Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/9fEVj71UF3cUJfDYZJ0W4B03yY4.roa
File: 9fEVj71UF3cUJfDYZJ0W4B03yY4.roa (raw, json)
Hash identifier: V8OPkIEzIq5yBa+KdS5hmrZa0WFmZ/T9Qws+ycgToCE=
Subject key identifier: F5:F1:15:8F:BD:54:17:77:14:25:F0:D8:64:9D:16:E0:1D:37:C9:8E
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 086475D5
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/9fEVj71UF3cUJfDYZJ0W4B03yY4.roa
Signing time: Wed 04 May 2022 09:52:22 +0000
ROA not before: Wed 04 May 2022 09:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33696
IP address blocks: 193.43.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140801493 (0x86475d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: May 4 09:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5f1158fbd5417771425f0d8649d16e01d37c98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:c4:a3:4d:9a:64:8c:03:84:05:b6:dc:ec:
ea:96:74:b5:40:c7:4c:ce:d0:0b:c5:dd:06:4d:75:
74:fb:04:44:07:37:5c:b4:0d:7e:2d:ed:27:de:e9:
f8:39:21:dc:cf:52:67:cf:9d:3f:f2:19:df:ae:f3:
a5:05:ee:38:67:41:60:b1:fe:c4:2c:66:6c:9a:99:
08:fe:e2:2a:cd:ce:0e:57:8d:ee:fd:19:f2:48:e9:
28:44:23:81:e1:5b:b4:2a:c4:c6:1a:ce:6d:cb:4c:
14:36:3e:2b:11:9b:ff:c4:8c:b7:0a:3e:11:4f:56:
30:f7:66:c5:1c:a7:a6:90:e1:f4:5b:d5:c4:ba:db:
40:63:68:06:9d:3d:42:cb:a1:b5:9f:bc:4c:45:b5:
3f:bd:2e:23:8b:c0:78:e2:2d:92:79:d1:3c:79:73:
0c:72:ed:8c:6c:73:c7:08:37:b8:67:a7:38:51:90:
e8:5b:95:f0:c7:8e:d4:41:45:58:30:bd:7c:3a:99:
6d:ce:d0:fe:56:09:50:62:c5:ef:c4:64:31:38:01:
35:29:88:ac:fc:fb:b5:45:56:0a:92:68:13:66:95:
44:7d:7a:74:01:ba:38:e3:70:cc:0d:1d:26:54:ce:
22:37:d9:43:db:a6:12:b8:d5:91:b9:00:07:3d:81:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F1:15:8F:BD:54:17:77:14:25:F0:D8:64:9D:16:E0:1D:37:C9:8E
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/9fEVj71UF3cUJfDYZJ0W4B03yY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.142.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:b9:9c:54:08:b0:03:59:fd:84:f1:17:b8:73:31:7d:3b:00:
f5:02:49:07:1a:16:01:46:98:d1:52:27:56:7b:96:50:9d:83:
dd:e8:5a:19:e0:5f:10:10:f9:9a:ad:4e:bd:d4:12:01:db:31:
8b:e5:49:5b:e6:5d:bc:e4:6e:41:42:a1:bf:b6:2c:cf:9e:e0:
d0:04:7a:9c:a4:c2:92:70:35:52:5b:4d:0c:5c:36:a6:41:25:
37:fa:a7:ff:96:bc:91:d9:94:f5:dd:9b:f3:e1:85:85:7e:15:
8f:73:88:9d:ad:69:de:4d:80:bb:4b:e4:ed:b6:10:0c:20:d0:
7e:0a:24:90:49:ed:a5:8f:35:2a:26:17:8c:ef:d0:2d:21:8c:
ae:46:16:2d:d3:a6:af:99:bf:8f:1c:ae:c9:4c:62:22:b0:52:
4d:a2:55:33:58:91:65:dd:ba:7f:c8:2a:27:08:9b:a5:24:92:
e7:20:91:a6:4d:48:39:b3:eb:ae:21:19:41:41:2b:08:26:3c:
c6:dc:fa:4c:a2:95:a3:54:d1:42:90:29:70:ba:dc:cd:18:66:
be:19:54:ca:3d:21:76:87:fc:86:6b:bb:19:e3:4d:70:6a:82:
b8:47:6d:f2:cc:4d:9b:4b:53:0b:b1:a8:ee:7c:99:1c:63:54:
1a:fc:35:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:11 2025 by rpki-client