Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/dcc48f-cfcc-4a58-a6d0-29b68e048a9e/1/LF24VB1X9eFXmv2ZxyM-RKQjxOk.roa
File: LF24VB1X9eFXmv2ZxyM-RKQjxOk.roa (raw, json)
Hash identifier: hIBLUO61cUtJzxCsCH21+ZwJcDVtpkZJxnKBR4LU4nk=
Subject key identifier: 2C:5D:B8:54:1D:57:F5:E1:57:9A:FD:99:C7:23:3E:44:A4:23:C4:E9
Certificate issuer: /CN=3780e7868fbb2617175062a5e7b9e1c049cbdf74
Certificate serial: 018570D5435B9423CA5CD6B304EC519F7F83
Authority key identifier: 37:80:E7:86:8F:BB:26:17:17:50:62:A5:E7:B9:E1:C0:49:CB:DF:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4Dnho-7JhcXUGKl57nhwEnL33Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/dcc48f-cfcc-4a58-a6d0-29b68e048a9e/1/LF24VB1X9eFXmv2ZxyM-RKQjxOk.roa
Signing time: Mon 02 Jan 2023 04:55:02 +0000
ROA not before: Mon 02 Jan 2023 04:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207744
IP address blocks: 188.190.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:43:5b:94:23:ca:5c:d6:b3:04:ec:51:9f:7f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3780e7868fbb2617175062a5e7b9e1c049cbdf74
Validity
Not Before: Jan 2 04:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c5db8541d57f5e1579afd99c7233e44a423c4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:88:d7:42:25:fc:b3:2b:a3:26:f8:86:3b:1b:
23:b5:b3:a3:d2:6a:0e:0f:f2:60:ca:1a:a4:2c:e7:
59:b7:02:28:8a:24:9d:75:0f:82:b0:9c:66:a5:51:
c3:6b:1e:81:3b:df:10:9f:df:84:52:49:31:76:a1:
ce:ff:25:c4:ff:e3:f4:41:2a:48:0d:b0:13:75:fb:
4b:94:31:94:04:95:41:c3:8e:4a:9c:02:4a:d9:bf:
0c:0d:dc:eb:ac:92:f1:38:d3:31:2f:60:fb:c0:9b:
50:d4:ca:25:ff:b9:03:75:2e:88:ef:28:a2:72:52:
65:b5:3f:5e:85:8c:82:09:90:87:70:4c:03:53:db:
5e:08:31:5c:aa:b0:a5:1d:c2:3b:cf:62:1d:cf:f1:
84:ab:1a:6e:96:2d:cd:68:af:3a:1b:84:5a:10:e8:
d5:7e:a2:62:8e:76:8b:5d:88:58:bf:14:e0:ec:6e:
d8:66:9e:8a:47:6b:1d:13:7a:1a:b7:01:48:e9:8c:
92:f4:65:ba:46:c7:71:25:ed:18:c2:e0:d9:45:b9:
26:e5:e4:4e:3b:93:cf:09:c7:55:e9:63:0c:d8:f6:
7f:32:41:b5:fe:3b:a7:c9:ab:e3:47:f9:0c:0b:94:
48:bf:ba:43:af:13:70:46:a9:6c:00:86:8e:48:4a:
ff:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5D:B8:54:1D:57:F5:E1:57:9A:FD:99:C7:23:3E:44:A4:23:C4:E9
X509v3 Authority Key Identifier:
keyid:37:80:E7:86:8F:BB:26:17:17:50:62:A5:E7:B9:E1:C0:49:CB:DF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4Dnho-7JhcXUGKl57nhwEnL33Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dcc48f-cfcc-4a58-a6d0-29b68e048a9e/1/LF24VB1X9eFXmv2ZxyM-RKQjxOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dcc48f-cfcc-4a58-a6d0-29b68e048a9e/1/N4Dnho-7JhcXUGKl57nhwEnL33Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.192.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:b4:84:62:19:18:11:94:6f:79:cd:55:64:4d:78:1d:fc:ff:
9d:84:b9:19:bc:2e:7e:ae:ee:44:c8:11:d5:f7:00:94:fc:46:
32:3e:44:ae:8a:39:93:94:df:4d:4e:6e:30:44:27:16:3b:68:
c1:24:ba:05:87:82:9c:a3:18:db:21:1c:8b:74:ba:30:87:5e:
f5:d7:6a:ed:b3:01:f5:e9:2f:b6:af:8d:46:3d:cd:2a:c9:68:
06:16:7b:d2:52:63:61:b2:63:a3:82:39:c2:f2:1d:9d:57:24:
dc:7e:9a:95:7f:56:3b:d2:f3:af:87:f0:1c:a9:bd:e9:26:92:
5e:80:2e:ca:bf:fb:66:46:b4:25:2a:86:97:4c:be:1c:72:92:
b8:55:15:64:b8:db:31:c0:12:6c:00:c9:bf:f2:4f:f7:ce:04:
20:5c:e2:61:2c:01:30:2d:34:5d:1e:de:4a:35:e2:0c:77:0b:
22:05:a9:ee:5b:73:ad:c7:df:24:55:23:45:40:0a:44:4b:da:
d9:f1:e5:5a:dd:5f:a1:33:f5:ae:b7:6a:b0:2f:73:1a:e4:34:
d6:52:07:76:6f:cc:47:e5:95:8b:69:fb:e7:2b:cd:25:00:3e:
bc:49:0d:bc:2b:0a:0a:4e:e8:34:b0:22:ee:78:28:09:e3:12:
c2:05:2f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:15 2025 by rpki-client