Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/718e2yIdjPNaMjWuFoCGpJdtzO0.roa
File: 718e2yIdjPNaMjWuFoCGpJdtzO0.roa (raw, json)
Hash identifier: R9WMAYKL09WPirb5oAmOLktHbJ2g93WnBh4d+hJE8uE=
Subject key identifier: EF:5F:1E:DB:22:1D:8C:F3:5A:32:35:AE:16:80:86:A4:97:6D:CC:ED
Certificate issuer: /CN=13cc6309ac30a7fc015c3344cbc80861b4c547cf
Certificate serial: 01856ECB9EF793F6F081CEE7083FBCC31512
Authority key identifier: 13:CC:63:09:AC:30:A7:FC:01:5C:33:44:CB:C8:08:61:B4:C5:47:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E8xjCawwp_wBXDNEy8gIYbTFR88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/718e2yIdjPNaMjWuFoCGpJdtzO0.roa
Signing time: Sun 01 Jan 2023 19:25:16 +0000
ROA not before: Sun 01 Jan 2023 19:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12353
IP address blocks: 194.6.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:9e:f7:93:f6:f0:81:ce:e7:08:3f:bc:c3:15:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13cc6309ac30a7fc015c3344cbc80861b4c547cf
Validity
Not Before: Jan 1 19:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef5f1edb221d8cf35a3235ae168086a4976dcced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d8:8c:a4:0f:77:fe:96:b8:4b:e9:79:29:7a:
5d:eb:9e:d7:59:e7:57:13:1a:f0:8e:f3:f5:2e:5a:
8a:87:41:1b:af:1a:62:4f:37:71:54:d9:8f:f2:b3:
c8:4c:2b:ad:f8:36:96:05:bd:67:84:72:00:11:45:
f9:ab:c8:be:e5:0d:fe:dd:5e:21:90:99:af:fc:a0:
f3:0f:8f:10:e7:18:0b:dd:34:55:b6:60:9e:cb:c7:
16:5c:70:86:b4:97:97:0c:e2:12:9d:3a:1c:c5:3f:
0e:ba:ed:b8:97:76:20:42:1d:b9:79:65:1a:c2:bd:
63:2b:22:37:77:a1:45:fb:8c:ce:4a:14:13:7c:37:
b2:bc:12:e2:67:68:8c:27:36:b6:96:1d:b2:ba:74:
2e:2f:56:3e:b7:f7:1d:a0:89:0f:16:d4:eb:e8:b1:
64:52:b0:2f:4f:8a:84:ed:80:19:46:65:ac:b2:61:
6b:90:3e:2c:4e:5c:e6:39:8c:e6:21:31:c7:01:12:
ce:e8:19:e2:bb:b3:a5:aa:76:ea:79:ad:22:b6:85:
21:cf:dc:d8:02:f0:42:27:2b:7f:98:0d:69:ff:e2:
a3:31:57:08:9d:36:18:64:f4:16:a6:a8:d0:cd:b7:
f7:a0:ca:05:15:16:f5:9d:19:24:b4:1e:45:b2:cf:
7f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5F:1E:DB:22:1D:8C:F3:5A:32:35:AE:16:80:86:A4:97:6D:CC:ED
X509v3 Authority Key Identifier:
keyid:13:CC:63:09:AC:30:A7:FC:01:5C:33:44:CB:C8:08:61:B4:C5:47:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E8xjCawwp_wBXDNEy8gIYbTFR88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/718e2yIdjPNaMjWuFoCGpJdtzO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/E8xjCawwp_wBXDNEy8gIYbTFR88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.229.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ef:71:db:eb:cb:17:c6:6f:ca:99:5d:bf:3e:23:85:b5:af:
bb:60:75:10:a6:2e:6b:c0:d6:1b:73:ef:82:2a:16:65:73:da:
d6:ed:43:dd:77:18:a9:e0:76:96:cf:cb:9f:0a:26:fa:8e:70:
20:f8:33:41:48:03:a4:88:dc:28:90:e8:bc:8e:79:00:59:d7:
c8:d2:d2:f6:8c:5a:6b:30:3a:9b:f0:d0:bc:02:2a:0c:d9:37:
06:59:68:19:c9:b9:32:ef:c5:55:aa:7a:9b:09:24:c4:ad:81:
35:05:36:b3:2b:d0:fb:74:c9:5f:1d:e4:95:27:84:5e:d4:e4:
6e:e0:5d:df:6c:2e:fa:a3:b4:76:da:b9:6e:aa:d9:9a:4f:94:
6f:51:79:19:0e:4f:16:b3:c1:07:e9:10:7a:a6:08:f8:c0:60:
4a:08:b1:49:19:95:d3:85:2b:92:7b:2e:5c:3e:d3:43:89:f4:
77:46:6a:6b:ad:f6:21:ce:b0:e2:7d:3c:0c:64:54:04:dd:ad:
2e:ad:c1:87:0a:ec:d2:1a:87:6f:99:57:5f:19:3e:4b:d2:16:
c2:b2:30:f6:76:20:66:23:23:7e:fb:6a:63:49:3a:bf:8e:00:
ba:bd:db:31:9a:cd:9f:b8:5c:9e:7b:a3:2f:70:0a:c4:9f:40:
d8:6c:51:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:14:33 2025 by rpki-client