Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/bWDyFD0svEu1nGDxq3CQ6SDyt2g.roa
File: bWDyFD0svEu1nGDxq3CQ6SDyt2g.roa (raw, json)
Hash identifier: KmeR2a3fjYDKz3XyuSGdZDCGDfCqU9k0ffppYKF+msA=
Subject key identifier: 6D:60:F2:14:3D:2C:BC:4B:B5:9C:60:F1:AB:70:90:E9:20:F2:B7:68
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B058F1B550A6CE26BB9D8CB0C4B39
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/bWDyFD0svEu1nGDxq3CQ6SDyt2g.roa
Signing time: Sun 01 Jan 2023 13:35:05 +0000
ROA not before: Sun 01 Jan 2023 13:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47299
IP address blocks: 195.65.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:05:8f:1b:55:0a:6c:e2:6b:b9:d8:cb:0c:4b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d60f2143d2cbc4bb59c60f1ab7090e920f2b768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:81:ee:0a:29:d2:b7:74:42:0f:66:62:68:39:
b3:28:b6:e6:0d:41:a7:7a:a5:82:da:62:b5:93:f6:
5e:2a:99:b7:0f:53:9f:e8:e4:53:71:70:cf:30:09:
fa:e8:fb:90:c5:2d:26:a5:3a:d7:00:97:ac:74:13:
e6:a5:4d:03:f7:c8:47:84:8e:e5:dd:6e:0c:f7:fc:
84:dd:d6:b6:fc:fc:32:26:e6:db:d4:3d:d2:2c:46:
6a:bf:57:b5:9d:1b:26:77:4c:8f:58:39:56:a9:64:
a7:76:de:d8:00:84:49:5b:0f:bc:3d:b3:b2:d5:9d:
62:93:7f:40:81:01:20:e1:de:7e:ab:4d:03:8f:6a:
88:60:e7:b8:40:80:c1:ac:a7:e6:c4:1d:d7:7b:bc:
cf:74:77:39:99:4a:d2:4d:f3:b2:3b:1e:9d:56:42:
3f:8d:a8:f3:9a:0e:03:79:7b:3f:08:60:f1:a5:5d:
c5:19:64:e3:a4:e9:7f:f9:8f:05:7b:fe:9d:8d:69:
18:c9:ca:15:c5:0c:ca:74:57:b4:fb:66:03:61:f4:
a9:d3:ea:e6:35:38:b4:7b:ef:f5:13:85:9f:f0:98:
ef:7e:37:49:fd:0e:43:38:5c:82:15:3c:dc:94:c5:
d3:d5:c2:5c:be:33:c0:bd:06:a5:0c:c4:70:b0:6b:
6b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:60:F2:14:3D:2C:BC:4B:B5:9C:60:F1:AB:70:90:E9:20:F2:B7:68
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/bWDyFD0svEu1nGDxq3CQ6SDyt2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.65.37.0/24
Signature Algorithm: sha256WithRSAEncryption
16:8a:f7:50:93:ad:89:b6:d4:5f:c0:9a:35:46:33:04:d5:a3:
c5:a0:16:86:3c:a8:41:53:c5:73:0d:af:53:ff:f7:0c:d7:3c:
56:70:48:a0:5e:5a:47:f0:a4:6b:66:75:b2:6a:7a:a7:c2:2f:
6f:2b:e3:f0:3d:1d:b9:4f:15:61:16:be:49:7d:7d:10:a4:11:
ad:13:a1:0a:98:02:42:20:29:fe:66:61:f3:b7:bf:ab:be:cf:
3b:20:ae:e2:de:99:e6:98:1a:bc:5e:23:17:30:4b:5f:cc:29:
fe:87:fa:ba:54:53:b7:1b:fe:fd:03:b7:7f:11:4d:0d:8e:4b:
4f:b0:07:ea:a7:4a:aa:e4:e2:65:5b:c0:25:17:2d:1d:70:ca:
13:16:6f:fe:8a:30:7e:cf:c9:6b:a4:24:3c:ce:9b:8c:5a:60:
f9:c9:65:6e:15:96:b6:59:62:05:44:52:92:9f:a8:12:2b:2e:
0c:83:7a:ff:19:a8:49:c9:f7:e8:46:a8:be:1e:23:b7:bb:95:
6f:9c:a7:05:c1:45:22:47:a3:7b:f4:05:95:80:94:6a:5c:ca:
be:61:32:79:40:ec:b4:ba:31:e3:3e:21:ab:17:e3:2f:eb:da:
da:e2:f4:d2:ee:b0:6c:e0:45:24:de:6f:38:92:e2:41:ae:ac:
02:c3:96:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:27:44 2025 by rpki-client