Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V1hWIULaJPWXGbXfTwFjry2me7Q.roa
File: V1hWIULaJPWXGbXfTwFjry2me7Q.roa (raw, json)
Hash identifier: 6RJ+uchJVtrJZpH3BRAxCop4TJmdUijAJUR50HvhQoE=
Subject key identifier: 57:58:56:21:42:DA:24:F5:97:19:B5:DF:4F:01:63:AF:2D:A6:7B:B4
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42777079
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V1hWIULaJPWXGbXfTwFjry2me7Q.roa
Signing time: Sat 01 Jan 2022 14:03:19 +0000
ROA not before: Sat 01 Jan 2022 14:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56630
IP address blocks: 194.68.225.0/24 maxlen: 24
192.71.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1115123833 (0x42777079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5758562142da24f59719b5df4f0163af2da67bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:88:20:c7:52:ee:41:35:59:41:8a:09:0e:32:
81:12:0d:ab:b1:e7:55:e1:e2:0f:3e:70:19:00:4a:
28:e6:48:92:59:70:dd:19:24:4b:b9:ba:e8:4e:2d:
39:c9:d8:4f:77:5b:9d:97:cf:d1:f9:ff:68:d1:bd:
36:77:ea:3f:96:eb:e5:59:ad:3e:30:4c:0f:2d:8b:
8f:69:4c:64:a8:57:2b:9b:5a:29:4c:bc:c2:20:77:
89:6b:26:65:1a:84:56:28:18:55:1d:94:84:3b:a4:
15:20:5a:35:57:88:2e:a8:f7:6f:ae:d8:66:de:f7:
60:33:2d:b6:b1:f1:55:fd:ae:24:64:ac:6c:82:77:
3c:49:7a:97:ff:b2:18:16:c5:9d:21:65:99:a6:df:
70:04:17:2d:cd:ec:7c:79:06:51:76:be:a1:e7:70:
3b:59:ef:7f:1e:e6:d5:7d:2c:22:1e:6d:ad:35:fc:
e3:34:52:63:c9:b3:f9:79:28:97:46:e2:1f:cc:01:
7e:ff:a5:a2:40:8c:f1:36:b6:09:a0:47:e8:5e:c6:
42:fa:69:11:d9:bc:4c:96:68:bf:04:e0:8a:c6:dd:
49:ef:fe:22:22:92:9f:cf:97:b9:10:ae:76:f3:f3:
d9:ee:35:60:34:1c:6b:17:8a:7c:8a:71:e6:2b:e7:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:58:56:21:42:DA:24:F5:97:19:B5:DF:4F:01:63:AF:2D:A6:7B:B4
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V1hWIULaJPWXGbXfTwFjry2me7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.26.0/24
194.68.225.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:81:99:23:c7:58:e7:93:2f:1e:10:fe:ab:9f:f3:46:54:4b:
61:d2:30:7d:af:48:c2:45:ab:6a:c2:a2:4c:34:df:7f:07:6f:
8b:08:9b:93:3f:1b:83:38:ce:3b:47:ce:05:1c:15:f9:31:df:
08:69:02:55:3d:4a:46:99:b5:a0:24:c0:bf:53:69:68:f3:d6:
be:b6:fe:05:a7:16:17:b8:f5:4a:a2:6c:4b:2b:8d:96:dd:b2:
57:c8:1b:ff:8b:f0:03:ca:f6:0d:49:dd:1c:c8:b9:e2:b5:02:
3f:df:3b:0e:b9:7e:4f:9f:55:db:d1:87:1c:4c:fe:4b:32:72:
cd:ba:6d:66:02:e8:67:d2:f1:14:a3:5d:40:1a:21:fb:f5:ea:
8c:46:24:aa:4e:c0:6c:45:ae:1e:c2:51:4d:76:89:6b:0b:eb:
1b:bc:62:5c:1e:24:df:18:12:fa:30:f9:b7:f2:3d:cf:6e:e5:
de:e0:02:6c:63:71:e1:e0:46:65:02:0a:4b:1f:00:2e:3d:c9:
fe:c6:02:b4:c7:be:f7:b4:d1:29:b6:af:63:eb:80:bd:13:ca:
2a:59:98:4f:bc:1b:0d:39:91:30:2a:8d:7d:5a:32:e8:54:35:
31:6f:39:bc:1b:8b:99:88:2b:07:bc:59:8c:ea:d1:80:8b:3c:
50:4e:a4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:08 2025 by rpki-client