Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/rUS1wQxxkBDeOnPpFnTn5SH4LAE.roa
File: rUS1wQxxkBDeOnPpFnTn5SH4LAE.roa (raw, json)
Hash identifier: +/SFg/FPYbLZ0pOqosVqbfgsy4YQyjne9PGn7/iMVSw=
Subject key identifier: AD:44:B5:C1:0C:71:90:10:DE:3A:73:E9:16:74:E7:E5:21:F8:2C:01
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 0187A35F94F7E9F48F7E3E13F6ACEBEC3729
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/rUS1wQxxkBDeOnPpFnTn5SH4LAE.roa
Signing time: Fri 21 Apr 2023 10:32:42 +0000
ROA not before: Fri 21 Apr 2023 10:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205839
IP address blocks: 89.18.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:5f:94:f7:e9:f4:8f:7e:3e:13:f6:ac:eb:ec:37:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Apr 21 10:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad44b5c10c719010de3a73e91674e7e521f82c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1a:fa:de:55:43:35:9a:d9:c5:5c:49:db:8f:
31:42:a1:5b:a9:12:3c:2a:25:50:b6:3b:2d:9e:90:
2b:cf:47:a4:5e:03:00:ea:57:cd:11:19:59:75:d5:
3c:98:2a:62:0a:7a:39:84:19:12:53:33:f6:d2:1d:
aa:ff:5d:b7:7a:e5:1c:b4:86:dd:65:61:0d:35:6a:
9d:8b:1c:c9:be:f8:57:f2:83:7e:b0:cc:cf:46:f6:
80:60:7c:03:b1:d1:4e:58:e1:e7:84:ec:57:f7:43:
a4:7b:05:28:14:28:b3:84:73:d4:32:4b:30:7a:8a:
4a:42:c2:e1:3f:8f:a9:bb:56:59:48:5f:6d:5b:21:
d0:bb:b5:d4:83:c7:a9:bd:f9:ab:18:7f:9d:08:ed:
0a:9e:3b:78:0c:86:97:0e:6d:6a:5e:3b:13:e5:2a:
d5:c6:3e:8c:b3:80:93:41:46:47:1e:a3:8c:68:5b:
0f:9f:be:c6:29:cc:e5:2f:85:70:64:ee:70:c4:88:
5f:c8:10:c9:d5:dc:2d:7a:b2:78:6d:22:21:38:50:
66:76:2f:36:63:b3:c7:2a:7f:44:de:8f:5a:f2:ff:
0c:3f:c8:a9:c0:b0:09:30:f7:5a:7a:ad:c2:4d:64:
77:48:2e:41:cc:4c:92:14:e8:b4:c4:76:dc:82:77:
e5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:44:B5:C1:0C:71:90:10:DE:3A:73:E9:16:74:E7:E5:21:F8:2C:01
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/rUS1wQxxkBDeOnPpFnTn5SH4LAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.18.183.0/24
Signature Algorithm: sha256WithRSAEncryption
19:9a:6d:ab:f2:1e:89:18:8b:0c:ee:8a:5a:9a:95:4a:69:50:
7b:f1:c3:98:f9:bb:6e:ea:4d:0a:62:ff:7d:5e:48:59:b6:2c:
da:c5:33:e5:57:5a:cd:ae:0c:b2:80:6b:01:37:03:d6:fe:b5:
8c:50:7b:42:cc:0c:22:cb:e4:34:24:ed:81:69:b1:d8:72:76:
6f:45:41:cb:31:80:91:d4:c5:ec:76:25:8c:da:09:7f:ea:c4:
5c:a7:ad:24:32:1c:63:8f:f1:5b:e9:5b:67:65:2e:b6:34:92:
2c:79:22:a4:94:e5:c7:e3:af:ed:9e:6a:49:72:8e:e7:d9:5f:
c4:41:84:2b:3a:cf:fb:c2:ed:c7:f8:2f:2b:c4:ed:5f:7a:09:
54:73:96:fa:79:8d:17:35:aa:4b:38:d8:5f:0f:87:74:1e:82:
a1:4c:7c:88:18:51:76:1f:df:c5:fb:5e:a0:66:56:ca:fe:51:
2f:dd:23:5a:ca:92:40:c2:c0:a7:dd:3a:dd:ca:3e:24:49:54:
1a:c1:7b:b5:35:f6:ab:22:07:54:5c:4b:3e:d6:2f:0c:d1:06:
9d:b5:42:5a:eb:98:e4:4e:c8:2a:4e:7b:6d:60:1f:f2:4a:41:
eb:ed:06:82:df:13:93:ae:88:eb:00:32:62:6f:1c:cc:00:65:
a4:67:3b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:36:31 2025 by rpki-client