Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b81c0b-af1c-4ee8-b4c0-dca0fd509fb6/1/svFSXn0whx0a0BPnJX8brjgy5Ws.roa
File: svFSXn0whx0a0BPnJX8brjgy5Ws.roa (raw, json)
Hash identifier: Ke7bkV+AsrHvB04MEZJV0g15zuPLk/O5zENWLxMvyWk=
Subject key identifier: B2:F1:52:5E:7D:30:87:1D:1A:D0:13:E7:25:7F:1B:AE:38:32:E5:6B
Certificate issuer: /CN=6376c252db09be817b872a717a959edcac44266b
Certificate serial: 0ACFCF41
Authority key identifier: 63:76:C2:52:DB:09:BE:81:7B:87:2A:71:7A:95:9E:DC:AC:44:26:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3bCUtsJvoF7hypxepWe3KxEJms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b81c0b-af1c-4ee8-b4c0-dca0fd509fb6/1/svFSXn0whx0a0BPnJX8brjgy5Ws.roa
Signing time: Sat 01 Jan 2022 02:59:29 +0000
ROA not before: Sat 01 Jan 2022 02:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200336
IP address blocks: 194.56.195.0/24 maxlen: 24
194.56.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181391169 (0xacfcf41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6376c252db09be817b872a717a959edcac44266b
Validity
Not Before: Jan 1 02:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2f1525e7d30871d1ad013e7257f1bae3832e56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d7:83:a8:9d:7a:93:96:6b:e9:b1:66:00:08:
1e:29:6d:db:30:ec:24:42:38:e7:79:de:e8:23:7b:
25:cb:cb:cc:13:0e:f9:f8:cc:e9:f9:b5:09:73:f0:
0e:7b:2f:ce:da:5e:cc:89:37:8a:86:9a:db:b4:34:
cf:c9:da:62:20:57:82:b3:52:30:aa:ab:24:9d:a8:
46:0b:d5:fe:9b:22:04:10:d2:2b:67:db:f2:71:46:
98:93:15:d6:0f:23:93:6e:d6:c3:65:1c:d3:9c:0a:
1d:58:4b:95:20:46:46:3a:37:d8:79:b3:44:4f:4a:
25:e5:e2:90:a2:02:f1:ec:4d:fd:52:4a:15:d9:7f:
19:2f:64:b4:90:be:46:e9:36:55:73:48:2b:a0:40:
24:cd:7a:06:c6:5c:e9:7e:e9:cc:15:32:bc:cd:f9:
c3:8a:f1:19:a3:52:dc:d2:14:2a:e9:b5:36:de:c2:
cf:97:cf:54:54:0f:10:3b:e7:bb:40:60:f5:6e:7e:
76:63:5d:dc:3a:bf:72:ac:ec:72:5c:14:0c:37:b6:
01:4e:e0:36:be:3f:1a:90:4a:c3:d1:d2:4d:ec:5a:
4a:0d:6d:34:42:aa:a4:0b:ff:b6:c7:d2:06:7b:24:
54:ec:20:6e:8b:8f:53:eb:c2:07:92:58:90:d4:f8:
64:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F1:52:5E:7D:30:87:1D:1A:D0:13:E7:25:7F:1B:AE:38:32:E5:6B
X509v3 Authority Key Identifier:
keyid:63:76:C2:52:DB:09:BE:81:7B:87:2A:71:7A:95:9E:DC:AC:44:26:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3bCUtsJvoF7hypxepWe3KxEJms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b81c0b-af1c-4ee8-b4c0-dca0fd509fb6/1/svFSXn0whx0a0BPnJX8brjgy5Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b81c0b-af1c-4ee8-b4c0-dca0fd509fb6/1/Y3bCUtsJvoF7hypxepWe3KxEJms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.194.0/23
Signature Algorithm: sha256WithRSAEncryption
19:39:22:4f:f2:1a:0f:5e:b7:5a:01:43:79:68:e8:3a:e7:5e:
89:28:fd:23:91:70:62:2d:a2:a7:08:d7:4b:6b:23:8e:4f:d0:
92:45:b0:e9:fd:b2:22:91:ea:61:d0:02:89:b1:9c:6b:f2:7c:
bc:72:c8:12:cc:ba:1b:56:a4:db:5e:3e:c7:aa:02:3c:3d:9d:
89:c6:f2:5c:57:69:1c:a1:59:c5:77:ca:a9:00:50:b5:0b:a1:
83:6f:61:78:c6:72:62:d2:70:23:5f:3c:cc:88:7b:c1:83:c9:
be:8b:db:67:d8:15:98:e3:de:d6:79:fb:23:d6:b6:28:e4:0d:
88:ad:4e:f7:1f:1e:84:e6:e4:92:0c:01:84:8d:5a:16:f5:55:
9f:51:3f:b5:82:d1:d7:da:7c:9d:8b:8a:40:f4:55:f9:92:64:
d2:4f:a0:fd:53:dd:22:b4:fb:55:b9:62:07:e5:94:61:01:bf:
72:1e:05:92:3f:9a:5b:93:e7:4b:37:8e:0d:cc:16:a0:b2:83:
98:db:ff:8d:e2:9d:d6:ab:e3:28:d2:08:20:50:5b:d7:9a:3d:
b5:12:75:a8:ec:54:f4:c6:91:c0:a3:54:06:a5:8d:1c:c9:72:
84:7b:e5:53:51:2d:68:d6:e5:ad:1b:45:92:dd:99:25:ac:d3:
a5:bd:26:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:07 2025 by rpki-client