Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CjfFWGZFd6mJq3zDFFTE2bJ10V0.roa
File: CjfFWGZFd6mJq3zDFFTE2bJ10V0.roa (raw, json)
Hash identifier: Ma6GyglEPNckyCLeJXBAFK5IdNoQx/fR+Ov7XYi+vNU=
Subject key identifier: 0A:37:C5:58:66:45:77:A9:89:AB:7C:C3:14:54:C4:D9:B2:75:D1:5D
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42607DC7
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CjfFWGZFd6mJq3zDFFTE2bJ10V0.roa
Signing time: Sat 01 Jan 2022 14:03:04 +0000
ROA not before: Sat 01 Jan 2022 14:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28099
IP address blocks: 193.235.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113619911 (0x42607dc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a37c558664577a989ab7cc31454c4d9b275d15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:45:53:6e:e4:67:13:fc:a6:3d:e9:fd:92:
71:f0:14:a1:85:86:f3:42:29:28:33:2e:ce:56:95:
97:76:56:fa:47:fe:79:09:26:fe:70:b4:10:02:43:
9e:7a:97:c6:47:58:57:76:1f:c3:5a:fa:bd:a3:ac:
e8:e3:f9:40:5c:b1:75:fb:da:d0:9b:86:d8:0e:4a:
14:fb:6d:c1:0b:11:a5:bc:ae:9e:2f:ff:7f:22:6b:
90:f9:6e:6a:a8:83:e4:28:15:1b:ad:f7:ca:f5:97:
c3:f0:9f:15:4a:68:f3:5c:98:b0:96:b2:ae:4a:50:
18:07:87:2f:5a:db:74:1b:a6:be:44:b8:8a:a8:24:
50:9c:a4:f1:74:af:01:04:b8:0b:aa:12:67:63:57:
fc:19:d6:91:8e:c6:9c:0c:54:bb:4c:0e:84:68:2a:
ee:d9:f6:b9:a3:c5:7b:58:e1:9c:9d:f1:b2:a4:63:
f7:74:3f:27:26:c6:3b:9f:d4:4b:b4:57:ef:7c:44:
73:e3:ae:0f:3f:30:b8:61:1b:89:13:cb:b4:69:94:
86:85:3a:fc:aa:30:7a:47:c1:de:a2:bd:f1:ad:ef:
29:3f:9b:d5:59:14:b6:84:75:31:d4:a5:b9:88:7d:
76:33:7b:7f:7e:5c:70:f7:c4:51:99:45:af:40:e9:
7d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:37:C5:58:66:45:77:A9:89:AB:7C:C3:14:54:C4:D9:B2:75:D1:5D
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CjfFWGZFd6mJq3zDFFTE2bJ10V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.235.146.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:a5:30:a0:77:02:1a:17:65:12:70:f9:82:57:4b:3a:57:25:
91:09:9b:f0:0a:85:2a:cb:bf:27:cb:d0:74:17:c6:2d:5e:00:
c8:62:51:f6:6e:83:d6:fe:2e:34:8e:57:3b:bb:27:2a:b8:52:
f4:1c:78:b7:69:b5:0f:56:0a:a6:1e:b4:88:fa:ad:33:d7:2d:
59:ff:04:d3:8f:28:44:83:81:6b:f6:96:86:73:0c:66:22:e5:
d2:38:1f:b9:32:0c:71:4c:e1:58:9f:63:1f:84:c3:85:04:d9:
1c:19:03:8b:9b:26:6d:7f:78:85:3a:64:3a:f0:a7:fd:77:bb:
bf:77:c5:02:59:5f:d7:34:07:c6:75:22:f7:56:fd:65:97:71:
ba:6f:25:8d:69:4f:27:fd:9f:fa:27:a1:17:89:1f:3b:df:56:
a9:2b:70:ac:5a:4a:3e:e8:4c:59:f8:7a:77:aa:5b:e5:a8:f0:
ed:6f:4e:8d:ac:e7:12:43:16:f5:2c:a6:c8:6b:fe:b8:13:44:
08:72:1e:c8:b1:f0:49:3c:f3:16:45:85:38:00:5c:f4:07:c2:
54:43:d8:03:f4:e8:e8:36:57:54:0e:de:8c:a1:20:63:ee:f4:
ef:c0:60:89:9f:e7:f8:1a:0c:8f:10:f1:5b:b2:24:eb:86:4a:
9a:3e:74:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:02 2025 by rpki-client