Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/0e0ZzIM87KL0LQKTxQ8uixLF6BM.roa
File: 0e0ZzIM87KL0LQKTxQ8uixLF6BM.roa (raw, json)
Hash identifier: YqiHqnCTkK1P5LYWEMOS5GeBHUmzseHL2Ydll9wy7o0=
Subject key identifier: D1:ED:19:CC:83:3C:EC:A2:F4:2D:02:93:C5:0F:2E:8B:12:C5:E8:13
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 0185711E6485BEFC39A45D62CCBE5A82AE53
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/0e0ZzIM87KL0LQKTxQ8uixLF6BM.roa
Signing time: Mon 02 Jan 2023 06:14:55 +0000
ROA not before: Mon 02 Jan 2023 06:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 193.142.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:64:85:be:fc:39:a4:5d:62:cc:be:5a:82:ae:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: Jan 2 06:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1ed19cc833ceca2f42d0293c50f2e8b12c5e813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:06:c9:f5:ce:50:c8:3c:7b:28:b8:a4:1d:cc:
ee:3a:91:eb:0e:2d:96:1c:69:02:60:fc:b2:02:80:
dc:63:72:ec:b0:93:4c:b0:e4:cb:ee:10:66:89:8a:
0f:88:ed:c3:cc:da:09:c7:da:31:2d:56:93:a0:57:
2f:b1:30:93:aa:99:d2:34:38:ab:60:00:f0:29:4a:
9f:6c:1d:2e:86:da:0b:ca:8e:21:52:bf:52:8a:4a:
a5:1c:93:94:eb:29:eb:ba:93:70:62:13:a4:54:79:
70:ce:cf:8a:95:82:ca:83:4b:e9:d0:6f:c4:a8:cd:
d8:5a:10:43:f9:08:5b:ec:c0:19:4e:73:35:01:81:
f6:51:57:c8:91:72:14:d7:ef:c2:17:70:90:2b:d9:
7d:4d:2c:8e:1e:bc:a0:8a:3f:c9:29:c2:ea:4a:b8:
ee:84:01:06:e7:66:44:f6:17:4f:cb:89:40:a8:25:
a1:98:67:b6:59:6a:6c:ff:48:b4:05:2c:dc:32:d1:
3a:75:0a:99:ab:e8:f9:6c:ab:8f:8b:11:37:1e:44:
38:e9:d6:17:45:82:28:b0:21:08:8a:ef:7e:2e:b0:
ba:4c:9d:c4:ae:a5:11:81:99:9d:34:f7:6e:90:fe:
5f:e6:20:b2:13:20:87:ed:8a:76:89:3e:62:15:2b:
35:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:ED:19:CC:83:3C:EC:A2:F4:2D:02:93:C5:0F:2E:8B:12:C5:E8:13
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/0e0ZzIM87KL0LQKTxQ8uixLF6BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.26.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:cf:db:40:f2:ae:f2:39:55:b6:60:a4:4b:2a:ff:f0:59:7e:
8d:3c:dc:56:e3:82:62:f9:fe:eb:0d:d0:df:0a:a3:f4:cb:e6:
a6:f6:bb:3d:06:d5:8d:db:8e:95:4d:39:65:d2:11:eb:30:3d:
4a:31:7f:40:9c:e9:bc:af:ef:43:f5:d3:88:2d:59:11:d7:ac:
78:8f:a5:c2:81:5f:86:a8:7f:d4:4d:d8:01:5a:29:35:77:9a:
48:bb:28:60:41:fc:15:9e:28:0d:79:24:fc:e7:65:4b:17:81:
6e:3a:67:d8:bf:f7:7c:28:c4:01:26:76:7d:e0:52:27:c1:79:
e4:a5:b2:10:59:dd:41:27:c3:90:b6:70:51:66:0d:f1:d4:07:
af:de:32:71:71:63:87:67:1b:77:5a:96:32:f5:06:49:7c:1e:
81:f7:0f:c8:e0:3e:2e:78:df:1f:cc:2f:bd:68:4e:16:55:a1:
d4:ed:89:3d:51:0d:86:e0:b3:c9:b5:35:01:a8:88:e4:41:f8:
d7:e4:c0:29:d0:e9:66:b2:00:fb:6c:54:83:12:67:52:7b:ac:
ad:84:a4:c8:d0:1b:66:c7:70:00:d7:82:f5:d3:cf:11:80:a2:
1a:4c:d9:d8:2f:92:43:36:56:ab:8b:7d:0f:a9:e2:92:68:35:
5e:d0:9c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:58 2025 by rpki-client