Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/c88d50-923b-4853-909c-f4efd177e9d0/1/9dV_h1xV0XwbTgfKW1KMoS5sdU8.roa
File: 9dV_h1xV0XwbTgfKW1KMoS5sdU8.roa (raw, json)
Hash identifier: Z9GOjE11R7uLivJcFLIRHwmGetnSyjE4RrcW6GhgYIE=
Subject key identifier: F5:D5:7F:87:5C:55:D1:7C:1B:4E:07:CA:5B:52:8C:A1:2E:6C:75:4F
Certificate issuer: /CN=ac7a4e5c431ff6c79e4f5bd1b46b05f9f44110ce
Certificate serial: 01856FC29076A876709F250111A34E8DEDB6
Authority key identifier: AC:7A:4E:5C:43:1F:F6:C7:9E:4F:5B:D1:B4:6B:05:F9:F4:41:10:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHpOXEMf9seeT1vRtGsF-fRBEM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/c88d50-923b-4853-909c-f4efd177e9d0/1/9dV_h1xV0XwbTgfKW1KMoS5sdU8.roa
Signing time: Sun 01 Jan 2023 23:54:59 +0000
ROA not before: Sun 01 Jan 2023 23:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196876
IP address blocks: 193.105.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:90:76:a8:76:70:9f:25:01:11:a3:4e:8d:ed:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7a4e5c431ff6c79e4f5bd1b46b05f9f44110ce
Validity
Not Before: Jan 1 23:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5d57f875c55d17c1b4e07ca5b528ca12e6c754f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9d:c0:13:52:ba:7d:8f:f2:63:18:80:c5:ef:
aa:48:55:ad:ce:8a:1d:a2:40:f6:80:dd:4f:08:b7:
05:7b:26:b4:e2:9b:b9:65:cf:7d:51:23:79:5f:b8:
63:a2:bb:82:04:02:48:75:ff:b6:cc:82:1b:a5:e7:
ed:17:29:20:bd:94:00:bf:8b:5e:81:8e:07:8c:ff:
bb:06:ab:13:21:49:61:82:09:cd:bf:36:8b:50:df:
7e:54:30:ad:47:1e:c1:58:d5:3f:f2:6e:3e:d4:a1:
6c:a8:4b:c9:91:70:86:e0:37:4b:3a:77:3d:ef:bf:
6d:0b:b5:bf:23:45:44:6e:64:fd:12:2e:4b:d2:82:
0a:a4:50:e6:4c:dd:5d:db:3f:7f:25:1b:19:5a:b2:
0a:3e:22:92:0a:3f:74:c1:d7:2b:f1:f4:23:d9:18:
e3:4a:3b:78:f1:fd:96:86:d6:a4:2b:f5:40:17:7b:
fe:76:c1:11:cb:9d:3e:f7:c1:6a:12:a4:b7:ba:3a:
d0:1b:b7:1d:59:16:c2:5d:8f:5c:5a:a3:df:e6:4f:
ef:b9:6f:55:cc:a1:0f:c3:f0:9d:e3:6a:02:91:66:
1d:3c:64:49:79:1e:fc:f7:22:6a:26:ab:59:f1:62:
db:87:dd:4c:9a:c8:86:e8:c4:22:63:6e:14:cf:e5:
7b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D5:7F:87:5C:55:D1:7C:1B:4E:07:CA:5B:52:8C:A1:2E:6C:75:4F
X509v3 Authority Key Identifier:
keyid:AC:7A:4E:5C:43:1F:F6:C7:9E:4F:5B:D1:B4:6B:05:F9:F4:41:10:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHpOXEMf9seeT1vRtGsF-fRBEM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c88d50-923b-4853-909c-f4efd177e9d0/1/9dV_h1xV0XwbTgfKW1KMoS5sdU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c88d50-923b-4853-909c-f4efd177e9d0/1/rHpOXEMf9seeT1vRtGsF-fRBEM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.148.0/24
Signature Algorithm: sha256WithRSAEncryption
49:9c:f8:58:5c:a0:b1:36:e3:62:d1:4d:c5:73:7f:fc:1f:50:
5b:76:64:bc:92:68:15:6b:96:ac:28:d9:5b:88:87:d3:60:c3:
5c:90:80:bd:1e:97:c4:e0:13:8d:fc:4a:43:9e:e5:1b:7a:c1:
92:a0:68:2d:ce:86:14:54:0f:cc:e8:f5:a0:66:78:d4:53:2e:
ee:bf:a2:d4:12:3b:9a:6c:ae:54:6c:5f:56:4f:b9:75:19:81:
cd:09:4b:34:2d:9c:66:dc:16:2f:c3:ff:3b:b0:01:74:7d:99:
cd:8f:90:b3:45:e6:32:1a:da:e5:ed:e2:5a:0a:c0:28:1e:32:
a3:04:d8:76:2a:36:0f:3b:4b:14:d4:79:5b:60:b6:a8:eb:ef:
12:06:14:78:00:2b:ca:d1:39:2e:32:a2:52:24:f0:98:46:60:
e6:25:0a:64:18:72:d4:0c:1f:91:aa:ae:fe:ca:bc:10:c5:48:
a4:cb:ca:de:c9:3e:fb:7a:f7:df:43:01:ab:89:d6:27:04:84:
73:05:14:df:57:43:fb:27:54:70:b8:f9:6a:c7:20:6e:42:1e:
a2:87:c1:01:ef:08:11:e6:02:e1:4f:5e:37:7d:77:5c:09:39:
8b:42:6e:3e:bc:7b:93:24:16:f8:a0:b9:d9:a3:5c:0e:3a:41:
e6:0d:f1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:43:35 2025 by rpki-client