Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/LoyX1LFZs_5pVg81iBiJXUJkkTQ.roa
File: LoyX1LFZs_5pVg81iBiJXUJkkTQ.roa (raw, json)
Hash identifier: thhtAFiV/Hu6qNSoV+tJwXRmJjb4RxwvArbr8Yz+b5s=
Subject key identifier: 2E:8C:97:D4:B1:59:B3:FE:69:56:0F:35:88:18:89:5D:42:64:91:34
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 029F0945
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/LoyX1LFZs_5pVg81iBiJXUJkkTQ.roa
Signing time: Sat 01 Jan 2022 14:08:43 +0000
ROA not before: Sat 01 Jan 2022 14:08:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211613
IP address blocks: 95.161.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43977029 (0x29f0945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 1 14:08:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e8c97d4b159b3fe69560f358818895d42649134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:78:a5:9e:0a:d4:51:9a:dd:0d:67:6e:9b:73:
43:11:43:3f:02:33:59:2d:33:c6:40:06:6e:e3:c0:
cb:1c:8c:e7:ef:14:c1:65:7a:23:ea:0c:50:f9:e5:
82:9f:a1:3f:38:1c:34:10:b8:2a:0f:fc:94:c9:13:
89:ed:17:0b:76:4f:25:a0:98:2b:97:9c:f4:f9:4f:
74:17:6b:07:3c:87:97:35:c6:67:4c:d5:eb:5f:de:
32:f9:cf:c7:51:38:68:fa:7c:1b:64:3d:ab:34:6d:
cb:f6:d8:72:f4:d0:19:36:ae:84:9d:f0:20:82:a3:
bc:4e:04:af:a9:5a:bf:15:eb:96:ab:48:0e:82:e3:
41:b3:17:d0:85:c2:fc:45:03:2f:be:02:d1:1e:cf:
23:2c:7b:73:a7:2f:99:0f:0b:34:db:5e:ea:ec:a9:
c5:a5:2a:9d:c6:b8:6f:48:63:79:1f:cb:ae:7f:18:
1b:7f:35:64:22:26:3f:c8:4d:92:ba:2b:b9:9d:88:
61:7d:2b:d2:04:b8:79:ba:b7:27:ff:f0:fe:c5:77:
ca:04:4f:45:db:bc:3e:24:47:96:19:b5:41:15:bf:
da:90:9a:8f:43:0f:c7:ff:f0:05:fc:7d:dd:1e:e5:
9f:94:8d:8b:47:ea:77:9d:fb:8f:f6:d3:af:c8:ae:
fe:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8C:97:D4:B1:59:B3:FE:69:56:0F:35:88:18:89:5D:42:64:91:34
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/LoyX1LFZs_5pVg81iBiJXUJkkTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.161.92.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:d5:53:0e:54:4d:9e:d9:f7:3f:bf:b4:28:9c:16:da:9f:05:
87:63:fc:a5:6d:75:72:10:7d:30:cb:b6:ae:78:be:de:17:2b:
11:95:ba:46:de:c5:0e:82:a9:12:6c:fb:8a:72:73:5d:85:34:
07:c8:e3:57:29:04:d2:ca:6c:bb:49:29:01:f4:a6:0b:0e:2f:
42:75:ad:cd:fe:7e:e3:e7:db:19:be:b4:18:c1:78:66:32:36:
34:cc:11:ee:82:29:dc:41:82:f0:23:84:10:8f:88:de:10:24:
a2:27:c8:84:80:d4:97:ea:40:ce:31:ae:00:db:e7:c3:16:9c:
be:78:ed:fb:02:eb:b5:7f:4e:a7:58:1e:76:d5:63:aa:50:15:
7f:69:cc:91:f0:86:f7:57:3a:5e:d2:45:2d:8d:7d:ec:99:b4:
f8:f9:25:b7:0b:be:03:27:25:5b:a4:4c:f3:5e:41:bc:15:11:
8c:ea:4d:96:c9:71:c0:cb:9d:e9:33:20:9c:03:2f:33:5e:79:
fc:db:25:c7:bb:3a:e9:f2:a4:d7:40:f6:dd:61:ec:fb:10:30:
63:b6:40:04:c0:ba:12:d3:d1:01:45:a4:06:1c:f4:36:8c:4c:
e7:9b:f8:8d:37:cf:21:35:64:5e:0b:3c:cf:3a:0c:c1:15:43:
fd:fb:b7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:29:30 2025 by rpki-client