Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/c2ad44-fe7d-46d9-913e-c794b5f87804/1/yRPlKgCWe7jSLvmv6WuRUW4lHeo.roa
File: yRPlKgCWe7jSLvmv6WuRUW4lHeo.roa (raw, json)
Hash identifier: dWGjz/it2LmS9VQhRtCfYl/R1Xxj8VAeQVfrFZ9V7+Q=
Subject key identifier: C9:13:E5:2A:00:96:7B:B8:D2:2E:F9:AF:E9:6B:91:51:6E:25:1D:EA
Certificate issuer: /CN=8df3df971aa7cb25dfb7cb55b29c87bcbe320829
Certificate serial: 0A55396F
Authority key identifier: 8D:F3:DF:97:1A:A7:CB:25:DF:B7:CB:55:B2:9C:87:BC:BE:32:08:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jfPflxqnyyXft8tVspyHvL4yCCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/c2ad44-fe7d-46d9-913e-c794b5f87804/1/yRPlKgCWe7jSLvmv6WuRUW4lHeo.roa
Signing time: Sat 01 Jan 2022 05:05:39 +0000
ROA not before: Sat 01 Jan 2022 05:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199155
IP address blocks: 193.236.32.0/19 maxlen: 20
193.236.64.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173357423 (0xa55396f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8df3df971aa7cb25dfb7cb55b29c87bcbe320829
Validity
Not Before: Jan 1 05:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c913e52a00967bb8d22ef9afe96b91516e251dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:90:d6:59:b4:ca:e5:4d:90:b9:e5:73:79:
10:a1:a1:0c:36:73:64:0a:51:bd:d1:c6:7a:1d:01:
18:f0:92:ae:2d:e7:d2:46:6a:7c:82:10:24:3d:83:
c8:b1:5e:44:ee:e9:26:eb:c6:4c:0d:c1:09:9d:2c:
2e:1f:b9:90:52:68:3e:2e:a8:ce:e3:a8:56:dd:94:
63:88:35:3f:c2:ce:6c:0f:02:79:6d:85:40:62:dd:
a7:c3:78:30:04:ea:f6:60:43:92:b6:8a:39:7f:39:
e5:22:5b:ed:06:a6:49:2f:21:0d:62:e0:47:bd:ab:
6d:f5:95:b9:73:6f:6b:dc:1e:12:b1:63:1d:59:94:
5e:57:ca:9c:7b:70:f3:1c:5d:a9:f1:11:27:d9:8d:
5b:fd:f7:06:85:62:26:62:2e:54:4b:af:d6:64:cc:
e9:cf:e0:0f:5c:57:24:a9:0b:81:cf:30:a0:cd:38:
3e:96:81:16:3a:38:ad:95:24:c1:31:a4:86:a7:a6:
77:9e:de:d5:0f:bf:a4:b6:a3:83:9a:20:a8:02:3b:
5d:23:15:80:e2:87:77:9d:4b:ec:f6:f2:ca:19:30:
e0:4d:0e:54:15:4c:06:d4:86:6d:95:34:d0:e4:f9:
98:ca:db:21:9a:39:db:3d:13:92:97:cd:3c:6f:9d:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:13:E5:2A:00:96:7B:B8:D2:2E:F9:AF:E9:6B:91:51:6E:25:1D:EA
X509v3 Authority Key Identifier:
keyid:8D:F3:DF:97:1A:A7:CB:25:DF:B7:CB:55:B2:9C:87:BC:BE:32:08:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jfPflxqnyyXft8tVspyHvL4yCCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ad44-fe7d-46d9-913e-c794b5f87804/1/yRPlKgCWe7jSLvmv6WuRUW4lHeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ad44-fe7d-46d9-913e-c794b5f87804/1/jfPflxqnyyXft8tVspyHvL4yCCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.236.32.0-193.236.95.255
Signature Algorithm: sha256WithRSAEncryption
31:a1:97:09:f0:42:12:4c:00:ab:0a:eb:de:ce:5e:36:df:a6:
88:33:b4:1f:bb:f8:38:bd:dd:23:9e:ae:08:d0:72:e0:56:17:
7f:d8:b8:96:46:9e:35:60:e1:f6:1c:a7:33:d6:3d:07:dd:31:
6b:80:fe:fd:78:a6:6c:1e:ee:69:89:50:73:0b:02:05:31:4e:
14:f4:74:0a:12:ea:bf:4b:4c:45:4a:a3:96:d5:3d:93:20:c0:
2f:ae:64:20:36:75:9d:85:d2:94:c4:f2:16:f1:0c:54:b8:7d:
be:9c:5d:3a:ff:18:1c:5f:51:d3:08:59:e7:00:2d:7f:80:75:
2c:4c:de:94:a6:29:c1:15:7f:35:11:99:e9:4d:a2:dd:c0:89:
b2:e5:79:dc:87:50:63:80:b0:b7:3f:28:18:3f:60:0b:9b:de:
63:10:17:c4:3e:e9:84:4c:76:a0:9e:10:82:a4:c6:c8:c5:23:
a7:9b:68:0b:3f:7d:71:45:3c:17:5d:57:e9:d7:57:3c:44:f9:
d8:10:9f:f9:5e:1e:15:12:4a:a8:ce:0c:8a:cd:bc:34:a8:0b:
ca:17:7f:6e:4c:27:d5:5b:f6:b3:0a:6a:ee:dc:28:67:ab:8b:
26:f9:6d:f3:07:12:cb:0f:04:f1:26:32:f2:ad:dc:e2:76:7c:
ce:6c:f3:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:42 2025 by rpki-client