Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/SN8D7F7G7WWfSW1wW0DboTbfWqk.roa
File: SN8D7F7G7WWfSW1wW0DboTbfWqk.roa (raw, json)
Hash identifier: AFofFZ2T9vmq3XqfhQ/p+OLBg/K4gbgb/y+Jfo3S2pw=
Subject key identifier: 48:DF:03:EC:5E:C6:ED:65:9F:49:6D:70:5B:40:DB:A1:36:DF:5A:A9
Certificate issuer: /CN=624ad4535ac88dd534199f2a726095af71afe44e
Certificate serial: 0713E531
Authority key identifier: 62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/SN8D7F7G7WWfSW1wW0DboTbfWqk.roa
Signing time: Thu 24 Mar 2022 10:42:08 +0000
ROA not before: Thu 24 Mar 2022 10:42:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 194.113.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118744369 (0x713e531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624ad4535ac88dd534199f2a726095af71afe44e
Validity
Not Before: Mar 24 10:42:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48df03ec5ec6ed659f496d705b40dba136df5aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8c:55:b6:ef:9a:f5:8d:a6:68:f6:17:91:43:
d5:43:53:21:9b:e6:c9:a2:37:cb:20:da:04:e3:ec:
81:69:ae:66:42:95:12:3c:8b:94:8e:f3:5f:af:8c:
6a:e8:e4:b9:9a:78:15:d8:ac:92:d3:bc:81:99:22:
63:62:ec:44:ea:8b:d5:c1:7f:a3:30:e4:3a:5d:81:
b6:95:66:03:b7:cf:ae:93:a7:cf:91:58:98:57:8d:
b2:3b:fc:29:06:e9:a8:aa:71:6b:82:69:8d:3a:79:
4d:00:28:21:1b:a7:7c:92:98:cd:83:6d:83:ae:fe:
6e:ca:8f:06:0c:e8:b2:96:25:68:c9:66:e8:b9:cd:
3f:00:84:9e:ba:e9:6b:18:e7:61:84:4c:a0:dc:2a:
b9:94:e0:a1:8e:de:26:38:d2:77:40:09:e2:86:6c:
b4:26:a2:cb:7b:8e:94:a1:94:5e:5a:84:61:b3:d1:
9b:16:76:d2:0d:2f:db:77:d9:df:71:de:c4:2b:6a:
7f:ae:75:f1:12:d4:3f:c7:62:c0:4d:0e:08:a5:c7:
36:a0:ab:ee:01:72:6a:29:56:76:f6:d8:e4:66:7d:
c1:a2:1a:47:65:03:6b:ce:68:cc:00:32:23:56:83:
73:9c:2e:92:b8:c1:68:eb:67:2e:7c:1b:a1:5e:47:
1b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DF:03:EC:5E:C6:ED:65:9F:49:6D:70:5B:40:DB:A1:36:DF:5A:A9
X509v3 Authority Key Identifier:
keyid:62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/SN8D7F7G7WWfSW1wW0DboTbfWqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.95.0/24
Signature Algorithm: sha256WithRSAEncryption
34:31:5c:c6:11:60:25:28:9a:f7:8e:e5:5f:bd:a7:29:76:13:
f3:9a:5a:66:74:bf:e5:3b:e1:bc:81:b7:1e:24:cb:42:6d:4f:
bd:48:c2:a2:47:bc:ee:d1:c5:02:98:8b:38:67:01:23:94:2b:
d3:a0:f1:6c:fc:20:22:d3:e7:d0:16:76:e8:aa:4d:1d:cf:db:
d7:f6:69:cc:d1:e1:d0:c8:dc:63:d7:59:e8:0c:99:7d:06:ac:
1d:73:8c:cd:09:5c:8f:c8:99:81:f2:03:61:64:5f:e2:10:fd:
9d:20:c3:6f:47:2d:30:6e:63:04:12:e0:a5:e3:21:f5:8f:c6:
ce:d7:eb:ba:f5:56:6e:09:d6:03:01:a0:5e:f3:a9:fd:6a:cf:
bf:07:f2:f5:64:ea:17:49:03:5e:fd:87:7f:29:e0:da:a8:cc:
e2:0b:ea:51:6c:96:29:3d:00:09:02:ec:41:95:c9:2d:a5:25:
48:3d:aa:c9:4a:f0:97:df:3d:4e:59:75:59:2a:75:df:0d:9a:
82:d8:9f:ea:4d:3f:6b:21:c8:86:59:54:ca:28:2a:2f:d8:fd:
6b:05:94:0a:e0:9a:f2:b0:66:94:a5:78:68:59:00:ae:85:78:
29:11:4d:5d:d6:25:07:18:26:05:7c:1b:52:b2:f2:c8:f6:13:
a0:e2:22:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:51 2025 by rpki-client