Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTQ_BAqsVYi7Y62gKBp--e1XxvU.roa
File: pTQ_BAqsVYi7Y62gKBp--e1XxvU.roa (raw, json)
Hash identifier: 8YgxKe/VeDndLl5PRP1X0Hv4qQuXudIEl6FOfv8BTEE=
Subject key identifier: A5:34:3F:04:0A:AC:55:88:BB:63:AD:A0:28:1A:7E:F9:ED:57:C6:F5
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCACF161BCA207900FA6F04B4DE7E72
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTQ_BAqsVYi7Y62gKBp--e1XxvU.roa
Signing time: Sun 01 Jan 2023 10:05:08 +0000
ROA not before: Sun 01 Jan 2023 10:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3308
IP address blocks: 193.234.184.0/24 maxlen: 24
193.234.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:cf:16:1b:ca:20:79:00:fa:6f:04:b4:de:7e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5343f040aac5588bb63ada0281a7ef9ed57c6f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:55:bc:d6:a4:74:ea:df:f9:f6:ec:da:ae:d8:
f7:f1:07:9a:a6:7e:ea:22:0c:91:1a:c7:30:a2:f9:
84:67:93:5b:77:0d:25:32:02:fc:94:92:5a:1b:fb:
05:b0:1f:17:89:8e:a9:02:96:b1:82:5c:b9:92:1b:
fb:d8:c3:4b:d6:dd:35:03:56:77:da:10:b4:a3:25:
b0:e8:23:3e:27:44:7f:e6:69:0f:ed:a8:ec:79:78:
97:8f:09:d5:87:b7:18:c4:ff:b5:ab:8f:5a:3c:92:
14:fa:fa:15:2d:d5:8e:b1:66:7a:c3:4c:d0:53:6a:
ba:17:6b:c3:9b:e8:2a:d8:09:6a:08:9d:cc:a8:b4:
49:65:4d:5e:c0:5d:27:4a:1e:e9:77:b1:a9:80:ad:
aa:f0:1d:20:69:71:43:9b:24:bd:d3:be:2a:73:64:
96:27:02:50:a3:80:98:f7:fd:b8:f8:d4:de:39:49:
46:ca:e4:f2:ef:84:6f:11:71:6d:84:e6:a7:ac:a7:
c7:c4:98:d6:80:b9:98:d9:24:c1:44:5e:93:fe:5e:
14:32:fe:2c:e4:90:29:06:98:8a:39:d7:75:5d:66:
32:bc:ee:a7:06:f1:a3:2c:62:01:3c:08:51:9b:ad:
a6:ae:e2:d8:f2:89:af:d9:ec:35:8e:cc:b0:c2:44:
b8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:34:3F:04:0A:AC:55:88:BB:63:AD:A0:28:1A:7E:F9:ED:57:C6:F5
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTQ_BAqsVYi7Y62gKBp--e1XxvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.234.184.0/23
Signature Algorithm: sha256WithRSAEncryption
22:79:a2:76:69:25:b7:6e:6a:8d:2f:94:38:16:02:87:de:90:
d8:24:ce:d0:b5:6c:1a:33:fb:ea:49:aa:5d:b0:7a:d4:b8:e0:
e4:c9:91:eb:97:c0:52:2b:d0:19:d6:11:b8:d4:56:27:2b:7b:
34:0c:26:69:7c:b3:ba:ca:e4:08:f9:1b:80:20:24:e0:84:54:
24:6c:b8:2c:e3:50:b0:49:ac:0d:e5:67:53:99:b5:4a:bc:83:
57:71:0a:01:60:db:90:e4:ab:86:4c:3d:3e:a4:f5:ac:7c:bd:
ea:77:a3:9d:0f:d1:70:55:e8:cf:8e:0d:98:50:a5:80:88:0c:
78:c5:19:c9:c5:bd:5b:f3:40:57:4e:c0:77:31:f4:f0:6f:a0:
fe:29:39:28:c3:0d:d5:65:ea:38:45:5d:16:44:39:bb:11:ee:
fb:11:bd:c3:55:b1:6c:6b:3f:e5:ef:a3:bb:2e:80:b6:7d:0d:
aa:91:16:0c:55:fa:c1:27:0e:67:f6:55:9f:b3:af:93:f1:c2:
f0:a3:fd:37:cb:0e:2e:39:6b:f5:0d:91:16:ca:66:01:5b:d9:
5d:6f:02:52:2b:c3:8f:20:70:01:81:b9:ca:ba:19:0d:ad:4b:
ac:79:c0:f3:54:74:72:d8:6c:d6:3d:e7:f8:14:b7:df:74:73:
24:58:97:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:47 2025 by rpki-client