbu8wJibLzAw8RQys0OFYX-U.roa (raw, json)
Hash identifier: GYwnXFwDGVl0dU2xIa0o/m20xviEqdT6EM7xT7sVWYY=
Subject key identifier: E5:47:2D:6E:EF:30:26:26:CB:CC:0C:3C:45:0C:AC:D0:E1:58:5F:E5
Certificate issuer: /CN=7a30a5a2e3324d5e412667f9f296f52af297bb4d
Certificate serial: 018B00E44DAB1D478C4A29BFF38793AA958D
Authority key identifier: 7A:30:A5:A2:E3:32:4D:5E:41:26:67:F9:F2:96:F5:2A:F2:97:BB:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejClouMyTV5BJmf58pb1KvKXu00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/cd9b7f-7e57-4f95-ab39-f4d1bcb5c901/1/5Uctbu8wJibLzAw8RQys0OFYX-U.roa
Signing time: Thu 05 Oct 2023 17:30:43 +0000
ROA not before: Thu 05 Oct 2023 17:30:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201042
IP address blocks: 194.13.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:e4:4d:ab:1d:47:8c:4a:29:bf:f3:87:93:aa:95:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a30a5a2e3324d5e412667f9f296f52af297bb4d
Validity
Not Before: Oct 5 17:30:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5472d6eef302626cbcc0c3c450cacd0e1585fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:be:75:7f:cf:a6:23:9a:68:1d:e6:22:97:3f:
de:f0:6c:ed:94:8a:14:de:a7:af:5c:61:28:7d:b1:
5b:c6:35:57:dd:49:3a:90:2c:f1:60:30:ee:c8:ec:
9e:03:17:18:06:09:04:0c:ea:0e:44:d7:15:ce:ce:
58:03:db:54:b9:5e:12:94:74:25:0e:11:f9:7a:fd:
5b:29:c8:2d:aa:58:34:ff:17:7a:5b:b2:97:4d:c4:
72:4d:0c:66:96:5f:83:1a:34:23:b0:44:3f:28:47:
ad:a8:c2:92:19:fd:b0:30:7f:9a:43:c7:54:86:ae:
27:b7:45:4e:ef:11:e0:15:b5:9f:82:5d:65:3b:33:
05:74:f7:4e:84:4f:9e:1c:4a:7b:4c:a1:9a:e0:e2:
a9:97:96:be:35:ae:17:a3:05:9a:7a:c4:3d:ae:9c:
af:5a:e2:94:83:42:e3:a9:e7:f9:a8:2d:5f:fa:a9:
69:08:9f:62:6f:5e:1a:c0:cf:f9:c5:25:bc:3a:dd:
1f:cf:3a:04:d2:50:13:64:b6:a5:1a:f0:6f:43:33:
5b:56:13:b3:b9:ec:c0:92:86:96:62:82:cb:88:aa:
24:23:52:74:63:db:de:3b:16:53:1e:63:6f:2e:c9:
dc:24:8d:5c:00:36:b8:00:8d:8b:3c:de:b1:86:bc:
d8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:47:2D:6E:EF:30:26:26:CB:CC:0C:3C:45:0C:AC:D0:E1:58:5F:E5
X509v3 Authority Key Identifier:
keyid:7A:30:A5:A2:E3:32:4D:5E:41:26:67:F9:F2:96:F5:2A:F2:97:BB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejClouMyTV5BJmf58pb1KvKXu00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cd9b7f-7e57-4f95-ab39-f4d1bcb5c901/1/5Uctbu8wJibLzAw8RQys0OFYX-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cd9b7f-7e57-4f95-ab39-f4d1bcb5c901/1/ejClouMyTV5BJmf58pb1KvKXu00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.13.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:15:21:8d:3d:23:23:be:b9:8b:3a:09:57:b5:6f:7d:f3:37:
a2:f6:fb:0e:ae:80:3a:89:d3:c2:6d:3f:09:b9:ee:23:37:54:
b7:cc:81:20:48:52:8c:e4:91:9d:7b:bf:5b:23:ee:10:cb:85:
52:42:7a:d2:d0:71:6b:ef:ee:aa:ba:f8:cf:0d:c4:e4:73:20:
fe:1a:36:e4:5e:5b:1d:ca:36:20:86:7e:29:e6:b8:0c:42:4a:
25:87:ae:0d:4b:8f:dd:c8:0d:5d:35:3b:2e:07:03:f7:8a:81:
5e:ad:2f:17:be:cd:b9:93:f5:bc:12:de:e9:c0:6b:e5:d0:54:
94:57:1e:b6:bf:fe:4f:94:ed:d8:65:39:8e:84:75:0e:7e:d1:
fa:14:e1:d0:15:90:96:ee:25:0c:29:62:43:d8:48:c4:e7:12:
ff:da:e4:0d:1e:6d:1f:bf:3f:f7:ae:77:7e:fe:d7:f9:03:28:
f1:26:0c:71:9c:aa:13:d2:e2:49:cd:cc:aa:e7:76:d4:b6:5f:
cb:e0:43:7a:6b:8c:f2:cf:c5:d3:f0:3c:dd:d5:0c:75:9e:5a:
17:e7:dd:61:13:0a:18:a3:bc:29:27:31:d5:5f:bc:bb:fc:ac:
4b:d5:3e:8e:8b:fb:78:4f:78:56:51:73:25:6a:b6:df:aa:52:
bb:53:ea:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:36:33 2025 by rpki-client