Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/HcWWpMv7n1L7KfMOwR398zsY8pw.roa
File: HcWWpMv7n1L7KfMOwR398zsY8pw.roa (raw, json)
Hash identifier: MLz6K7fDS2iqmGTwTcVPs+rNIWxaa7oREYHQwVrxm+E=
Subject key identifier: 1D:C5:96:A4:CB:FB:9F:52:FB:29:F3:0E:C1:1D:FD:F3:3B:18:F2:9C
Certificate issuer: /CN=3c8d19d9240191c36a974b62df93c221436d9bdd
Certificate serial: 01856C4134C129F4A65454E7698ED8126D59
Authority key identifier: 3C:8D:19:D9:24:01:91:C3:6A:97:4B:62:DF:93:C2:21:43:6D:9B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI0Z2SQBkcNql0ti35PCIUNtm90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/HcWWpMv7n1L7KfMOwR398zsY8pw.roa
Signing time: Sun 01 Jan 2023 07:34:50 +0000
ROA not before: Sun 01 Jan 2023 07:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 195.226.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:34:c1:29:f4:a6:54:54:e7:69:8e:d8:12:6d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8d19d9240191c36a974b62df93c221436d9bdd
Validity
Not Before: Jan 1 07:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dc596a4cbfb9f52fb29f30ec11dfdf33b18f29c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f5:9a:d1:c0:59:c4:63:9e:5f:e6:c0:a0:0f:
7f:74:e7:4a:82:21:54:39:2b:7e:2e:ea:80:fc:59:
c4:1a:fe:0c:fc:dd:8b:66:42:5c:4c:22:1e:73:df:
48:ba:c2:61:07:4a:00:2f:27:70:47:2c:22:74:af:
83:93:05:bf:df:32:1d:60:70:a2:ee:39:2a:23:5c:
82:c5:02:4c:90:67:0a:d8:f1:77:d9:a8:99:72:56:
ad:83:33:3a:a6:17:fa:0b:f8:e2:fe:29:63:5b:1c:
69:41:5f:76:48:43:97:c8:2c:78:40:b7:1c:a4:f6:
dc:fe:65:f4:c2:23:a2:89:ec:05:5e:5d:79:ff:b3:
f7:fa:71:5a:7a:5d:5b:0c:7a:d8:74:b5:88:67:fe:
0d:33:67:7e:d8:d7:4e:e0:32:74:a9:62:18:85:11:
a5:39:56:b5:dc:c6:13:71:54:a9:c7:c1:54:69:b1:
6c:c6:27:9a:40:7d:e5:bc:dc:02:13:59:7c:4e:62:
07:6e:1b:c0:88:8a:a6:d7:49:8f:ad:cc:fb:06:9b:
ed:e1:9f:5b:f7:c0:33:1d:bb:fb:11:1d:d8:3e:66:
5d:93:e4:ed:1b:4f:c2:9e:99:fe:b3:ed:3e:05:71:
c7:ac:47:17:44:e1:84:a7:31:6e:ec:9c:12:d2:05:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C5:96:A4:CB:FB:9F:52:FB:29:F3:0E:C1:1D:FD:F3:3B:18:F2:9C
X509v3 Authority Key Identifier:
keyid:3C:8D:19:D9:24:01:91:C3:6A:97:4B:62:DF:93:C2:21:43:6D:9B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI0Z2SQBkcNql0ti35PCIUNtm90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/HcWWpMv7n1L7KfMOwR398zsY8pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.196.0/24
Signature Algorithm: sha256WithRSAEncryption
25:2d:85:7a:a9:9e:51:7a:87:37:73:3c:ff:38:3c:8f:d6:b8:
8c:94:85:71:50:fd:1e:41:61:e8:2b:25:9d:e3:f2:da:34:12:
96:27:77:b5:32:97:cd:c8:f9:94:af:dc:65:85:64:41:a3:54:
40:4b:64:af:ae:fd:94:c3:66:de:14:f4:28:5e:3a:ff:26:de:
ed:03:9a:1e:f4:f2:bc:d9:ec:c0:e0:3c:2e:78:8c:6c:9c:a9:
65:2b:42:ff:da:38:77:7c:7a:d4:e1:ce:50:a0:f8:40:68:c1:
2e:79:e1:17:e2:75:4a:b2:d3:39:0e:9d:eb:3d:a0:9a:98:35:
66:2c:15:25:6e:1a:8c:c2:ed:de:d3:37:d1:64:a7:20:ef:d2:
ae:69:0e:f1:2e:9f:72:a3:00:8c:d0:02:4d:f0:9e:81:d2:bd:
0f:bc:1a:b0:32:69:45:8b:95:15:57:9b:ac:88:d7:85:b4:30:
02:b1:ad:70:64:ca:0d:4b:79:5c:9a:83:6d:dc:8d:6f:36:75:
ef:12:cc:6b:c5:4d:54:ae:15:9b:7d:6a:d6:97:d3:47:ee:ff:
dc:c5:53:e0:71:54:24:8f:ca:b4:2b:dd:c5:f0:12:2f:c0:f1:
43:b2:2c:02:97:b0:ca:b9:0d:fe:03:57:a9:a9:6c:46:94:21:
26:ae:9d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:29 2025 by rpki-client