Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/0e3d64-f290-4893-9a40-c9e141333d58/1/7us66qTTd88WPFi6UEpz1yz4_Uo.roa
File: 7us66qTTd88WPFi6UEpz1yz4_Uo.roa (raw, json)
Hash identifier: /qYFDCl31YWcemvVu6KVKdD0XqeP0VWOC0EQZkESfKM=
Subject key identifier: EE:EB:3A:EA:A4:D3:77:CF:16:3C:58:BA:50:4A:73:D7:2C:F8:FD:4A
Certificate issuer: /CN=b53d9f1bc3f0d90b6dcd1e9f6fd1e506188ea7c2
Certificate serial: 0187E20EA35F1E17217CC026DDAC5860A96B
Authority key identifier: B5:3D:9F:1B:C3:F0:D9:0B:6D:CD:1E:9F:6F:D1:E5:06:18:8E:A7:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT2fG8Pw2QttzR6fb9HlBhiOp8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/0e3d64-f290-4893-9a40-c9e141333d58/1/7us66qTTd88WPFi6UEpz1yz4_Uo.roa
Signing time: Wed 03 May 2023 14:40:22 +0000
ROA not before: Wed 03 May 2023 14:40:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199560
IP address blocks: 185.95.208.0/22 maxlen: 24
2a05:fc00::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:0e:a3:5f:1e:17:21:7c:c0:26:dd:ac:58:60:a9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53d9f1bc3f0d90b6dcd1e9f6fd1e506188ea7c2
Validity
Not Before: May 3 14:40:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeeb3aeaa4d377cf163c58ba504a73d72cf8fd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:be:6e:90:e9:5a:05:30:52:78:ba:d2:7e:18:
fb:43:bb:5f:e1:eb:4d:51:a4:fc:e6:66:2c:de:d7:
13:8d:0a:84:2f:99:ec:91:a4:8e:04:f1:01:36:91:
1f:ff:4f:65:46:a7:43:fc:8c:82:a3:db:3f:1e:f5:
9c:0c:70:68:30:a8:5c:d6:e3:b9:e7:d9:e1:ca:76:
7a:e3:4d:d9:e6:65:b9:cb:75:cf:e8:bc:72:44:7e:
47:fc:9a:f5:a7:7a:1a:94:ef:48:db:1c:af:e2:2f:
08:3f:12:b4:3a:70:94:ca:d0:bd:bd:61:f1:bd:8d:
31:77:88:93:8f:5e:81:b9:4d:ec:ff:13:85:94:e1:
15:22:95:cc:4d:96:9e:ea:1f:f8:26:31:bb:ae:c4:
2c:b9:e9:95:65:0a:2a:8e:fc:82:80:75:d2:08:ea:
23:df:a4:cf:b1:4d:81:2b:11:24:0d:4c:9a:70:f1:
38:c9:1b:7d:eb:c0:f3:aa:bb:ee:f2:93:70:0c:86:
2a:8b:15:37:af:05:02:e2:b1:54:fd:52:3e:bc:ea:
67:ef:a8:27:c6:c0:1a:09:a9:9c:cc:ca:f9:1d:12:
38:79:54:fc:bc:5b:58:b7:9a:cd:34:dd:55:ee:1b:
be:b3:b9:ac:d0:49:32:a5:40:0e:66:14:ca:d7:96:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EB:3A:EA:A4:D3:77:CF:16:3C:58:BA:50:4A:73:D7:2C:F8:FD:4A
X509v3 Authority Key Identifier:
keyid:B5:3D:9F:1B:C3:F0:D9:0B:6D:CD:1E:9F:6F:D1:E5:06:18:8E:A7:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT2fG8Pw2QttzR6fb9HlBhiOp8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/0e3d64-f290-4893-9a40-c9e141333d58/1/7us66qTTd88WPFi6UEpz1yz4_Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/0e3d64-f290-4893-9a40-c9e141333d58/1/tT2fG8Pw2QttzR6fb9HlBhiOp8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.208.0/22
IPv6:
2a05:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
b2:ab:dd:f8:5a:21:d0:b8:19:87:e2:45:a0:80:3e:92:cd:65:
2d:6f:3e:1a:4f:9f:f5:0e:aa:6a:b7:ae:3e:9b:48:74:03:d7:
aa:29:45:86:c2:e4:7a:44:63:76:fd:72:12:cb:a0:14:3e:32:
28:3d:e6:9b:91:30:a7:a9:9d:83:07:0d:ca:a2:29:eb:c2:2c:
f6:73:2a:e2:8d:21:15:7a:81:43:d8:1d:f4:1f:14:09:f5:08:
63:ec:6a:6f:be:9a:05:fe:e8:83:62:55:35:d5:0a:1b:11:a2:
05:f7:22:ba:6e:f9:cd:fa:9d:02:98:ed:16:7f:48:e5:93:78:
28:c5:3c:81:20:22:e9:8d:57:a7:c8:fd:7d:89:cc:75:3e:26:
d5:57:7d:4e:30:06:6b:1b:01:fd:64:f3:1f:a8:67:21:0c:53:
2b:47:5e:e1:63:39:9e:57:d2:dd:0a:de:50:f0:d4:7a:50:41:
c4:8a:e2:e2:e3:a0:14:bd:ac:12:34:ca:55:7d:6c:fc:a4:25:
b2:96:8a:48:d9:61:98:6c:7b:55:0c:9e:12:98:c0:67:ee:6b:
52:4e:9e:72:58:a8:90:9e:75:a0:14:84:04:88:0a:ac:88:31:
64:b3:ac:ce:cf:81:18:11:27:dd:3f:53:7a:19:d9:c5:14:62:
6a:8d:58:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:00:48 2025 by rpki-client