Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/8cGetXL6EsQKRiza0t9SLFWkHVk.roa
File: 8cGetXL6EsQKRiza0t9SLFWkHVk.roa (raw, json)
Hash identifier: ywOhblf0FtGZfGLX1RIS1E+AayhFiXg2oPbW2Ou+L9s=
Subject key identifier: F1:C1:9E:B5:72:FA:12:C4:0A:46:2C:DA:D2:DF:52:2C:55:A4:1D:59
Certificate issuer: /CN=d92cad11f12d86d18951cbd751ee5124f718951f
Certificate serial: 014C7428
Authority key identifier: D9:2C:AD:11:F1:2D:86:D1:89:51:CB:D7:51:EE:51:24:F7:18:95:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SytEfEthtGJUcvXUe5RJPcYlR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/8cGetXL6EsQKRiza0t9SLFWkHVk.roa
Signing time: Sat 22 Jan 2022 17:07:52 +0000
ROA not before: Sat 22 Jan 2022 17:07:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50629
IP address blocks: 193.3.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21787688 (0x14c7428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d92cad11f12d86d18951cbd751ee5124f718951f
Validity
Not Before: Jan 22 17:07:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1c19eb572fa12c40a462cdad2df522c55a41d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:9a:df:d1:8f:74:71:63:fb:54:56:ca:e5:
dd:2d:98:d3:ee:4c:e1:f8:49:d4:81:ee:ff:cb:66:
50:cc:ec:bd:06:f8:65:d6:1d:48:35:67:35:92:7f:
24:de:08:46:11:07:54:68:e7:03:4c:06:a2:65:ab:
c4:3b:a8:06:82:a7:d9:3d:c4:9b:27:ee:60:2c:37:
a4:f1:2d:34:66:3c:6d:ec:92:7e:a9:2e:27:5d:83:
64:14:bb:60:67:27:53:b3:07:70:09:4f:70:e3:4b:
58:25:c2:41:0a:1b:45:a5:23:b8:8f:c4:2a:42:71:
a2:8a:21:4b:c7:9b:86:1c:1e:87:b7:f5:1c:2c:8d:
e2:51:76:e8:67:52:98:42:ea:ba:6b:f9:65:32:19:
2c:d1:15:8e:96:ad:1d:cb:ee:aa:7b:8f:23:ba:e7:
5a:6b:0b:40:69:41:7f:1d:8c:a9:9f:9d:e0:b7:d8:
db:94:c7:4a:63:55:32:63:7a:39:a5:c4:d3:25:df:
06:bd:02:3a:1a:16:9a:8e:e1:f9:0a:4f:97:63:88:
0b:8b:d3:6d:e4:c1:5d:8e:ae:75:f5:ae:78:7a:5f:
77:ca:34:e1:8a:f8:b1:a1:db:71:a5:4a:d9:35:4a:
5a:d3:c0:5d:e6:78:58:3b:d0:91:fa:18:f2:ac:bf:
e4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C1:9E:B5:72:FA:12:C4:0A:46:2C:DA:D2:DF:52:2C:55:A4:1D:59
X509v3 Authority Key Identifier:
keyid:D9:2C:AD:11:F1:2D:86:D1:89:51:CB:D7:51:EE:51:24:F7:18:95:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SytEfEthtGJUcvXUe5RJPcYlR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/8cGetXL6EsQKRiza0t9SLFWkHVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/2SytEfEthtGJUcvXUe5RJPcYlR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.128.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a2:3e:69:de:6a:67:01:77:ba:98:1e:f6:93:39:d0:a3:dc:
d2:0e:7f:d7:d7:f6:23:1b:8e:97:35:c1:4a:e2:b1:bf:7d:83:
f1:b2:fe:92:17:1b:0c:c8:8d:96:fb:ee:05:9a:6d:21:96:13:
e2:d6:33:40:29:c8:5b:ab:0e:4d:79:40:c1:a4:16:78:6d:7c:
32:e5:15:af:a3:f6:fd:3e:56:f9:48:1a:db:00:35:82:9e:62:
d4:cc:a2:49:2c:3a:08:01:8c:b9:30:71:b9:d6:51:b9:f0:fd:
d1:e4:c2:f5:53:f9:40:9d:1e:53:a5:b3:2a:18:2c:00:ee:1c:
31:d1:4a:a6:ee:cb:52:0e:78:eb:76:65:0e:5c:82:a9:40:96:
5f:e4:a7:14:78:b6:e5:1f:45:e2:cb:21:47:cb:78:6f:30:d9:
95:9f:90:d8:c5:4c:6f:42:4e:65:77:f9:b9:f0:8f:5e:6f:94:
4a:b6:10:0f:97:27:47:09:74:19:46:f7:d4:3e:0f:05:d7:b7:
29:e4:9e:df:9e:d1:14:8e:de:ff:44:71:07:f7:b2:c1:06:40:
ff:61:b1:4d:50:76:32:06:a6:ea:0d:db:d5:17:d3:c6:63:22:
4f:5e:e0:14:9f:61:13:3d:f3:d8:44:1f:c3:01:a8:bb:0e:29:
6e:9d:65:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:09 2025 by rpki-client