Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/J61HER0Gvb7rGvEynlJEWw4rKV8.roa
File: J61HER0Gvb7rGvEynlJEWw4rKV8.roa (raw, json)
Hash identifier: qJsKpQjD7ToYw5K4+P70JFUNKMEkrpZBCx+V4SQB2YI=
Subject key identifier: 27:AD:47:11:1D:06:BD:BE:EB:1A:F1:32:9E:52:44:5B:0E:2B:29:5F
Certificate issuer: /CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Certificate serial: 018571D79218218A27B45C0D84F97A6AC911
Authority key identifier: 46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/J61HER0Gvb7rGvEynlJEWw4rKV8.roa
Signing time: Mon 02 Jan 2023 09:37:11 +0000
ROA not before: Mon 02 Jan 2023 09:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16303
IP address blocks: 77.95.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:92:18:21:8a:27:b4:5c:0d:84:f9:7a:6a:c9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Validity
Not Before: Jan 2 09:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27ad47111d06bdbeeb1af1329e52445b0e2b295f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:68:9f:09:49:18:3f:95:f5:a9:c7:f1:a5:
fa:40:8d:d3:fc:dc:de:c6:f0:67:97:e2:15:86:7f:
50:18:76:f5:ca:b1:bd:2c:22:f9:b9:bd:33:3e:33:
12:24:c0:ac:b8:72:fc:f9:0e:13:64:e0:3b:08:58:
58:ba:ba:ae:bf:c8:d5:0a:b1:33:f0:12:4f:d5:ce:
dd:1a:04:25:ab:7f:8c:03:d4:e2:00:e6:d5:c9:7e:
58:7b:45:91:e6:4c:9f:3a:44:bf:8a:f4:2d:c7:af:
4b:5b:6e:b2:95:1a:49:6b:15:a3:b0:58:e6:ad:f0:
77:29:09:31:21:0f:76:15:b4:57:37:36:9a:d7:96:
5a:26:4d:0c:19:4d:01:8c:ac:28:5b:2e:51:16:40:
5f:41:ce:9e:3e:19:2e:1b:28:53:5e:94:ad:d9:f3:
07:c2:0e:bc:61:7d:8b:29:ff:10:14:0a:99:0a:df:
ad:e5:72:21:c7:00:e4:70:fb:88:58:72:9b:a2:11:
8b:7f:b7:e5:be:ba:a6:7d:d9:20:98:95:4a:e1:f4:
8d:cd:eb:e7:14:5e:0d:13:73:07:fc:d8:f5:2f:b8:
32:17:55:b6:0d:3f:3b:11:3c:e8:94:b0:14:b9:16:
01:e5:dd:0f:5a:0d:9d:cb:99:40:7f:4b:09:a8:4c:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AD:47:11:1D:06:BD:BE:EB:1A:F1:32:9E:52:44:5B:0E:2B:29:5F
X509v3 Authority Key Identifier:
keyid:46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/J61HER0Gvb7rGvEynlJEWw4rKV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/RlxixrzUz7iTO8tqYc97Pa0vsRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:98:d3:3b:f7:5c:ca:c3:e2:d3:cf:8b:e3:7f:21:38:47:8f:
75:e4:03:a8:67:41:fa:e4:bc:73:fa:f1:69:a4:80:d3:fb:52:
e0:17:47:c0:f0:f6:d2:b0:72:71:05:b1:93:5d:f4:09:01:60:
fc:5c:38:e8:7b:59:d7:87:39:8f:98:56:26:ea:e9:87:9d:6a:
70:92:67:30:f7:41:40:ba:35:d4:b9:e4:9c:ea:5a:81:48:48:
f6:5a:4e:02:a2:12:0a:d4:45:65:33:80:05:35:ca:5e:b8:87:
c8:ea:fc:88:83:75:a1:93:41:25:96:7e:25:f6:bc:2e:b8:1d:
f9:e9:2d:9c:90:96:3a:ff:8a:eb:56:3d:f1:5b:76:7c:b0:99:
59:51:d4:ab:4a:d5:a5:c5:bf:1d:9f:b4:4e:31:27:c5:02:07:
38:5f:a8:c6:f1:33:4a:12:c3:ab:ed:52:72:7e:bc:a3:7e:b7:
4d:e0:77:cc:d3:2b:b3:28:be:7f:cb:f5:e4:85:ae:05:72:63:
f6:68:84:5c:37:71:0b:8f:87:e5:7e:79:89:c6:01:e5:2f:be:
fc:84:97:82:8e:fd:cd:b7:94:7b:d9:47:1a:04:0f:de:08:36:
52:9a:f4:bf:ca:66:f9:e7:09:cb:0c:a2:a1:6a:63:71:5a:18:
d3:84:25:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 06:50:53 2025 by rpki-client