Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/bf86b0-c5ed-4bdd-a917-682cd3bd4102/1/jBgDnZtXKdwfv7CVh1fX2-WW19o.roa
File: jBgDnZtXKdwfv7CVh1fX2-WW19o.roa (raw, json)
Hash identifier: tlpTQIoYTOhEjWynfRzhJ9sWa5cBbPCQdinhvQvIUt0=
Subject key identifier: 8C:18:03:9D:9B:57:29:DC:1F:BF:B0:95:87:57:D7:DB:E5:96:D7:DA
Certificate issuer: /CN=1627b80681f5b48e126898295983e0df29971b98
Certificate serial: 0156B8D6
Authority key identifier: 16:27:B8:06:81:F5:B4:8E:12:68:98:29:59:83:E0:DF:29:97:1B:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fie4BoH1tI4SaJgpWYPg3ymXG5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/bf86b0-c5ed-4bdd-a917-682cd3bd4102/1/jBgDnZtXKdwfv7CVh1fX2-WW19o.roa
Signing time: Sat 01 Jan 2022 13:59:12 +0000
ROA not before: Sat 01 Jan 2022 13:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39387
IP address blocks: 195.178.118.0/23 maxlen: 23
2001:67c:300::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22460630 (0x156b8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1627b80681f5b48e126898295983e0df29971b98
Validity
Not Before: Jan 1 13:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c18039d9b5729dc1fbfb0958757d7dbe596d7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b8:fd:f3:6d:c7:00:e8:f7:36:8f:14:12:ae:
8a:38:0c:8b:dc:fa:7a:b9:eb:60:85:58:86:51:f8:
3a:a7:be:ca:90:34:23:a5:ce:f9:ca:e8:0d:3e:1b:
a0:9b:5f:63:73:f8:8b:46:78:d9:1a:08:45:0e:9d:
b2:41:8f:9f:52:5a:17:cf:20:31:db:04:cd:2f:1d:
93:f3:32:5c:cb:bb:6b:f8:09:ea:fa:39:2f:8c:62:
c0:48:a7:91:dc:43:4d:9d:fc:99:6d:c0:47:9b:c0:
4d:17:28:db:10:81:0a:88:d3:95:04:49:af:df:88:
23:0c:46:e4:49:68:9d:72:f4:f2:d7:ae:ff:d5:da:
5b:4a:50:8d:7a:bb:cd:57:4b:1d:1f:5d:a1:c8:43:
ed:3e:92:82:93:2a:72:49:40:7e:85:15:85:d3:82:
35:b2:25:19:d5:ce:4d:b5:de:15:ec:b5:11:7e:a0:
ba:7a:84:15:3b:ec:6d:13:05:7d:46:f4:fc:94:33:
c0:ed:8e:bd:fd:e4:e9:6a:27:22:73:3f:f2:68:48:
49:ef:01:7d:9a:19:44:2a:e4:f2:58:c7:7e:0d:7d:
f4:2b:f9:12:fd:cb:2e:ca:42:91:4c:ec:d3:f9:da:
9c:30:15:00:6c:69:77:de:c1:56:8c:59:23:6b:fd:
5b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:18:03:9D:9B:57:29:DC:1F:BF:B0:95:87:57:D7:DB:E5:96:D7:DA
X509v3 Authority Key Identifier:
keyid:16:27:B8:06:81:F5:B4:8E:12:68:98:29:59:83:E0:DF:29:97:1B:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fie4BoH1tI4SaJgpWYPg3ymXG5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/bf86b0-c5ed-4bdd-a917-682cd3bd4102/1/jBgDnZtXKdwfv7CVh1fX2-WW19o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/bf86b0-c5ed-4bdd-a917-682cd3bd4102/1/Fie4BoH1tI4SaJgpWYPg3ymXG5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.118.0/23
IPv6:
2001:67c:300::/48
Signature Algorithm: sha256WithRSAEncryption
b7:f7:82:99:e3:c5:76:4b:5c:9c:f7:d1:42:f5:d5:d6:e0:d2:
d3:c9:26:31:05:18:66:1f:73:7e:e9:1a:6d:45:03:f6:c8:cf:
9c:a9:70:64:81:c3:a2:41:5d:a7:99:8d:9f:15:04:da:c4:6c:
0c:8e:0b:ac:be:a4:47:95:f9:b7:26:e8:4e:ec:51:bc:97:e6:
59:23:66:08:e7:dc:5e:14:46:f6:e3:cd:ec:23:56:38:91:ff:
64:ef:ff:51:5b:e6:6d:4b:73:80:a6:ad:51:b9:04:cf:9f:81:
46:ec:7f:e7:23:af:33:ba:51:b1:33:a3:a8:b2:bd:90:f9:c2:
fe:ee:17:93:50:3f:01:eb:a1:5b:12:b6:54:aa:a7:a1:b4:3a:
e1:e7:59:84:8b:29:b4:e7:8a:0c:d4:01:5a:c9:5c:c1:9e:18:
30:26:af:d3:d3:b9:ba:99:4f:84:62:16:25:09:0b:d4:e6:6b:
6f:5d:3c:29:c8:d7:61:6c:0f:c7:5a:3c:5c:ec:9d:d2:9b:3f:
7c:17:aa:dc:8d:aa:cb:60:5c:6b:d7:b3:ee:0c:bd:99:e5:e1:
bf:2b:14:80:3c:f3:26:e3:13:5b:4c:fd:b3:43:4d:5b:db:98:
15:93:0c:d7:62:7a:d6:0a:85:44:e8:ed:73:1f:f2:b0:58:09:
59:0a:77:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:46:29 2025 by rpki-client