Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/IDw4IfAwxioB87zdWZ5Ejcu4-l0.roa
File: IDw4IfAwxioB87zdWZ5Ejcu4-l0.roa (raw, json)
Hash identifier: Te2txRDnJ/Vh61ih2OdxqCC/88VXt4ayi0siKxEuf0w=
Subject key identifier: 20:3C:38:21:F0:30:C6:2A:01:F3:BC:DD:59:9E:44:8D:CB:B8:FA:5D
Certificate issuer: /CN=b6b249a2c562c5edbdb75058e26bd770123e95ae
Certificate serial: 01856DCAE61E39F744B917E7092BD2580E97
Authority key identifier: B6:B2:49:A2:C5:62:C5:ED:BD:B7:50:58:E2:6B:D7:70:12:3E:95:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trJJosVixe29t1BY4mvXcBI-la4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/IDw4IfAwxioB87zdWZ5Ejcu4-l0.roa
Signing time: Sun 01 Jan 2023 14:44:51 +0000
ROA not before: Sun 01 Jan 2023 14:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.33.182.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:e6:1e:39:f7:44:b9:17:e7:09:2b:d2:58:0e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b249a2c562c5edbdb75058e26bd770123e95ae
Validity
Not Before: Jan 1 14:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=203c3821f030c62a01f3bcdd599e448dcbb8fa5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b3:5a:a8:c9:59:a5:03:f1:77:1f:fd:35:87:
14:cf:4a:0d:05:e4:cd:b1:01:54:9a:6b:81:03:75:
2a:52:1e:e9:b6:41:02:6e:f1:2b:5c:dd:3c:a3:ef:
f0:70:2a:d0:3e:d1:5e:0f:f1:f1:ec:43:10:f1:5a:
8e:ac:79:cc:c6:b0:17:2e:33:24:1d:42:07:c7:9e:
b9:a3:b3:ae:7e:77:4d:05:4d:89:98:3d:70:32:db:
e8:cc:cc:0f:3c:37:30:45:10:c8:8b:4a:c5:9f:63:
fd:c7:65:5f:c9:ac:70:ea:ce:0f:65:78:47:0e:e6:
48:51:ab:ad:46:f8:6a:73:8e:32:83:6b:10:92:fa:
f2:d1:c4:12:26:89:12:a3:8f:24:4e:4c:c3:98:64:
dc:7c:c5:ae:50:fc:40:80:c0:2c:d2:e3:8e:73:bb:
ad:37:54:4a:f0:a7:ad:50:2b:c4:3a:d1:b8:ba:bf:
ce:f0:bd:71:57:c9:5f:cc:7d:14:87:87:c8:7d:a4:
a7:ae:7f:56:91:a3:b1:25:b1:39:9b:0d:43:7c:d9:
51:d6:6b:91:9f:bc:34:a9:ad:e9:1f:84:8b:b2:a7:
e0:ad:76:3a:5e:b8:18:3e:ea:9e:90:59:b3:df:51:
d5:e6:cb:06:ba:76:2f:b9:43:45:a3:6b:71:1f:66:
3b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3C:38:21:F0:30:C6:2A:01:F3:BC:DD:59:9E:44:8D:CB:B8:FA:5D
X509v3 Authority Key Identifier:
keyid:B6:B2:49:A2:C5:62:C5:ED:BD:B7:50:58:E2:6B:D7:70:12:3E:95:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trJJosVixe29t1BY4mvXcBI-la4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/IDw4IfAwxioB87zdWZ5Ejcu4-l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/trJJosVixe29t1BY4mvXcBI-la4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.182.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:65:01:55:00:a7:49:1b:3d:1c:ed:7e:0a:1d:84:6a:37:3e:
3d:af:86:ab:81:e3:de:eb:73:7d:b7:e0:e5:93:09:0a:53:64:
d2:90:bd:47:b0:ef:05:d8:46:49:a9:ba:00:7f:ac:2a:7a:8b:
8e:5e:3f:4e:5b:e1:3c:32:8d:76:81:a6:cb:2d:06:48:f0:b3:
0a:04:00:21:92:96:da:ae:72:b7:ba:e7:64:43:0e:c6:9b:31:
56:0d:18:b1:be:8d:0f:c8:8a:58:84:0a:26:4e:38:16:6d:5d:
69:4c:ef:f3:1a:ad:12:22:1d:b2:25:72:63:f0:1d:fc:e6:6f:
0b:0e:6c:c6:a5:d3:0a:d8:24:de:d4:9c:fc:e6:64:ab:7b:40:
5f:b9:7a:fd:e9:c5:71:33:d0:45:04:d4:4c:5b:88:47:6a:53:
85:40:ac:4e:60:a5:e3:5c:60:f1:50:30:88:de:0d:68:5e:ce:
4b:02:a6:7a:cb:8c:81:8f:90:2f:fa:d3:f5:1d:c8:8f:26:d2:
fe:6a:8a:49:65:9a:6c:ba:8f:6c:2a:30:3b:ea:9e:bd:a8:65:
79:f2:38:98:48:8e:5f:06:36:66:73:c2:bd:07:89:53:bd:4d:
42:3d:c3:ed:dd:c2:24:52:58:54:7c:ff:30:51:a1:04:fe:07:
69:bd:30:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:47 2025 by rpki-client