Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/7tuTXGNVR6bEvmFyDHF6BtXPpkA.roa
File: 7tuTXGNVR6bEvmFyDHF6BtXPpkA.roa (raw, json)
Hash identifier: zlO45+fMizWRVvW+fMYCIuk8GCTqXuaDq+3Nm+q/9q8=
Subject key identifier: EE:DB:93:5C:63:55:47:A6:C4:BE:61:72:0C:71:7A:06:D5:CF:A6:40
Certificate issuer: /CN=e29f4964009c74bb81aed9c67078013dc868ef17
Certificate serial: 1670CB4A
Authority key identifier: E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/7tuTXGNVR6bEvmFyDHF6BtXPpkA.roa
Signing time: Sat 01 Jan 2022 15:05:06 +0000
ROA not before: Sat 01 Jan 2022 15:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34086
IP address blocks: 193.222.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376490826 (0x1670cb4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29f4964009c74bb81aed9c67078013dc868ef17
Validity
Not Before: Jan 1 15:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eedb935c635547a6c4be61720c717a06d5cfa640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7e:67:a6:5e:58:56:b4:6a:f6:09:bf:bd:d0:
94:4c:e6:18:e6:3a:0a:9f:35:2d:c2:0e:f2:ae:33:
ec:13:4e:b2:a1:3c:1f:ec:12:18:7d:ae:71:fe:88:
b7:ea:c1:8a:27:21:87:5a:ab:84:62:e3:24:f7:d1:
45:55:c8:14:79:06:e1:2b:da:b0:33:8a:ef:88:61:
ca:bc:7b:b8:9a:2d:81:fd:be:68:ea:78:d0:84:d0:
cd:80:3b:e3:99:aa:40:69:7b:49:8f:a5:f0:2b:46:
52:44:5b:b0:ff:64:34:47:0d:76:9d:7e:be:36:d4:
f9:52:7e:dd:e4:f8:c2:cf:b7:aa:22:fd:81:91:94:
bf:98:7d:e4:65:cf:05:13:73:60:29:ac:d0:f6:af:
d9:0d:7b:4c:26:9d:22:07:13:64:37:09:77:6d:4a:
89:ab:8b:66:d5:9a:97:9d:ad:d4:7b:05:65:73:cb:
65:d6:a7:2d:0f:3d:fe:e4:e7:fb:a0:c0:34:dc:2c:
35:cf:a0:f2:68:ac:53:47:cd:40:4a:d3:2f:ea:94:
4b:78:d7:3c:38:3d:49:53:39:1a:5f:7c:1b:18:15:
16:33:ec:c4:84:11:d6:7d:e2:b7:f7:97:6a:29:d6:
9a:53:04:79:70:5d:b1:d6:b2:37:7d:5d:db:0a:7f:
72:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DB:93:5C:63:55:47:A6:C4:BE:61:72:0C:71:7A:06:D5:CF:A6:40
X509v3 Authority Key Identifier:
keyid:E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/7tuTXGNVR6bEvmFyDHF6BtXPpkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/4p9JZACcdLuBrtnGcHgBPcho7xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.200.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:3c:48:e8:ee:1d:a7:f3:32:ce:cc:da:6b:60:a8:58:d4:99:
4c:02:18:05:e1:38:15:30:d7:0b:82:cd:79:cb:fc:71:20:09:
42:71:21:66:7a:a4:4a:d7:e9:bf:27:c8:63:c5:0b:7a:7c:af:
17:a2:54:7d:5b:52:17:e2:2c:0e:40:35:ac:3e:b4:48:09:25:
e5:e2:1d:4e:d0:21:f6:be:53:79:bd:cc:ae:85:cc:55:29:a8:
a7:c2:e3:94:3f:2b:f4:80:42:32:89:04:f5:62:fb:94:1a:a0:
9e:68:ff:37:bd:14:c3:b9:c9:8b:e7:63:2d:69:2a:2c:59:29:
9e:68:b9:48:e3:85:dd:ce:5d:eb:1c:a3:66:31:b4:d8:9b:4c:
da:58:b1:a0:54:7a:48:78:fa:8c:4d:fa:90:7d:7e:9d:e3:68:
1d:bb:fb:6d:e7:ad:fb:eb:6a:47:1a:c9:3b:b4:27:41:ed:14:
4c:d4:8d:f5:e9:79:05:3c:c0:77:63:80:f7:91:a0:bc:2d:1a:
23:06:c7:ac:e1:fa:48:18:2b:a6:07:51:14:88:d3:5d:cb:49:
10:41:f2:09:8c:5e:a4:c8:d7:74:b4:54:1b:c0:db:71:90:8a:
b0:22:3e:ec:82:81:ef:46:66:48:1f:bc:87:a2:3b:ed:4c:17:
4a:90:ba:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:35:06 2025 by rpki-client