Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/7hGxqNFK4GGAlq1hfIoPpo3TUi4.roa
File: 7hGxqNFK4GGAlq1hfIoPpo3TUi4.roa (raw, json)
Hash identifier: bMTlPGyN+NqtQk5bDZxnQsSLfL6LJ5+rj+a3zfLZNEQ=
Subject key identifier: EE:11:B1:A8:D1:4A:E0:61:80:96:AD:61:7C:8A:0F:A6:8D:D3:52:2E
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 01879A77027F9F278847E0687D5D6D0D793B
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/7hGxqNFK4GGAlq1hfIoPpo3TUi4.roa
Signing time: Wed 19 Apr 2023 17:01:43 +0000
ROA not before: Wed 19 Apr 2023 17:01:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60159
IP address blocks: 193.57.47.0/24 maxlen: 24
193.57.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:77:02:7f:9f:27:88:47:e0:68:7d:5d:6d:0d:79:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Apr 19 17:01:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee11b1a8d14ae0618096ad617c8a0fa68dd3522e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:83:17:ca:b0:c3:7f:0b:29:32:f9:7d:75:b3:
06:dc:85:2a:cb:68:c2:6a:ba:02:d0:86:ee:60:d8:
35:bb:cf:78:a4:3d:0b:b5:07:a1:ab:76:e1:6b:eb:
33:c6:f8:9c:42:76:9c:03:ce:69:41:be:1a:05:f1:
c3:13:42:70:2e:26:26:c8:a1:62:ba:87:cb:71:a4:
f5:ee:4d:b0:99:0b:6a:f2:1f:b2:c7:1d:b6:fc:7f:
05:01:78:19:85:2b:22:74:dc:1b:9e:6c:ed:13:ad:
31:2d:fe:9a:93:dc:bf:2e:1f:ee:17:bd:1c:17:d7:
32:fd:49:e7:30:21:57:57:5f:56:cb:d0:45:51:e0:
66:72:72:38:b9:62:98:a2:b0:f1:2b:2a:6c:b6:4b:
57:a2:4e:57:72:be:61:a2:ba:1f:24:24:4d:7c:d4:
64:f5:e6:58:80:e9:6d:fc:23:95:c6:b8:6a:f8:b4:
26:cb:7d:1a:f0:02:95:71:ac:56:46:d5:0c:a6:d6:
43:5b:64:3e:f2:c2:71:9d:dc:75:21:d9:a1:0c:68:
b5:fa:ee:4e:97:65:54:62:a1:1e:b1:cb:9d:b9:8e:
2b:35:34:56:e3:d4:9f:7a:92:d6:0d:9b:7b:73:48:
47:f0:e4:c6:f3:3c:87:b2:2c:3b:90:c3:5b:b2:a6:
cf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:11:B1:A8:D1:4A:E0:61:80:96:AD:61:7C:8A:0F:A6:8D:D3:52:2E
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/7hGxqNFK4GGAlq1hfIoPpo3TUi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.46.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:dd:7a:c8:f4:cf:02:1e:4e:e3:e7:4b:fe:b4:73:50:a9:98:
dd:99:4b:b8:55:64:0d:7a:77:b5:79:43:01:c0:04:1a:7e:18:
e8:38:aa:ce:76:11:2b:ff:dc:fe:17:8d:29:47:8a:8f:8e:5c:
33:5a:53:82:95:ba:fb:e5:eb:84:ad:a8:0d:b6:37:85:33:94:
65:19:ca:b0:7c:09:dd:34:94:31:ec:dd:20:d0:be:9a:c9:96:
3b:75:18:ba:38:24:8b:5c:6f:60:67:b4:65:d0:40:8e:81:c9:
3d:64:d9:bc:8a:79:db:b5:b6:d4:8b:47:dc:1b:a0:01:6b:bb:
a8:c7:7c:a4:3c:70:ae:07:47:7c:c8:bd:df:f5:04:da:51:e5:
08:5d:1b:a1:ac:88:d1:95:26:b1:7f:c6:54:77:7e:2d:b4:ff:
70:33:5e:50:61:ec:eb:e6:46:37:66:23:7a:a7:9a:50:a7:cb:
43:90:12:95:ca:76:13:65:bd:d8:30:a9:5d:91:e8:de:8f:1b:
23:6f:89:14:44:e2:58:d9:0e:1a:0d:7a:ec:2f:b4:33:4b:19:
52:6e:d7:21:c7:0b:1c:f1:18:69:6a:0e:06:17:27:39:5f:53:
c3:4c:3f:52:64:1e:a7:0b:9a:28:a8:67:50:b5:08:df:45:2e:
fa:c7:b4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:00 2025 by rpki-client