Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/SCJvUzntD_Ol3Bp0Oa73m-JNun4.roa
File: SCJvUzntD_Ol3Bp0Oa73m-JNun4.roa (raw, json)
Hash identifier: 7+5Lwmz2imFJXlX87dS5H+XaHTeX2v76lO/ylY+C7WI=
Subject key identifier: 48:22:6F:53:39:ED:0F:F3:A5:DC:1A:74:39:AE:F7:9B:E2:4D:BA:7E
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 018949F8D5B49E7DA7AA4948C7EB17CA46BC
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/SCJvUzntD_Ol3Bp0Oa73m-JNun4.roa
Signing time: Wed 12 Jul 2023 11:59:51 +0000
ROA not before: Wed 12 Jul 2023 11:59:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 193.106.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:f8:d5:b4:9e:7d:a7:aa:49:48:c7:eb:17:ca:46:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Jul 12 11:59:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48226f5339ed0ff3a5dc1a7439aef79be24dba7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:f2:69:bb:d3:be:7c:df:76:b7:32:02:a7:
8e:d3:3f:3c:0c:16:b4:0a:8e:c6:c8:3e:89:0d:13:
cd:84:42:fd:16:00:87:2a:e7:ea:d2:9f:9c:55:84:
b1:ad:55:1b:60:82:64:75:08:a6:75:c2:bb:58:bb:
09:11:4c:f0:1e:60:7e:ee:61:55:4d:fb:c0:ab:a2:
de:c3:c7:98:05:8f:ec:fe:a1:55:06:d7:c5:7d:93:
99:1f:24:d8:b2:65:7a:19:5c:df:db:b3:da:fe:f6:
32:04:5e:22:80:80:cd:86:73:94:81:50:c2:6a:d9:
e3:cc:52:20:13:ea:12:d1:f2:b2:46:ac:07:8b:3e:
fe:a6:21:ab:42:0d:63:d5:f7:6b:15:4f:58:f1:74:
ea:c0:35:e7:e2:8f:fe:d1:2a:19:3b:3a:2d:b0:dd:
4b:65:2e:11:be:a6:8c:b0:bd:92:ca:1b:16:f9:8e:
d6:26:0c:46:12:9d:29:f7:50:20:4c:b4:86:aa:c5:
10:69:b8:73:c7:df:4c:03:ad:50:9f:a4:1d:8c:71:
e4:d8:b2:81:07:4a:70:30:37:46:35:94:1d:bc:55:
72:28:ad:08:30:12:2c:4e:d7:19:dc:94:f3:1a:3e:
03:4a:88:72:7d:31:ba:b4:e8:14:f5:f8:94:1e:df:
1f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:22:6F:53:39:ED:0F:F3:A5:DC:1A:74:39:AE:F7:9B:E2:4D:BA:7E
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/SCJvUzntD_Ol3Bp0Oa73m-JNun4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.199.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c4:d7:7f:52:85:73:aa:18:3c:04:67:6a:ff:9d:6f:f4:52:
df:ea:a3:83:b4:67:71:52:4d:3b:4d:c1:e0:87:e0:2f:dd:39:
a0:82:9a:44:7d:4d:e4:ab:ce:89:40:0e:0f:63:a9:88:ae:0e:
55:9c:c5:dc:14:61:ae:45:a0:d4:80:31:bf:01:50:db:4e:59:
81:72:6f:d7:2e:f8:8e:90:48:cc:f0:ef:d5:d1:8b:69:1f:cf:
60:67:e1:df:80:09:fe:90:fc:6a:06:42:4b:d9:91:60:41:7a:
38:41:fd:9f:9b:21:5f:63:05:8e:1e:89:ab:a6:eb:8d:65:70:
b2:62:5b:07:86:cc:2d:85:b8:74:5d:e2:0d:a5:53:60:44:f1:
b4:b4:e7:de:bf:73:91:c6:92:9f:39:03:c2:0d:65:88:56:d2:
5a:75:d7:30:b1:8b:94:11:90:82:1a:81:3c:36:61:a8:37:a9:
96:cd:39:76:3e:c8:38:54:ff:c0:89:b1:6f:09:e9:16:45:06:
e3:41:36:ea:a2:3a:be:0d:9c:f7:c9:53:0f:46:12:5a:10:7b:
74:81:6b:75:0c:e0:4a:b1:12:b3:a5:d4:5e:b9:01:7e:99:8a:
e2:62:1c:f0:0a:00:b7:e5:40:b8:bb:85:ad:2e:3e:a7:f4:1e:
fc:29:1c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:43 2025 by rpki-client