Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/vXaOmL4E7nug8kEJ8DGtzJ7csuo.roa
File: vXaOmL4E7nug8kEJ8DGtzJ7csuo.roa (raw, json)
Hash identifier: gY3rVcckAKPczw/GotAzOZ2gCefwq97innkzHmkaYcU=
Subject key identifier: BD:76:8E:98:BE:04:EE:7B:A0:F2:41:09:F0:31:AD:CC:9E:DC:B2:EA
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018571A78F290AF298E5162F59F2D0381D8F
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/vXaOmL4E7nug8kEJ8DGtzJ7csuo.roa
Signing time: Mon 02 Jan 2023 08:44:44 +0000
ROA not before: Mon 02 Jan 2023 08:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 193.43.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:8f:29:0a:f2:98:e5:16:2f:59:f2:d0:38:1d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 2 08:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd768e98be04ee7ba0f24109f031adcc9edcb2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:29:b1:6d:75:b1:6d:60:87:e5:d2:61:4c:b5:
03:e8:1e:2d:7c:d0:39:b0:8d:40:4b:19:23:cc:dc:
82:83:e3:17:5b:6d:67:39:e7:e3:29:03:30:72:66:
f7:95:e8:e2:16:fb:94:66:db:db:a8:80:05:ab:3f:
a3:f0:94:80:f7:05:4d:ff:13:28:79:9a:3f:ff:a2:
c1:96:f5:48:bb:03:db:16:de:0b:6e:9f:74:43:83:
05:53:78:e7:d4:aa:94:f0:35:be:17:1a:a8:fa:d6:
26:96:d3:e1:24:39:8e:db:e1:51:21:c2:3f:1d:72:
f4:de:ef:b0:60:ee:97:1e:91:0d:cc:fb:f7:7e:b3:
d9:96:df:a5:a7:cd:8a:44:ee:ad:6d:43:6e:e3:9d:
35:24:6a:14:f2:2c:c9:94:af:60:79:11:0e:3f:8b:
f2:4e:c1:f9:1b:11:a4:94:2a:7e:07:7f:1f:2e:31:
bb:25:0e:d3:d5:81:5d:8e:e7:38:65:8b:a6:d0:10:
e1:2b:f2:57:5a:0d:a8:c6:d1:0c:32:90:e6:87:40:
fc:51:92:7e:67:ba:cd:e0:ee:ed:b4:78:d3:ef:44:
97:c4:ea:c6:43:b2:98:8a:f2:3f:ed:78:21:2a:cf:
d5:cf:07:4c:f7:97:70:37:22:a1:bf:5b:1d:8f:ad:
c7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:76:8E:98:BE:04:EE:7B:A0:F2:41:09:F0:31:AD:CC:9E:DC:B2:EA
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/vXaOmL4E7nug8kEJ8DGtzJ7csuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.143.0/24
Signature Algorithm: sha256WithRSAEncryption
56:48:73:4a:c5:5e:be:1a:79:ea:04:33:0e:c6:c4:74:11:32:
1a:d7:df:a4:8b:89:0d:56:73:fb:da:61:41:ff:2c:43:8a:32:
b4:4c:4a:e9:3c:25:4e:21:a5:8f:8e:18:5c:1c:d2:e3:5e:f2:
7c:bc:8c:40:b2:af:3a:d7:3f:26:c2:8e:c9:52:c3:d5:aa:3b:
6f:e4:1d:f9:7e:c3:3b:88:f2:39:1f:fe:10:fe:bf:90:09:81:
ed:6b:86:e0:b6:97:c3:68:4e:06:f1:02:ad:23:94:29:24:3e:
c0:e4:2f:46:73:dd:5e:fc:4f:ce:87:9c:cf:f1:e3:af:45:9c:
56:72:ee:70:d4:7e:a8:6e:c4:8f:3a:94:d3:fb:95:0e:f3:c8:
0b:b5:17:75:ba:a7:a6:dd:ec:8f:e3:17:b5:c2:27:af:8f:9a:
8d:c9:d4:e2:87:1c:5c:cf:29:d5:43:93:7f:58:f3:d8:0c:4b:
fe:a7:37:65:14:15:93:a7:64:6c:5e:e8:77:4d:be:4f:6e:80:
8a:b6:95:56:a3:7a:7f:47:1d:35:3e:ca:3b:9a:e0:5c:c3:f3:
55:73:e8:36:c8:e3:da:8e:25:cb:1d:83:86:25:c1:21:ac:ac:
5e:92:4c:49:b9:97:42:db:0f:3f:17:40:ed:a2:1c:8a:f5:38:
58:51:79:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:23 2025 by rpki-client