Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/73e00f-e3e3-4d23-ad6b-76682e794cc3/1/29ShARts3PAsC07og1sTuu7G6js.roa
File: 29ShARts3PAsC07og1sTuu7G6js.roa (raw, json)
Hash identifier: O4ouay77kGzAgcUjDxHz1sXg9v82h43uLa6fwuvHMV4=
Subject key identifier: DB:D4:A1:01:1B:6C:DC:F0:2C:0B:4E:E8:83:5B:13:BA:EE:C6:EA:3B
Certificate issuer: /CN=cb95e1cbc67e782dbf9f8e744e437268bdcc39ce
Certificate serial: 01856FC2823285F39F1EEC390236CC1E6BE2
Authority key identifier: CB:95:E1:CB:C6:7E:78:2D:BF:9F:8E:74:4E:43:72:68:BD:CC:39:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5Xhy8Z-eC2_n450TkNyaL3MOc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/73e00f-e3e3-4d23-ad6b-76682e794cc3/1/29ShARts3PAsC07og1sTuu7G6js.roa
Signing time: Sun 01 Jan 2023 23:54:56 +0000
ROA not before: Sun 01 Jan 2023 23:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 194.50.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:82:32:85:f3:9f:1e:ec:39:02:36:cc:1e:6b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb95e1cbc67e782dbf9f8e744e437268bdcc39ce
Validity
Not Before: Jan 1 23:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbd4a1011b6cdcf02c0b4ee8835b13baeec6ea3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:dc:6c:d8:1e:d2:a2:c4:05:2b:41:ce:0a:4a:
82:7f:f7:91:e2:3c:9a:d4:94:14:74:4d:21:a7:6d:
4d:dd:01:12:e2:d5:b6:c2:79:e3:91:fc:f9:00:c2:
6c:7a:81:bf:00:af:5e:90:6a:8e:5e:73:c6:0a:7a:
b5:f4:20:6f:60:28:b2:9c:1c:0d:a8:e1:41:b9:fb:
33:c0:f7:de:cc:35:bd:e5:01:3b:55:26:88:2f:04:
8d:67:41:b4:f9:26:93:dd:64:45:c5:5c:0a:b8:b5:
bc:14:ff:34:6e:fc:c2:f5:a8:eb:e4:ff:e6:a4:28:
37:f1:95:96:25:20:b3:d1:d1:c6:10:2c:40:4a:14:
8d:a1:fe:3b:74:0a:36:6d:50:f7:f1:e5:13:1b:10:
f3:ee:30:31:ca:52:df:8d:27:18:14:3b:82:d2:4c:
b8:1c:d1:b0:9a:85:fb:8f:f8:0a:29:9d:c4:f1:45:
2c:eb:22:41:7f:83:1f:87:fb:37:03:51:1f:99:ce:
c2:18:18:0a:28:68:12:6a:74:39:06:f3:62:fc:bb:
ec:cc:f4:29:17:1d:e2:44:f9:67:41:11:2f:06:cb:
66:b9:c4:2d:0c:f4:58:c3:c0:aa:dd:77:5a:9a:72:
fd:ad:1b:70:e2:ab:68:a6:20:f9:6c:57:05:27:24:
bf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D4:A1:01:1B:6C:DC:F0:2C:0B:4E:E8:83:5B:13:BA:EE:C6:EA:3B
X509v3 Authority Key Identifier:
keyid:CB:95:E1:CB:C6:7E:78:2D:BF:9F:8E:74:4E:43:72:68:BD:CC:39:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5Xhy8Z-eC2_n450TkNyaL3MOc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/73e00f-e3e3-4d23-ad6b-76682e794cc3/1/29ShARts3PAsC07og1sTuu7G6js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/73e00f-e3e3-4d23-ad6b-76682e794cc3/1/y5Xhy8Z-eC2_n450TkNyaL3MOc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.21.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:b1:ac:53:bc:8b:b7:3c:f4:f7:f0:33:2f:f7:58:96:24:99:
5b:44:d5:a2:f3:95:5b:27:0c:78:7f:3b:4e:8c:4e:4b:cb:d8:
d5:14:61:15:0e:69:7c:50:1d:81:f1:61:d3:ae:2e:ea:2d:b0:
5a:39:df:ed:c9:e7:b6:60:d2:60:5f:68:a3:67:0e:d0:77:6e:
2e:2b:26:d2:d5:5c:9f:2e:3b:be:51:5e:59:4c:cc:82:d0:97:
87:38:31:eb:70:0e:94:f9:40:c7:64:45:42:b2:46:5d:85:0f:
0a:25:c3:ad:25:84:21:e8:a1:02:70:9b:79:87:ef:03:81:3a:
8f:a7:9e:5a:dd:a6:fa:3c:18:c4:a4:12:94:72:60:41:e1:cb:
ad:60:f9:94:6c:90:4f:c9:0a:9b:d6:ae:8f:a0:9c:29:8c:5f:
f1:1b:cf:38:6f:2f:d6:6f:4a:66:95:85:57:90:61:6f:1c:ad:
72:02:07:76:25:c4:0d:51:c0:27:f6:62:83:84:64:bd:ab:55:
a0:4b:6e:af:ad:85:fb:5c:39:38:c7:2b:5e:de:bc:e9:cd:ce:
eb:1e:15:e6:8c:7a:bb:8e:fd:7e:3a:a0:6d:0e:c4:94:83:52:
74:67:c0:37:64:69:6f:f8:54:f9:dd:6c:16:c7:21:5a:de:5e:
36:ea:d3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:43 2025 by rpki-client