Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/9HCCZh2_XYGmgBySfJCSpfz52J0.roa
File: 9HCCZh2_XYGmgBySfJCSpfz52J0.roa (raw, json)
Hash identifier: 4VW44HmAK+td6aQ9ER5Iynd64/hKjq4m5kwSG1mrxAU=
Subject key identifier: F4:70:82:66:1D:BF:5D:81:A6:80:1C:92:7C:90:92:A5:FC:F9:D8:9D
Certificate issuer: /CN=c9cdeb328e3187dbff23729a48b47054c1d519da
Certificate serial: 038952C3
Authority key identifier: C9:CD:EB:32:8E:31:87:DB:FF:23:72:9A:48:B4:70:54:C1:D5:19:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yc3rMo4xh9v_I3KaSLRwVMHVGdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/9HCCZh2_XYGmgBySfJCSpfz52J0.roa
Signing time: Sat 01 Jan 2022 16:04:55 +0000
ROA not before: Sat 01 Jan 2022 16:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34996
IP address blocks: 193.202.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59331267 (0x38952c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9cdeb328e3187dbff23729a48b47054c1d519da
Validity
Not Before: Jan 1 16:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f47082661dbf5d81a6801c927c9092a5fcf9d89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5a:35:10:f6:15:00:9f:f4:4f:ab:59:7d:35:
9f:50:42:17:db:47:0e:53:11:84:ae:e5:b2:2c:cb:
fd:cb:8b:ef:80:72:31:06:86:f0:fd:51:38:80:04:
f6:f6:63:43:dd:92:f6:85:13:e2:ee:58:61:65:78:
2e:93:0c:a0:ed:79:da:87:02:b1:6e:70:73:bc:4b:
33:dc:61:81:a7:0e:14:ba:ca:2b:27:37:af:d0:f2:
aa:3d:60:bd:19:0a:e6:7e:3a:05:aa:59:3c:2d:77:
4b:96:ea:4d:30:3c:e0:9a:a8:db:d6:d1:c8:65:a4:
df:03:da:19:9f:c6:ea:c8:67:4f:b9:32:03:ca:d4:
52:bb:18:43:f0:90:e9:24:90:39:ae:2c:47:31:ba:
e4:2b:bf:ce:8f:3d:09:76:75:f6:a6:62:37:3f:eb:
fe:e5:1b:79:f5:60:1d:34:aa:6c:ba:cf:8b:87:c1:
29:ec:4a:2d:fc:0e:3c:f3:51:15:7b:f9:2a:7e:6d:
85:52:ce:e5:9e:34:4c:ab:77:e6:18:4b:78:94:87:
2c:35:eb:48:2f:87:aa:18:51:6b:bf:a3:92:ed:59:
86:7e:7d:e4:2e:2d:11:c8:8e:d8:2e:18:1d:3b:09:
df:a2:02:c9:9c:4e:e1:22:3b:3a:ab:fe:db:85:20:
a2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:70:82:66:1D:BF:5D:81:A6:80:1C:92:7C:90:92:A5:FC:F9:D8:9D
X509v3 Authority Key Identifier:
keyid:C9:CD:EB:32:8E:31:87:DB:FF:23:72:9A:48:B4:70:54:C1:D5:19:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yc3rMo4xh9v_I3KaSLRwVMHVGdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/9HCCZh2_XYGmgBySfJCSpfz52J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/yc3rMo4xh9v_I3KaSLRwVMHVGdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:8f:15:87:9b:83:fc:1d:fa:ce:a4:11:a9:36:e9:86:a6:1f:
70:7f:84:fd:f1:a3:89:0c:20:5a:54:2a:bc:ba:da:5a:0e:27:
0c:b7:7e:13:65:91:09:44:e1:36:3f:7e:89:9f:58:86:6e:97:
19:79:02:7b:e6:57:5e:e2:1d:65:ca:66:55:b9:18:5c:bb:5f:
b7:18:d4:b4:7e:89:0c:59:bb:38:f4:9c:a6:fd:c8:89:24:b4:
3c:84:9f:5f:40:a7:90:5b:ef:7a:2d:66:16:56:23:c2:13:cf:
b0:ba:9a:44:3b:42:f5:f2:0b:88:fe:62:b5:7a:30:40:20:ed:
5e:27:3f:b2:9c:9e:f4:53:14:57:88:a6:bd:c8:f1:28:be:31:
6e:61:2d:e5:aa:84:cd:de:d8:21:25:8a:1f:fe:b4:21:4f:18:
89:12:c3:95:ee:52:45:c8:10:f9:92:b8:c7:54:a8:b1:e7:af:
ef:dd:5d:f4:b6:69:95:8f:10:23:68:1e:17:dc:71:f9:c7:c6:
4d:00:f9:a3:38:90:6e:e0:13:ca:64:48:0d:91:45:11:29:58:
d7:1c:c2:5b:90:63:84:e6:ce:0d:77:f7:bb:bf:a7:cf:77:6d:
ff:da:0d:43:2c:94:1c:30:37:19:a9:a8:a6:97:05:ba:15:3f:
41:78:4c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:19 2025 by rpki-client