Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/l1RJs-AgjnvQ82hmOpev0irzzys.roa
File: l1RJs-AgjnvQ82hmOpev0irzzys.roa (raw, json)
Hash identifier: R3iJX/t0N1gimX4uZz57M5kTTtJeucCnWCUWU4w8lEA=
Subject key identifier: 97:54:49:B3:E0:20:8E:7B:D0:F3:68:66:3A:97:AF:D2:2A:F3:CF:2B
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 037DA448
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/l1RJs-AgjnvQ82hmOpev0irzzys.roa
Signing time: Sat 01 Jan 2022 10:54:29 +0000
ROA not before: Sat 01 Jan 2022 10:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60893
IP address blocks: 195.80.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58565704 (0x37da448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: Jan 1 10:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=975449b3e0208e7bd0f368663a97afd22af3cf2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ed:3d:7b:ba:32:0a:3a:b1:a7:79:4f:a0:36:
a3:15:5f:da:e4:5e:36:29:0e:67:94:22:06:3b:ba:
32:33:5d:58:94:e4:27:93:31:d6:7c:7a:67:eb:af:
3b:b2:33:33:db:7a:5f:e7:01:01:ee:88:5d:84:a3:
4d:41:52:7d:f6:29:10:d3:2c:04:8c:3e:36:e0:41:
7c:a1:39:0d:e0:82:cf:11:a0:56:fa:50:ff:aa:b0:
45:17:7e:6a:41:fa:c3:87:b6:95:5c:67:31:4a:25:
34:ba:f8:26:1e:8f:cd:b5:95:cc:f7:6e:01:62:5b:
8d:61:d0:a2:f3:55:f8:08:41:cb:9d:d8:91:4f:2e:
98:b5:74:99:3d:50:d9:37:ec:9a:05:79:74:ac:7e:
7c:9c:be:5e:80:68:eb:62:e7:a9:df:af:be:13:e5:
f9:f0:e2:d0:a0:45:9a:13:f7:c0:8c:ee:ae:b9:a4:
8e:fc:81:e2:33:b2:1b:68:83:e8:8f:b4:ef:44:6e:
40:de:99:56:b7:fc:25:c0:8b:e4:83:1f:79:1c:de:
fa:33:8c:66:4f:78:26:8c:5f:d4:dd:ac:4e:fd:60:
b2:8a:f2:db:ed:84:1d:22:d4:66:91:4d:ec:5a:93:
df:4c:d4:41:fd:de:df:5a:96:91:21:85:04:08:d8:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:54:49:B3:E0:20:8E:7B:D0:F3:68:66:3A:97:AF:D2:2A:F3:CF:2B
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/l1RJs-AgjnvQ82hmOpev0irzzys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:78:09:06:a6:5c:55:63:69:ff:b7:96:38:58:61:03:4d:dd:
29:49:ff:75:3f:7b:f7:14:7a:84:80:a6:a9:ba:e5:ce:30:a0:
ec:57:f3:0e:43:56:ba:9b:c2:52:5d:39:9c:c1:86:52:46:16:
91:eb:f4:c5:32:bf:55:7c:94:a6:4f:fc:e6:b5:28:ef:de:e6:
72:82:ef:eb:21:11:f4:bd:61:f2:12:f8:a1:e8:51:7d:cd:ef:
d5:fa:e0:a7:4d:55:9e:33:65:c8:17:8e:b2:2b:7e:34:72:e4:
df:5d:6d:b1:d9:d6:7f:12:82:d8:10:ab:52:97:76:5e:7a:86:
c8:64:a0:63:38:5d:98:01:7d:b9:c4:e3:a5:cc:2d:18:14:34:
08:49:ca:9c:a5:84:91:8c:b5:4b:d9:0a:c1:57:14:f9:0d:bd:
15:9e:ff:19:ca:f0:be:3f:43:a0:13:f1:e7:e7:23:53:1f:e5:
89:0b:b6:5e:57:88:94:02:fc:6f:8f:cc:fb:ea:23:c9:98:47:
36:ba:3f:f7:f4:19:29:19:34:0c:ff:4c:b3:ab:aa:b4:ee:bb:
be:ec:eb:8c:f2:0f:d5:2f:27:39:bf:d1:06:ac:44:84:95:33:
3d:c5:a8:93:cb:b7:8d:47:a9:38:a0:21:9a:5f:de:e5:58:bc:
73:05:1b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:19 2025 by rpki-client