Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/iNQjge2lhhQjiLAIszuuo9iUmho.roa
File: iNQjge2lhhQjiLAIszuuo9iUmho.roa (raw, json)
Hash identifier: GER2skbGi14JXGhpOOfE1PfrLHIN/uwfcO/a4Ljzcy0=
Subject key identifier: 88:D4:23:81:ED:A5:86:14:23:88:B0:08:B3:3B:AE:A3:D8:94:9A:1A
Certificate issuer: /CN=dce6e13e413baf381b625131e924e947843436f5
Certificate serial: 01856C4A57C918558D77DFDD7026369D48CA
Authority key identifier: DC:E6:E1:3E:41:3B:AF:38:1B:62:51:31:E9:24:E9:47:84:34:36:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ObhPkE7rzgbYlEx6STpR4Q0NvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/iNQjge2lhhQjiLAIszuuo9iUmho.roa
Signing time: Sun 01 Jan 2023 07:44:49 +0000
ROA not before: Sun 01 Jan 2023 07:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 194.1.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:57:c9:18:55:8d:77:df:dd:70:26:36:9d:48:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce6e13e413baf381b625131e924e947843436f5
Validity
Not Before: Jan 1 07:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88d42381eda586142388b008b33baea3d8949a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:73:c0:1c:1f:13:16:84:ce:89:71:10:18:50:
59:30:76:cd:fa:8c:27:df:37:25:f9:cb:7d:a6:de:
a0:57:3f:a7:49:b4:dd:33:dd:c5:d6:aa:c0:be:a7:
1e:e1:69:17:82:2a:38:62:35:ae:12:d9:93:a3:34:
74:a5:3e:d2:c0:e6:7c:cf:c9:89:e9:8b:c7:10:02:
fe:78:ec:0c:c0:03:49:e0:6e:a4:06:e7:54:88:6c:
8c:37:56:66:8a:1f:c9:a3:bf:3a:67:a8:43:40:0a:
1f:f8:e0:25:90:43:fc:42:74:95:db:ed:e9:66:65:
cd:98:cd:5d:93:5f:b9:cb:37:59:61:c6:17:98:33:
af:57:3f:f3:ad:42:5d:5b:1f:e3:0f:3b:ee:aa:45:
7b:72:65:62:e1:82:48:3c:4c:1e:f5:38:2b:7b:3c:
24:d7:df:6f:c7:22:b2:8a:88:38:09:24:59:95:fc:
a8:ab:b9:49:aa:32:e6:31:9d:23:fd:41:09:2a:e4:
99:41:07:79:c6:8d:2b:d7:6d:22:d6:b9:87:b2:f3:
14:61:78:44:9e:94:9f:29:ac:3f:71:01:e0:a1:b4:
25:f5:5e:d9:28:73:c7:fa:fb:d4:69:be:cb:be:58:
1c:e4:2e:cb:e6:0c:33:1e:a8:1b:1c:e7:ef:26:50:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D4:23:81:ED:A5:86:14:23:88:B0:08:B3:3B:AE:A3:D8:94:9A:1A
X509v3 Authority Key Identifier:
keyid:DC:E6:E1:3E:41:3B:AF:38:1B:62:51:31:E9:24:E9:47:84:34:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ObhPkE7rzgbYlEx6STpR4Q0NvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/iNQjge2lhhQjiLAIszuuo9iUmho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/3ObhPkE7rzgbYlEx6STpR4Q0NvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.245.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b9:37:22:2f:f3:43:7f:e6:08:d5:64:63:24:ff:25:92:1b:
25:3c:5c:13:13:f8:68:dc:4f:7b:0b:37:24:c1:2c:40:7b:b8:
82:ce:1f:21:e5:aa:db:4d:1c:30:e8:38:73:8b:57:64:08:b1:
04:c3:ba:24:e1:01:22:40:df:b7:ff:3d:93:20:c5:52:5b:67:
d7:a0:f1:53:70:cd:a6:b0:62:8d:1d:ab:cd:97:cf:79:e7:08:
dd:f4:26:21:ed:6c:f9:fc:cd:00:12:8d:12:f4:46:8c:58:f0:
e4:89:95:ad:b2:21:75:99:88:d7:2e:d4:a9:74:db:f6:06:db:
1f:80:58:3e:34:e7:47:dd:93:4d:dd:67:ef:94:67:84:26:99:
2f:73:23:a4:50:8b:c5:03:dd:c7:0e:0b:7f:b8:f5:1f:38:9e:
03:aa:9d:99:fc:30:62:b7:ec:77:bb:a0:a9:90:6d:a4:d8:d3:
fb:23:0b:b6:86:44:16:f4:ea:c8:a6:7b:a3:f3:75:16:e4:b0:
c5:68:63:5f:25:41:41:d7:9d:ca:90:f4:b4:73:5c:c4:ea:2f:
3a:28:32:51:af:e2:00:9a:d2:30:a2:8a:97:89:5b:86:e2:69:
77:7d:6f:7e:a0:37:8b:3b:1f:c7:24:ac:ad:a9:2b:e1:08:f2:
7d:91:c6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:48 2025 by rpki-client