Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/XWfkzwHnrHyT9aHN2MEzsn-AzU4.roa
File: XWfkzwHnrHyT9aHN2MEzsn-AzU4.roa (raw, json)
Hash identifier: OrQkDoccuNulcVJ4NrMHaITcAPkVujERuBFPSJDHeBk=
Subject key identifier: 5D:67:E4:CF:01:E7:AC:7C:93:F5:A1:CD:D8:C1:33:B2:7F:80:CD:4E
Certificate issuer: /CN=1527455ea7fce17cfd0431985258d13e06bfa735
Certificate serial: 01856CB82ABFB539E74DCA69D3550571954C
Authority key identifier: 15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/XWfkzwHnrHyT9aHN2MEzsn-AzU4.roa
Signing time: Sun 01 Jan 2023 09:44:46 +0000
ROA not before: Sun 01 Jan 2023 09:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.95.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:2a:bf:b5:39:e7:4d:ca:69:d3:55:05:71:95:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1527455ea7fce17cfd0431985258d13e06bfa735
Validity
Not Before: Jan 1 09:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d67e4cf01e7ac7c93f5a1cdd8c133b27f80cd4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c2:c5:c1:c7:62:74:70:e6:95:f9:cb:b0:b4:
3f:5b:bf:66:af:0b:2c:fb:ef:99:ca:21:91:4a:88:
e7:26:53:96:86:41:76:18:4d:5e:b0:f0:81:f8:7f:
fa:6b:ff:00:3d:09:8a:30:28:1b:42:84:68:c5:0c:
9b:ab:1c:d0:a8:2c:9d:40:e6:5a:1b:2d:53:cd:5b:
5c:ab:23:85:97:0f:b3:06:f1:ac:5b:be:ac:0b:47:
d4:6c:d1:0f:b2:9c:f9:4b:17:8b:58:16:3b:e6:6c:
7e:7d:0d:54:35:bc:aa:3e:5b:4b:94:f7:55:88:5a:
9d:8a:c2:20:36:62:a7:bc:e6:8a:9d:1d:2b:e1:f3:
c5:1e:58:01:bd:d2:26:8e:e2:f4:b0:32:9b:64:30:
6b:8c:97:ad:5b:8e:68:8c:23:3b:ee:bb:57:64:ea:
8c:88:1b:fa:b3:c6:9e:8d:28:c1:45:af:13:5d:dc:
07:18:0e:ad:f5:da:8e:4e:0a:12:e4:40:44:09:2c:
72:49:9e:45:3b:c5:dc:c4:a5:38:c4:f8:26:ac:8a:
0d:56:95:36:08:5e:ba:94:ae:6b:19:cf:07:e2:94:
8b:bd:c3:89:95:6e:5d:2d:37:9c:ab:9c:17:b1:0a:
ed:6d:ab:7a:5f:cf:98:dd:e4:37:3f:6e:bc:4d:5f:
3b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:67:E4:CF:01:E7:AC:7C:93:F5:A1:CD:D8:C1:33:B2:7F:80:CD:4E
X509v3 Authority Key Identifier:
keyid:15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/XWfkzwHnrHyT9aHN2MEzsn-AzU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/FSdFXqf84Xz9BDGYUljRPga_pzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.174.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:14:e0:a9:62:02:86:38:0c:da:af:2f:5d:2d:ed:7d:9e:1a:
df:48:a1:33:db:22:a7:1a:4e:05:a2:0d:4c:18:1c:db:7f:84:
41:98:02:fe:3e:4b:aa:83:1a:a5:aa:eb:7b:98:6a:c7:6f:26:
c5:aa:6e:42:e5:e3:ed:e7:57:af:69:63:59:b9:05:e6:05:7a:
62:f1:9c:ab:bc:31:b2:c1:16:ee:85:74:50:29:10:5d:4d:a2:
b2:78:91:26:b1:88:ab:d7:c0:e4:27:a9:f1:1a:34:2d:e6:ee:
f4:d0:2a:31:ff:ce:fd:70:25:35:eb:ec:74:0e:33:69:fa:e3:
fd:1d:d5:5c:f1:d0:66:85:c6:83:7e:aa:58:96:c7:b0:7a:17:
7d:46:0f:05:6c:d3:3a:5f:38:26:1f:c3:1c:14:bf:13:56:4b:
62:73:39:a9:eb:d3:6f:57:4f:6a:47:59:d5:08:f6:18:b2:52:
e8:71:87:1e:e7:93:80:87:06:89:a8:d2:f1:bc:e4:b3:f8:a5:
32:70:0a:b7:43:d1:4f:f7:47:7a:19:f9:07:29:75:ab:f1:fa:
d1:aa:d1:29:9b:10:b6:ce:fc:15:96:c8:3a:3c:72:6d:be:40:
ac:94:97:1c:93:81:00:23:e6:61:6d:ce:54:c7:d0:82:00:1e:
bd:b6:29:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuCq/tTnnTcpp01UFcZVMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1Mjc0NTVlYTdmY2UxN2NmZDA0MzE5ODUyNThkMTNlMDZi
ZmE3MzUwHhcNMjMwMTAxMDk0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDY3ZTRjZjAxZTdhYzdjOTNmNWExY2RkOGMxMzNiMjdmODBjZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkcLFwcdidHDmlfnLsLQ/W79mrwss
+++ZyiGRSojnJlOWhkF2GE1esPCB+H/6a/8APQmKMCgbQoRoxQybqxzQqCydQOZa
Gy1TzVtcqyOFlw+zBvGsW76sC0fUbNEPspz5SxeLWBY75mx+fQ1UNbyqPltLlPdV
iFqdisIgNmKnvOaKnR0r4fPFHlgBvdImjuL0sDKbZDBrjJetW45ojCM77rtXZOqM
iBv6s8aejSjBRa8TXdwHGA6t9dqOTgoS5EBECSxySZ5FO8XcxKU4xPgmrIoNVpU2
CF66lK5rGc8H4pSLvcOJlW5dLTecq5wXsQrtbat6X8+Y3eQ3P268TV87hwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF1n5M8B56x8k/WhzdjBM7J/gM1OMB8GA1UdIwQY
MBaAFBUnRV6n/OF8/QQxmFJY0T4Gv6c1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlNkRlhxZjg0WHo5QkRHWVVsalJQZ2FfcHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yNGM0ZjYtMjFlZS00YjZiLWE5NDUt
OThmOGNjZDVkYjhkLzEvWFdma3p3SG5ySHlUOWFITjJNRXpzbi1BelU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8yNGM0ZjYtMjFlZS00YjZiLWE5NDUtOThmOGNjZDVkYjhk
LzEvRlNkRlhxZjg0WHo5QkRHWVVsalJQZ2FfcHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV+uMA0G
CSqGSIb3DQEBCwUAA4IBAQCpFOCpYgKGOAzary9dLe19nhrfSKEz2yKnGk4Fog1M
GBzbf4RBmAL+Pkuqgxqlqut7mGrHbybFqm5C5ePt51evaWNZuQXmBXpi8ZyrvDGy
wRbuhXRQKRBdTaKyeJEmsYir18DkJ6nxGjQt5u700Cox/879cCU16+x0DjNp+uP9
HdVc8dBmhcaDfqpYlsewehd9Rg8FbNM6XzgmH8McFL8TVkticzmp69NvV09qR1nV
CPYYslLocYce55OAhwaJqNLxvOSz+KUycAq3Q9FP90d6GfkHKXWr8frRqtEpmxC2
zvwVlsg6PHJtvkCslJcck4EAI+Zhbc5Ux9CCAB69timN
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:20 2025 by rpki-client