Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/sPz_aOC1Az7uMRu6ZQUSEpcS2RA.roa
File: sPz_aOC1Az7uMRu6ZQUSEpcS2RA.roa (raw, json)
Hash identifier: Xjw0eB5aN7MqiTOI7E3FVoPZ/lPqKBBVmkEB0WH26wY=
Subject key identifier: B0:FC:FF:68:E0:B5:03:3E:EE:31:1B:BA:65:05:12:12:97:12:D9:10
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 01856B37D4D292A90178AE3399C9061B1E83
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/sPz_aOC1Az7uMRu6ZQUSEpcS2RA.roa
Signing time: Sun 01 Jan 2023 02:44:58 +0000
ROA not before: Sun 01 Jan 2023 02:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20857
IP address blocks: 193.111.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:d4:d2:92:a9:01:78:ae:33:99:c9:06:1b:1e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 1 02:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0fcff68e0b5033eee311bba650512129712d910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9e:9a:95:81:b6:39:92:88:12:c4:6e:f0:e4:
5c:83:c0:c2:db:90:5e:7c:45:fc:c6:06:b8:43:ed:
10:33:4c:27:c4:7c:4c:6c:4d:c9:e9:8e:a7:e5:2e:
52:c3:3e:ab:25:b9:83:9d:3f:12:06:3f:13:6c:02:
2c:c9:55:48:d0:29:0a:1b:60:29:fd:1e:9b:81:a0:
5a:cd:cf:18:54:95:40:4f:1c:2c:5a:2c:9b:42:1e:
90:fe:4a:65:3e:5d:8e:f4:c5:bb:89:4a:da:cd:92:
fc:e2:14:b0:b4:18:8d:1a:53:be:8d:a9:de:0c:29:
4f:83:e7:3a:ae:11:a1:08:81:87:43:14:76:31:e1:
1a:3f:8f:86:ea:b8:87:bd:81:4d:58:01:17:70:5b:
ba:92:b9:e5:5e:c9:a9:6b:67:36:0d:02:57:77:8c:
ca:da:ce:7b:eb:ac:20:d5:5e:48:17:24:a5:c4:f8:
c6:02:5c:47:1a:04:ea:fe:fc:62:de:36:10:b0:03:
d2:4d:c6:95:81:a2:5f:f9:1a:0e:f1:8e:d1:60:cf:
a9:31:ee:e3:5d:3b:46:14:d5:52:cc:98:7e:09:e3:
37:41:78:97:99:f4:94:8e:05:ca:33:a2:ae:ee:51:
2e:a0:71:83:d2:ab:b4:db:eb:85:8a:e0:48:0e:b1:
2d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FC:FF:68:E0:B5:03:3E:EE:31:1B:BA:65:05:12:12:97:12:D9:10
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/sPz_aOC1Az7uMRu6ZQUSEpcS2RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.95.0/24
Signature Algorithm: sha256WithRSAEncryption
27:c2:82:b4:34:b7:9e:f9:d6:f1:4e:95:b0:2c:f5:b8:e4:9e:
b7:39:99:03:64:e7:0d:ec:cd:3b:64:e3:18:71:6a:37:d3:1c:
44:7d:74:c5:a6:ca:df:18:9f:ed:d2:52:bc:2c:e2:d3:47:a8:
69:ea:80:27:b3:c9:dd:07:92:53:e7:36:61:20:55:cf:b0:9a:
4e:6f:02:ad:f1:c1:3a:a4:ca:25:08:72:0a:fd:e2:01:fe:f0:
40:d0:cb:4d:c6:87:a3:e4:e9:fc:67:ec:bc:eb:6d:ba:8d:81:
25:6f:53:92:5f:d2:df:ec:a9:38:18:bf:88:fa:72:c5:04:c5:
35:83:5c:9e:a9:38:72:d7:74:bc:ce:35:b4:a5:d6:88:22:97:
06:a7:16:3e:32:79:49:51:58:34:fe:69:30:3a:7a:e7:84:b5:
3d:03:af:f2:3f:36:3c:cf:44:71:e6:89:c3:49:aa:88:e4:9c:
c2:6a:0d:d2:61:35:5c:d5:41:d4:83:15:97:06:d8:b7:44:4b:
b0:51:37:ce:1e:7d:3d:4c:38:46:87:00:e3:51:6c:82:79:8d:
98:57:dd:47:b8:92:f2:33:f3:43:0e:72:81:fe:04:8a:54:59:
75:21:e3:48:63:23:7d:f0:ed:cf:83:61:e8:15:ef:25:8e:b6:
a2:35:2f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:04:56 2025 by rpki-client