Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/Z6JcoqRMP1c-8WEM9Ght0HNTwoU.roa
File: Z6JcoqRMP1c-8WEM9Ght0HNTwoU.roa (raw, json)
Hash identifier: qn/2VZFNvlvyp5pp/CTJ7OZkg0UeojK3s99f/KXBEcY=
Subject key identifier: 67:A2:5C:A2:A4:4C:3F:57:3E:F1:61:0C:F4:68:6D:D0:73:53:C2:85
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 0730417B
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/Z6JcoqRMP1c-8WEM9Ght0HNTwoU.roa
Signing time: Sat 01 Jan 2022 00:55:12 +0000
ROA not before: Sat 01 Jan 2022 00:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 195.248.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120603003 (0x730417b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Jan 1 00:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67a25ca2a44c3f573ef1610cf4686dd07353c285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6d:76:fe:75:d3:52:8d:2c:27:a9:1f:c2:7c:
c5:b2:40:e6:d7:0a:cf:40:4d:30:48:1f:fd:51:19:
9c:18:0d:0c:cc:e0:b7:25:82:6d:89:59:db:cb:02:
a5:79:f0:f6:fd:4e:70:ec:c2:75:34:d8:1b:38:bd:
a6:3b:3d:8d:cb:7d:2a:e2:4d:ed:44:53:8f:b6:69:
e0:b7:aa:a7:15:39:ff:8a:73:0e:ed:fb:2f:62:d8:
de:17:b2:dc:56:dc:2d:68:53:55:5c:48:8f:ac:c9:
95:df:1f:1e:60:06:02:bc:04:02:d2:98:e7:25:96:
82:fe:07:64:55:97:77:70:cc:87:92:9d:4e:41:94:
14:46:54:da:14:78:8e:46:53:43:56:a2:18:64:e3:
a5:93:71:7a:99:96:e2:bd:f0:27:2e:1d:c6:e2:a0:
ab:c8:ab:04:c0:de:7a:4b:8b:c1:ad:d0:12:f9:ff:
c8:29:07:22:37:2e:95:fe:cb:7a:f9:3a:8b:1b:92:
8b:d3:92:27:81:db:1d:df:ae:0e:08:d3:85:68:34:
fc:f3:41:fb:c9:ac:fe:2f:71:15:5c:d5:0f:dc:80:
ac:bd:83:c7:5b:de:23:1a:bb:22:66:33:9c:a3:a4:
4c:33:02:67:57:f8:27:26:cf:3e:e4:c0:d4:24:1d:
d9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A2:5C:A2:A4:4C:3F:57:3E:F1:61:0C:F4:68:6D:D0:73:53:C2:85
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/Z6JcoqRMP1c-8WEM9Ght0HNTwoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:e0:99:71:2f:7f:c5:7c:27:41:b2:b3:2d:33:20:42:76:05:
2c:f8:d0:44:5d:69:62:81:ba:6b:9a:46:52:0f:fa:c9:b3:9a:
fb:bd:01:84:8d:1b:36:9f:1a:d7:ae:27:f6:5d:be:25:8c:9a:
c9:b7:3f:19:70:13:81:87:5f:a2:6e:05:d0:28:ba:da:88:fc:
6a:20:89:8a:72:4a:bc:f2:8b:0e:43:a0:22:2c:b7:c7:31:d0:
dd:14:d0:fa:c2:c4:d6:6c:29:ae:54:f2:15:04:95:02:f4:2b:
3d:b3:90:6a:28:97:7b:6f:fb:09:b4:e0:7a:c6:02:ad:eb:b8:
10:ce:08:ac:f4:44:45:d7:19:dc:b8:11:20:c3:00:38:4c:8c:
58:68:a1:d6:57:76:8c:13:6e:b5:5a:3e:78:91:9f:40:a6:ee:
c1:c0:52:ad:38:b7:f0:8a:02:4c:46:3b:d9:6a:09:d4:66:5f:
69:25:72:da:08:fe:ba:f5:27:d4:6b:84:ac:93:73:54:28:92:
e7:2d:31:92:9f:c0:e5:36:3d:b9:99:20:56:e5:95:71:b4:3a:
22:b7:b2:36:d4:43:a0:50:db:92:3a:b5:66:0b:8e:a7:77:96:
73:bc:0f:9c:13:97:c9:87:3a:c4:5a:ae:54:10:0e:e7:7b:ee:
98:85:79:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:11 2025 by rpki-client