Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hOvLsVBoYRa9rPjth0SJSWo4bss.roa
File: hOvLsVBoYRa9rPjth0SJSWo4bss.roa (raw, json)
Hash identifier: ncvcVBSB8EDMUHqJEcp79D4o88AQGajyLZwgwJ6saz4=
Subject key identifier: 84:EB:CB:B1:50:68:61:16:BD:AC:F8:ED:87:44:89:49:6A:38:6E:CB
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B08DCC4F9EAED1E9D42BA053545FE
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hOvLsVBoYRa9rPjth0SJSWo4bss.roa
Signing time: Sun 01 Jan 2023 13:35:06 +0000
ROA not before: Sun 01 Jan 2023 13:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50476
IP address blocks: 195.65.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:08:dc:c4:f9:ea:ed:1e:9d:42:ba:05:35:45:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84ebcbb150686116bdacf8ed874489496a386ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:90:23:21:0c:0f:19:8f:31:5c:76:15:76:8e:
6b:0a:be:70:0e:06:04:0d:73:98:28:98:53:d6:a6:
d5:50:b5:5d:7e:3f:95:5d:5a:f5:e4:bf:b6:34:5b:
6a:fe:08:34:85:28:0f:88:8b:c1:25:d6:7f:f2:e1:
68:4c:45:e6:fb:2a:4d:9d:22:01:36:76:f6:54:38:
ec:39:0b:d1:41:c9:22:64:37:26:e2:7b:b2:88:e6:
d7:77:8b:8c:80:cf:4b:6f:c3:88:82:ea:4f:32:a6:
4f:f4:cf:a2:b1:f9:17:ad:9c:ca:d7:cc:f6:de:33:
b4:97:e3:5b:5d:24:b8:fa:23:3e:84:c9:db:32:80:
cf:f1:c1:e8:a3:18:bc:56:1a:d7:19:64:27:3c:20:
7c:7c:cc:90:4d:57:d5:d9:e3:3c:9a:a0:39:21:4a:
6a:73:2f:19:a7:24:a8:99:d5:27:67:46:f4:fa:5c:
db:0d:73:40:ef:11:e3:77:8d:9b:19:26:4f:9f:80:
9a:d8:c6:23:d8:3b:69:dc:70:e7:54:80:61:3f:b1:
f6:d2:c6:d3:6c:ef:78:19:08:30:af:0c:db:c7:c1:
9b:c5:1f:ad:ad:04:dd:f9:8a:22:e2:49:4b:cb:3b:
21:0a:9b:34:69:b7:1e:34:3e:40:1c:fc:7b:d5:01:
a7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EB:CB:B1:50:68:61:16:BD:AC:F8:ED:87:44:89:49:6A:38:6E:CB
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hOvLsVBoYRa9rPjth0SJSWo4bss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.65.93.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3b:4a:7f:c1:7a:b1:51:2e:31:c3:ee:ec:e0:73:18:b7:85:
22:11:07:c3:ef:d5:d0:38:e1:05:8e:72:62:0d:fd:94:34:a1:
4b:26:a7:67:52:9b:3b:9d:71:d5:40:7f:ae:ef:c2:62:20:55:
85:01:e8:86:80:00:a7:f9:5c:b0:d1:03:90:53:17:eb:bb:89:
21:d1:26:8e:d3:5b:df:23:52:28:8a:f4:74:40:a6:e8:ec:33:
c3:54:36:cc:65:8e:26:13:94:a7:32:d8:6b:6c:a7:2b:2b:60:
ac:d5:37:cb:4d:7f:6a:8c:97:9c:ef:0f:48:87:ac:f6:a6:67:
54:ec:f6:c8:f7:f5:67:ee:bc:00:1b:1c:41:ce:6b:6a:27:6b:
cf:95:70:25:8b:52:11:90:52:c6:f2:c9:41:72:ec:14:3e:e2:
ec:45:19:9e:9f:98:52:67:a1:45:36:20:53:83:3e:4b:8d:0e:
30:c7:48:15:15:c8:a6:7a:d3:ef:6e:15:f4:ac:29:c2:1d:64:
28:a5:81:06:81:7e:82:77:7b:f1:dc:3c:b3:9f:33:3e:95:fe:
8d:39:1d:73:d2:40:76:d6:fd:6a:0e:c6:87:b8:03:a7:2d:58:
82:67:03:c5:49:8d:63:73:44:49:f4:cb:96:af:01:ed:2c:37:
a7:ad:44:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:32:04 2025 by rpki-client