Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/aQD5RWcs_bKTHvHZBL1MPxNMpjo.roa
File: aQD5RWcs_bKTHvHZBL1MPxNMpjo.roa (raw, json)
Hash identifier: GcwUjlHSHSDdcOJkfoYcJFrp0YXkbwiRsn+aOpevLiA=
Subject key identifier: 69:00:F9:45:67:2C:FD:B2:93:1E:F1:D9:04:BD:4C:3F:13:4C:A6:3A
Certificate issuer: /CN=b6b249a2c562c5edbdb75058e26bd770123e95ae
Certificate serial: 0347BB1B
Authority key identifier: B6:B2:49:A2:C5:62:C5:ED:BD:B7:50:58:E2:6B:D7:70:12:3E:95:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trJJosVixe29t1BY4mvXcBI-la4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/aQD5RWcs_bKTHvHZBL1MPxNMpjo.roa
Signing time: Sat 01 Jan 2022 04:01:26 +0000
ROA not before: Sat 01 Jan 2022 04:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.33.182.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55032603 (0x347bb1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b249a2c562c5edbdb75058e26bd770123e95ae
Validity
Not Before: Jan 1 04:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6900f945672cfdb2931ef1d904bd4c3f134ca63a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0d:b1:aa:52:78:9f:03:6e:c2:ed:5b:49:57:
10:85:95:14:dd:30:3d:7b:d3:77:15:05:d5:12:41:
4d:2a:7e:c3:ec:00:bd:fd:a1:fc:0c:7c:05:7f:05:
92:42:33:ad:b3:9c:a5:bc:73:f6:c0:e0:6f:ed:9e:
4a:53:c3:f2:bf:64:2f:60:7e:ec:70:4e:74:08:20:
cc:1b:41:be:cf:b8:f2:83:92:1b:75:ff:fa:3b:39:
2e:b9:80:d1:23:8c:cd:3b:87:38:77:04:01:4e:f9:
05:ea:e3:a9:42:cb:12:4b:95:b5:b6:51:62:55:cd:
50:84:89:82:69:6f:cb:ce:37:da:3b:51:98:4c:31:
f1:63:dc:2a:73:8f:e5:2e:33:58:8e:d5:f0:d7:f0:
3e:04:ae:e1:7c:ff:45:9d:7d:95:5a:ed:2c:49:3b:
78:f6:c7:2b:4b:63:22:9e:de:c0:1b:fd:59:04:a3:
62:ee:0b:3b:24:59:cf:4a:ba:87:ad:46:12:06:51:
19:68:72:57:13:5f:97:b3:f4:34:66:d0:73:f5:fd:
03:84:a3:fd:90:fd:45:cf:13:7a:6d:77:08:b6:50:
a6:e6:7b:1a:88:64:ee:c5:fe:90:05:9a:21:c5:10:
39:e4:ed:aa:3e:5b:f1:31:f6:23:49:0a:bd:61:3d:
b4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:00:F9:45:67:2C:FD:B2:93:1E:F1:D9:04:BD:4C:3F:13:4C:A6:3A
X509v3 Authority Key Identifier:
keyid:B6:B2:49:A2:C5:62:C5:ED:BD:B7:50:58:E2:6B:D7:70:12:3E:95:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trJJosVixe29t1BY4mvXcBI-la4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/aQD5RWcs_bKTHvHZBL1MPxNMpjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/455b26-6aa1-435f-bd45-9ce31c273108/1/trJJosVixe29t1BY4mvXcBI-la4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.182.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:e2:a5:a6:b5:66:ab:9c:27:84:28:66:af:79:6a:d1:81:1a:
08:47:5d:e5:e0:59:3e:b0:5f:68:e1:3f:c9:53:5d:d4:f2:fb:
26:1e:2f:56:a0:e9:81:41:d5:5d:79:03:46:52:84:d4:dd:fa:
5e:b4:08:53:36:1b:85:9f:c2:c9:cf:3c:b9:62:4c:9e:fd:b0:
0b:6a:70:2e:ec:ce:19:eb:65:39:25:6c:02:00:d4:ff:ea:e7:
4c:33:49:cc:5b:3f:87:e4:75:42:16:11:84:fe:bc:37:4f:43:
e9:94:00:62:ed:04:5d:b4:9a:d4:7b:eb:4e:c8:88:98:e8:88:
da:50:af:05:90:ce:37:62:16:40:89:0b:f0:a8:94:7b:61:e0:
11:a3:4f:a3:9b:e5:d6:84:27:5a:a8:4d:db:8d:cc:50:4b:85:
8e:01:24:18:1c:65:eb:ce:98:36:fc:ec:f2:3c:92:82:a5:19:
5f:bb:5d:27:d8:da:fb:3c:cb:f2:ff:14:73:f0:72:48:23:d7:
33:a2:d4:95:80:f5:58:62:21:c2:1c:31:a9:16:c5:23:08:9f:
aa:be:fa:01:02:f8:30:6a:a1:a9:3c:55:52:b1:cc:0d:ed:d7:
fd:4e:3b:5f:06:7e:33:6d:d5:9a:80:f8:63:c0:3a:4c:84:ac:
2f:9f:a5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:46 2025 by rpki-client