Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/6op7LWLAZKtuKGraJoUf7phhAhg.roa
File: 6op7LWLAZKtuKGraJoUf7phhAhg.roa (raw, json)
Hash identifier: ixEvjuc4xk00fpEB4PZm3q2gTP4YtlJCgH/ZFnQ76Zc=
Subject key identifier: EA:8A:7B:2D:62:C0:64:AB:6E:28:6A:DA:26:85:1F:EE:98:61:02:18
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018BC5DEDA4D3812E597AB4D054E4DC81D98
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/6op7LWLAZKtuKGraJoUf7phhAhg.roa
Signing time: Sun 12 Nov 2023 23:29:58 +0000
ROA not before: Sun 12 Nov 2023 23:29:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200456
IP address blocks: 194.146.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c5:de:da:4d:38:12:e5:97:ab:4d:05:4e:4d:c8:1d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Nov 12 23:29:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea8a7b2d62c064ab6e286ada26851fee98610218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:47:48:f6:a8:db:a1:42:48:cf:39:b6:4f:
dc:d5:5f:66:02:bd:fe:3e:cd:5a:ca:05:68:43:bc:
72:bc:14:66:0e:17:06:95:a3:23:33:31:cd:9b:90:
41:54:c4:81:eb:e0:0f:7e:e0:f8:01:69:f3:be:94:
d3:02:74:6b:c0:f6:c8:6f:a6:2c:31:18:b1:0f:a1:
ba:d0:b7:a5:87:be:bc:05:a5:10:19:93:69:9c:d4:
8f:28:e4:ca:6c:b0:8c:9e:2b:00:f4:4a:c9:ec:ec:
c6:80:51:6d:f5:7a:40:2a:bd:25:bd:de:54:dc:15:
03:0b:cd:58:c0:4c:5b:06:27:44:f0:7f:cc:cb:76:
f6:a9:df:06:8e:a5:60:9e:3f:44:81:ce:7c:32:53:
ef:70:4c:8c:8c:55:39:29:e5:f0:b8:be:28:00:89:
90:99:b9:9c:3b:29:d7:8e:23:7e:4d:99:74:ca:b8:
4a:3c:c1:0f:9e:58:79:ed:94:84:f5:bd:2f:3e:ad:
d8:a8:d9:7d:a0:2d:9c:c3:af:2d:3e:7d:89:70:7d:
4a:01:b2:18:41:cc:2d:28:75:ba:e7:a3:d2:f9:46:
0c:d2:df:3c:63:14:e6:61:82:a7:87:02:67:e8:f7:
c2:26:72:11:0b:ae:86:9f:79:3a:1b:e6:8c:20:f3:
91:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8A:7B:2D:62:C0:64:AB:6E:28:6A:DA:26:85:1F:EE:98:61:02:18
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/6op7LWLAZKtuKGraJoUf7phhAhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:d1:d0:16:9e:48:54:c8:10:b1:d3:0d:c3:d0:9c:74:ab:58:
98:21:d1:34:9a:44:0c:05:dd:dc:f0:52:79:13:62:53:fc:11:
60:0d:f4:e9:1d:cd:2a:df:fc:b5:11:1e:65:a9:63:1f:5a:3e:
88:73:39:3f:ae:83:ef:cf:ad:bb:f7:a0:b8:4d:34:65:c4:83:
f9:ad:f2:b7:10:e3:10:d5:f8:92:ad:83:bd:48:fc:ec:8a:80:
38:96:f2:20:ab:b3:de:df:7d:8e:fc:cc:68:cf:7a:e6:7e:39:
f7:9d:f6:cf:77:4a:fc:81:72:de:2f:89:0d:36:59:bf:99:7e:
41:40:04:69:a6:da:3b:4d:34:25:6a:33:18:b1:33:34:c2:2a:
24:85:21:05:9d:c4:b7:e2:f5:cd:d5:72:3b:ea:9f:7c:ec:a8:
5c:c0:96:59:21:7c:f8:a7:f7:14:cc:fb:4e:95:7f:bf:fa:71:
96:75:e7:82:83:17:65:15:15:dc:4d:62:bf:9f:b0:b9:31:7f:
0f:58:50:74:07:19:2a:1d:63:02:0d:2b:0d:fb:5b:97:33:32:
a5:1d:d0:cc:07:88:d9:af:67:e5:66:93:e9:95:c2:94:fb:bd:
ad:0e:ce:fa:f4:ef:6d:2b:1a:22:86:77:0c:75:81:ac:71:12:
92:97:08:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:35 2025 by rpki-client