Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/iEo-AYQVJ8IohljVF0JgzDF9EbU.roa
File: iEo-AYQVJ8IohljVF0JgzDF9EbU.roa (raw, json)
Hash identifier: /MV6xs63kpbjOKtnN/cANV7pzgth/aQXk7bdeH4V784=
Subject key identifier: 88:4A:3E:01:84:15:27:C2:28:86:58:D5:17:42:60:CC:31:7D:11:B5
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 123E6E34
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/iEo-AYQVJ8IohljVF0JgzDF9EbU.roa
Signing time: Sat 01 Jan 2022 04:01:48 +0000
ROA not before: Sat 01 Jan 2022 04:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204501
IP address blocks: 195.72.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306081332 (0x123e6e34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jan 1 04:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=884a3e01841527c2288658d5174260cc317d11b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:3a:e4:c6:76:f5:44:c3:29:ae:7d:51:c7:
46:ec:05:ce:a8:c1:b1:11:19:f7:9e:0c:57:13:5a:
65:a1:6a:8c:27:15:42:d4:e1:05:e7:fd:7b:a9:18:
e8:06:34:c8:95:a0:26:48:68:cf:08:2d:e3:49:2e:
c5:ce:ce:ce:6b:ee:d2:7a:26:96:99:23:72:67:d5:
2f:9e:27:fb:64:04:dc:cc:8b:30:b8:55:98:1b:1c:
bc:fc:bd:11:87:8d:c3:a7:57:7b:eb:16:fe:ff:ef:
2b:dc:a8:69:9c:b8:c9:6b:ff:23:c3:40:3f:04:3a:
72:5f:61:3c:f1:e3:6b:3b:1f:82:fa:7f:62:08:a1:
0a:16:b8:b2:f3:ad:43:46:ea:95:e1:fd:f2:54:d5:
dd:f8:c1:a1:9f:64:ad:79:de:af:a1:a3:c3:d4:53:
e6:b3:9b:7c:7d:76:88:7c:22:d6:cc:43:67:1d:f4:
c6:1c:79:b8:12:0c:c8:cf:a8:7a:37:93:47:96:ea:
55:37:25:ed:56:5e:fd:aa:8e:c9:51:17:c8:aa:d3:
67:e8:60:30:43:24:62:0b:ff:79:fb:5b:ef:5a:14:
52:e9:88:6e:7f:4f:79:f5:1a:ca:b7:f0:40:cc:b3:
34:99:17:4d:d4:76:5f:73:7f:c7:77:b4:54:45:05:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4A:3E:01:84:15:27:C2:28:86:58:D5:17:42:60:CC:31:7D:11:B5
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/iEo-AYQVJ8IohljVF0JgzDF9EbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.72.118.0/24
Signature Algorithm: sha256WithRSAEncryption
84:b1:9e:6f:85:a0:e5:bb:fa:16:b2:e8:c7:a0:64:55:72:20:
d1:8f:0a:3f:3f:a2:c1:1b:f0:ef:78:ee:f1:51:af:e1:42:5d:
7d:18:22:59:ba:4f:7c:05:1e:70:ba:68:05:9d:80:20:59:68:
d7:1c:c1:50:91:4d:5d:49:18:d6:e3:e3:72:18:d0:1c:35:94:
b9:dc:ef:2f:dd:bf:d2:25:af:8a:01:98:f2:31:6e:41:a1:fd:
87:5b:02:c7:07:64:84:62:2a:9e:a0:41:d5:5e:30:6c:6d:d6:
d4:3b:fe:ed:46:11:5c:59:ae:fa:a3:45:a8:a1:5f:b2:5d:c7:
b7:b5:87:6c:57:c9:df:b2:2c:01:5d:64:e6:c4:95:24:57:0f:
a0:4b:f7:79:4b:49:b7:78:a1:56:7d:50:ee:f9:2c:66:85:29:
74:71:ea:67:2f:e7:06:4d:ec:4c:86:f0:bc:62:23:0d:ce:a4:
1c:55:30:63:77:1a:86:52:31:c8:33:d6:73:36:d8:24:a2:87:
6a:6e:f8:b1:66:85:8f:8e:4a:b8:b7:69:d2:b8:d2:ea:4b:d8:
ba:33:1c:82:b5:f1:8f:e3:47:d4:20:f2:88:17:23:02:ff:76:
c4:5b:8d:0e:8b:f1:7f:3b:57:31:3a:5d:96:79:3e:69:c5:37:
20:8c:19:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:36:34 2025 by rpki-client