Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/dOzBW6Ijmy698EBkmNPJyrSLjCs.roa
File: dOzBW6Ijmy698EBkmNPJyrSLjCs.roa (raw, json)
Hash identifier: jbsXu5e67GDlpT7Xiupx4UrGjXmJwgOBJ/lXAh53ECA=
Subject key identifier: 74:EC:C1:5B:A2:23:9B:2E:BD:F0:40:64:98:D3:C9:CA:B4:8B:8C:2B
Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Certificate serial: 0186450CBD047F54AD1CCF81F99216A60AD5
Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/dOzBW6Ijmy698EBkmNPJyrSLjCs.roa
Signing time: Sun 12 Feb 2023 09:55:07 +0000
ROA not before: Sun 12 Feb 2023 09:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57568
IP address blocks: 194.5.192.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:45:0c:bd:04:7f:54:ad:1c:cf:81:f9:92:16:a6:0a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Validity
Not Before: Feb 12 09:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74ecc15ba2239b2ebdf0406498d3c9cab48b8c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:b4:be:e5:fb:39:44:f4:b1:4a:5c:e8:5a:
c6:ef:c4:95:1c:92:33:57:e0:0b:48:24:b2:19:47:
b5:1d:89:06:78:38:9e:ef:db:26:8f:09:13:4b:de:
04:ce:39:12:08:35:a7:9f:72:4b:47:f8:07:73:e4:
ce:2b:c3:d8:82:c4:85:1e:0a:a1:fa:18:56:9c:01:
d9:83:28:7e:73:cf:32:64:6c:ba:43:a2:9b:05:3d:
91:a3:8d:87:43:09:ff:ba:d4:db:f9:d4:44:4f:25:
14:74:ee:53:8b:f0:e8:ae:bf:2a:39:14:ab:ca:45:
90:60:49:5b:2f:4f:cc:2a:33:9c:d7:7d:97:56:66:
0b:4d:4d:e1:51:a8:58:b3:03:e9:fc:47:69:46:e3:
d8:3c:cf:d8:c7:28:d1:de:ac:6b:07:ad:f9:99:94:
62:fc:73:e9:c9:08:1a:25:5c:4e:23:d6:53:3b:44:
14:2b:4b:10:4c:1a:1d:9d:26:7b:40:3f:84:b7:65:
b5:dc:a7:8c:d9:0d:7b:e4:16:85:50:16:61:41:2c:
11:67:83:43:ca:3a:d4:68:f0:a1:03:a3:fe:cf:ab:
03:a6:ac:3e:04:df:d3:1d:d7:0e:85:51:68:73:c9:
14:22:a7:91:46:3e:b9:c6:f0:bd:77:d6:31:26:ef:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EC:C1:5B:A2:23:9B:2E:BD:F0:40:64:98:D3:C9:CA:B4:8B:8C:2B
X509v3 Authority Key Identifier:
keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/dOzBW6Ijmy698EBkmNPJyrSLjCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.192.0/23
Signature Algorithm: sha256WithRSAEncryption
be:80:b8:25:da:00:db:9a:8d:5e:86:56:24:b3:2d:f9:5c:55:
fd:96:05:ee:99:5a:c0:3d:95:da:1e:45:27:30:61:22:16:e7:
28:9a:af:33:92:ad:79:af:f2:13:03:92:d0:37:5e:51:59:a6:
82:f8:db:de:35:ce:19:4b:92:78:19:14:26:67:4e:ec:e6:9a:
03:ca:36:c8:c1:0b:bc:5b:03:0e:04:db:ed:61:6b:c0:09:f2:
84:63:9a:f5:b1:56:a7:5c:07:d4:16:d5:b4:af:82:90:bc:3e:
96:a0:b2:88:a2:31:8a:5b:d0:b6:3f:27:83:49:49:fd:7e:70:
10:a4:c4:d0:c2:65:fd:1f:65:49:41:ef:1a:35:82:e8:db:1d:
e2:07:a8:d8:7e:a6:8a:2f:d3:88:7d:2e:d2:78:ac:e2:cb:28:
cb:a0:4c:2c:3b:3f:90:c3:a3:34:12:ee:88:88:bc:06:6c:33:
f1:14:44:dc:37:d9:00:a4:fd:4d:a2:20:dc:ff:31:c6:4b:32:
f0:66:2a:a0:f5:1f:8a:29:0e:f5:fb:d2:89:c7:f1:80:e5:b7:
96:a2:d6:9e:a4:28:8f:ba:5e:ef:2f:d1:02:e1:5d:af:85:34:
6b:15:bc:7b:c6:ea:0f:5e:39:b3:35:91:90:71:c1:1c:58:57:
8a:55:a6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:47:19 2025 by rpki-client