Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Assmr2k_H2uRZuOOWUQ7MalzgZw.roa
File: Assmr2k_H2uRZuOOWUQ7MalzgZw.roa (raw, json)
Hash identifier: Vw6LryU283MvS8b1DYhWwa+Bo5qv7GhBdLEMQ0z5O50=
Subject key identifier: 02:CB:26:AF:69:3F:1F:6B:91:66:E3:8E:59:44:3B:31:A9:73:81:9C
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0186EEBB240B3023D9B89D49547F7EC6B463
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Assmr2k_H2uRZuOOWUQ7MalzgZw.roa
Signing time: Fri 17 Mar 2023 08:41:27 +0000
ROA not before: Fri 17 Mar 2023 08:41:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207804
IP address blocks: 194.28.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:bb:24:0b:30:23:d9:b8:9d:49:54:7f:7e:c6:b4:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Mar 17 08:41:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02cb26af693f1f6b9166e38e59443b31a973819c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7a:f7:52:d4:67:9f:52:8f:4b:69:d6:57:28:
5d:4f:33:19:f8:c4:44:b9:96:15:08:8b:60:9f:65:
9b:66:c2:01:22:4d:d8:13:78:2d:84:72:ce:61:4e:
6c:e3:f3:ed:57:d4:41:50:c5:23:79:db:2e:5a:ff:
6a:5d:ce:92:77:70:5e:ee:34:bd:70:10:8f:93:3e:
b8:08:0e:9c:b2:31:60:5c:dc:1f:5b:95:68:c0:ba:
8a:03:55:28:e0:9c:73:eb:f5:c4:0c:12:a6:40:8c:
40:e0:3c:58:f4:29:e3:92:81:17:e8:6d:d3:f7:72:
66:92:d0:35:04:02:20:6e:ed:6f:0c:be:b9:33:bc:
50:bd:23:e7:e7:cf:fe:1e:74:45:6c:e6:23:78:77:
73:68:f4:56:96:7c:16:f2:59:7f:cf:d6:2a:11:3c:
eb:48:ea:f5:a4:bb:fd:1c:9f:e0:37:43:ce:eb:03:
a4:a1:e7:9e:7f:66:d9:b2:97:e3:75:20:1a:c2:db:
3b:4a:c9:c1:9a:af:9a:5d:55:89:cb:9c:1c:dc:3d:
a0:e6:01:63:89:93:23:d5:11:64:49:e5:a9:1c:b0:
d4:42:b2:b0:8d:03:43:21:52:17:51:24:b6:c0:10:
b6:99:e2:f4:06:b9:54:ed:5e:c0:90:36:e6:7b:7c:
2b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CB:26:AF:69:3F:1F:6B:91:66:E3:8E:59:44:3B:31:A9:73:81:9C
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Assmr2k_H2uRZuOOWUQ7MalzgZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.227.0/24
Signature Algorithm: sha256WithRSAEncryption
76:70:ce:52:91:03:d1:74:b1:13:d3:60:02:7a:75:ff:dd:a3:
44:b1:2f:4e:70:c6:4e:20:68:8f:7e:0d:c8:7d:f1:fd:44:5d:
40:7f:5e:b5:fc:3f:50:1d:be:0d:bf:4a:7d:54:6c:6a:87:91:
d2:ca:ee:04:53:60:43:17:6b:ea:7e:51:30:3b:c1:de:41:6b:
da:cd:8f:38:f1:a0:25:3d:5d:c8:42:6d:9e:bd:66:79:f9:84:
00:56:b9:73:87:8f:32:4d:89:40:5a:9e:21:ba:c8:91:2e:14:
aa:84:8f:86:aa:ac:f1:30:94:ad:fd:99:95:6c:8c:90:72:96:
33:72:8c:48:7d:96:a8:a4:f3:69:7e:48:d9:15:d0:0a:0e:53:
98:64:70:42:a8:96:7e:1a:19:d5:45:93:b5:03:cd:87:b0:70:
a7:ac:8f:81:a6:97:6a:96:a0:f3:4f:ff:9a:4b:49:b5:69:33:
f6:ec:16:48:34:6c:46:ee:27:46:15:95:4e:e2:c3:cc:bf:38:
ea:49:9e:bb:f4:f2:ec:df:1f:fe:8d:ac:4b:c0:bf:03:95:3c:
95:51:1b:24:45:fa:b5:02:4e:e5:7d:51:e4:3b:26:ce:6c:0c:
ee:52:18:77:98:8a:1c:47:86:80:c1:67:13:23:e6:7a:61:2c:
71:57:1a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:09:07 2025 by rpki-client