Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/rLhfDoU7_K4sa9JcvODKuPGPSjA.roa
File: rLhfDoU7_K4sa9JcvODKuPGPSjA.roa (raw, json)
Hash identifier: y7b6M/x9ccSjDga7/DiBS1Gqym4Y96qS8HZs3c4jXcg=
Subject key identifier: AC:B8:5F:0E:85:3B:FC:AE:2C:6B:D2:5C:BC:E0:CA:B8:F1:8F:4A:30
Certificate issuer: /CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Certificate serial: 42543D11
Authority key identifier: 6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/rLhfDoU7_K4sa9JcvODKuPGPSjA.roa
Signing time: Sat 01 Jan 2022 06:58:50 +0000
ROA not before: Sat 01 Jan 2022 06:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49026
IP address blocks: 95.131.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112816913 (0x42543d11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Validity
Not Before: Jan 1 06:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acb85f0e853bfcae2c6bd25cbce0cab8f18f4a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:49:33:b8:45:77:a0:9c:14:5b:66:ed:bd:
fd:b9:af:9e:77:cd:e3:44:d3:44:e3:de:12:fb:1b:
bf:2b:35:e3:52:d2:84:bd:b2:c0:ee:dd:2b:58:94:
45:df:2a:31:31:57:94:2e:e9:3b:a7:0a:5a:00:1f:
db:c8:8e:16:2c:55:06:8b:c5:5a:c5:82:51:cf:b5:
ea:f4:57:34:42:d5:2f:da:7c:fb:94:69:cc:42:8d:
86:49:67:23:00:d8:38:fe:5b:75:1b:2b:60:9d:7f:
8b:7f:2b:ee:35:07:9c:09:ba:68:1e:60:06:f1:e6:
36:b7:f9:86:33:7d:7d:36:1d:2b:8b:9f:ef:46:3f:
81:0e:82:db:22:fa:4c:76:6e:1d:59:51:aa:a3:16:
98:e2:e3:1c:84:f6:8d:75:28:50:97:d7:ff:20:11:
0f:21:71:2f:f5:9c:2b:34:ec:3c:64:2f:ec:49:39:
66:40:6e:18:c8:84:de:0e:8e:91:1a:12:b9:e7:16:
46:e4:16:bd:83:d0:c8:02:5f:7e:8a:f8:af:99:5d:
f5:e5:0a:44:ec:8d:e4:30:8c:91:08:cb:b2:6f:b7:
f1:3a:19:0a:7b:f7:58:90:70:81:12:e8:1f:53:63:
52:aa:bc:db:e2:ad:f5:44:4c:61:1e:12:19:9d:74:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B8:5F:0E:85:3B:FC:AE:2C:6B:D2:5C:BC:E0:CA:B8:F1:8F:4A:30
X509v3 Authority Key Identifier:
keyid:6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/rLhfDoU7_K4sa9JcvODKuPGPSjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/bkBn13v-qZ3yXOXgipIT0RKAFM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.80.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e1:2e:0b:42:92:c0:bc:7f:0a:d6:4f:2c:38:b7:3b:10:32:
f6:4d:56:d6:b7:98:06:8d:05:46:72:3a:33:59:c9:72:f9:40:
5f:82:ff:b7:ec:5b:2a:42:8d:ac:4e:1e:dd:46:b2:83:78:f1:
c3:ab:9f:6f:ab:24:52:bb:3b:a3:5d:a4:09:27:be:cd:14:5c:
96:6a:4d:d5:ca:20:f4:c7:c2:df:b3:cb:1c:50:81:92:9f:19:
e4:af:9e:6b:2d:b5:97:12:e9:b4:fa:eb:c6:3f:ef:50:df:75:
13:b8:12:f3:b7:c1:44:8a:8d:7e:c2:6d:4b:aa:ba:a5:2e:ae:
19:05:70:48:f9:e3:76:a1:21:0e:9e:f4:22:b8:2b:f8:1f:7a:
b8:e2:fc:88:e2:db:c3:83:41:55:5b:2a:0a:fc:de:4d:e8:51:
77:13:cc:94:4b:67:d3:13:26:fe:79:1a:94:fd:e5:80:2f:87:
0e:3d:d5:f5:16:c6:b5:9a:30:91:6d:15:25:9c:b4:6b:a5:e5:
7f:6e:8a:31:19:46:ce:73:14:8a:b4:6e:7d:65:00:19:e3:df:
8d:6c:76:0c:8e:1e:60:82:51:80:1e:0f:ac:70:c5:43:4e:3e:
ed:08:79:52:41:e2:45:e5:77:c9:95:51:3a:32:8c:7b:13:09:
3c:36:34:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:49:37 2025 by rpki-client