Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/inHuJeYpl89hRjhoVox6S37vYng.roa
File: inHuJeYpl89hRjhoVox6S37vYng.roa (raw, json)
Hash identifier: Hhy1pAF4Xk2+2QE/i8ZExfZaWjslq/2zaqX+qOL8qN4=
Subject key identifier: 8A:71:EE:25:E6:29:97:CF:61:46:38:68:56:8C:7A:4B:7E:EF:62:78
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 0185726B73F389C8432DA8160A3085B57F67
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/inHuJeYpl89hRjhoVox6S37vYng.roa
Signing time: Mon 02 Jan 2023 12:18:42 +0000
ROA not before: Mon 02 Jan 2023 12:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205715
IP address blocks: 188.95.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:6b:73:f3:89:c8:43:2d:a8:16:0a:30:85:b5:7f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 2 12:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a71ee25e62997cf61463868568c7a4b7eef6278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cb:65:19:d8:b2:d6:52:da:dc:35:b9:c2:af:
00:d2:57:94:cb:3d:ee:52:3c:19:fe:2f:5f:a3:85:
06:e2:7b:00:05:aa:62:a5:6c:2a:e0:da:86:57:b8:
4a:aa:ef:23:e2:9d:46:73:06:6f:f2:39:f1:20:15:
13:28:8a:33:f7:c4:1c:4b:68:7a:9c:b7:a9:73:65:
59:cb:d8:3b:7f:64:e7:df:3b:b4:8d:71:0e:44:b7:
06:d8:6d:e6:e4:ac:fb:b1:aa:b2:65:39:c2:20:f3:
7f:4c:17:be:86:10:ea:55:9d:59:16:d6:a7:ce:26:
7c:5c:8d:02:69:47:c8:f2:c6:73:8c:29:bc:57:23:
c9:00:31:3d:c0:c9:1c:06:00:a0:44:88:80:81:fb:
8e:ab:89:d1:ef:3a:ac:db:bc:e7:54:7d:61:83:88:
a5:b5:70:b8:8c:bd:b0:bc:a5:c0:68:e0:7c:28:d1:
b1:74:d8:c5:aa:5d:22:c6:c3:32:b4:04:b2:84:06:
bc:14:44:90:f0:03:e4:85:d6:30:bd:67:5b:b9:08:
04:17:57:e1:78:e4:ee:6a:89:31:c4:6f:d6:00:ef:
7e:86:6f:1d:5f:e5:14:9f:22:e6:ad:b4:0d:f8:8d:
57:02:82:c9:e2:c1:c4:42:18:8d:f5:a9:eb:53:ca:
56:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:71:EE:25:E6:29:97:CF:61:46:38:68:56:8C:7A:4B:7E:EF:62:78
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/inHuJeYpl89hRjhoVox6S37vYng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.148.0/23
Signature Algorithm: sha256WithRSAEncryption
62:a3:62:d8:71:be:28:48:39:9d:3a:b4:83:3c:f8:0a:ee:88:
48:00:4f:d3:2f:b9:24:20:e0:0d:16:82:4d:51:54:1a:07:d0:
22:5c:46:84:d3:4a:49:61:27:24:f4:81:28:6a:14:63:69:86:
b7:42:10:44:cf:d4:e6:cc:d8:87:49:ee:50:75:e1:d5:23:87:
9b:6b:df:dd:27:c8:9b:05:a5:4b:79:cb:cb:4b:47:bd:20:15:
dd:45:54:5a:5b:48:99:b1:aa:72:3a:7f:15:67:8a:99:23:c3:
28:86:c9:39:16:d1:90:1e:8a:0d:01:2e:29:45:df:6d:7a:a1:
7b:f1:04:ea:76:d4:dd:11:02:41:38:12:db:b0:d2:b4:2d:7d:
d2:3b:2b:61:3d:02:f3:51:27:61:52:d8:b4:50:f6:5e:06:73:
c1:91:ab:1c:2b:e8:e6:93:ed:10:34:97:43:37:ce:2c:6b:ec:
34:80:18:25:e5:96:11:4c:5e:8a:79:72:dc:b4:7a:32:31:64:
20:95:8f:77:6f:c6:fd:80:5a:dd:43:85:ae:eb:5b:db:46:8a:
3b:15:13:02:82:40:02:57:50:2f:04:ce:9b:c4:9c:c3:33:62:
47:f4:9f:7d:28:e4:42:2b:3d:26:9c:6b:ac:b5:20:7a:bc:a5:
9e:70:b9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:03:21 2025 by rpki-client