Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5i9JBBQdIs3djAlsOuM584WwQ9M.roa
File: 5i9JBBQdIs3djAlsOuM584WwQ9M.roa (raw, json)
Hash identifier: j1DG0dbOA5KabynOAizxvHdnDlXBa9/LHMA8/AmXdjs=
Subject key identifier: E6:2F:49:04:14:1D:22:CD:DD:8C:09:6C:3A:E3:39:F3:85:B0:43:D3
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018A8ED89E3B0F6ADC0833D841A2460C6625
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5i9JBBQdIs3djAlsOuM584WwQ9M.roa
Signing time: Wed 13 Sep 2023 14:01:15 +0000
ROA not before: Wed 13 Sep 2023 14:01:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 269800
IP address blocks: 95.164.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:d8:9e:3b:0f:6a:dc:08:33:d8:41:a2:46:0c:66:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Sep 13 14:01:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e62f4904141d22cddd8c096c3ae339f385b043d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8b:9f:50:84:36:29:44:61:a7:63:1f:d1:e6:
4b:44:02:89:b6:32:e8:26:01:8a:87:9d:dc:3d:43:
45:da:56:dc:4e:7f:dc:36:31:16:8f:64:72:3d:91:
fb:3e:c1:68:e5:99:72:d2:f7:29:78:2f:cb:28:bb:
a3:01:b4:d1:48:3e:cc:ba:44:58:f1:a8:50:72:ee:
fd:5b:eb:64:d7:0e:b9:a1:4a:db:30:c0:b7:b7:15:
11:98:c6:14:a9:39:8d:ef:2a:63:0d:ae:0e:65:0c:
5c:fd:51:c3:6c:30:eb:11:2e:d9:ef:f0:82:09:7a:
d2:c5:ef:57:dd:6a:72:87:d1:53:b0:37:11:8a:3b:
8e:55:dd:18:1b:e0:95:96:2d:4c:8a:69:52:80:15:
22:d7:1d:21:9e:70:c3:85:b6:27:5b:c9:cf:61:28:
75:90:d1:1b:9f:95:00:ef:41:83:f4:a6:e5:a6:f1:
ff:97:ca:8c:ce:ca:33:44:1e:89:fa:13:1e:3b:84:
64:3e:df:c1:e1:81:fb:3a:5c:68:9a:8f:8b:be:ca:
5f:22:00:c0:5d:5f:d5:0f:50:8d:38:25:fc:60:41:
ab:44:01:18:f3:9b:6b:8b:72:ba:ec:a6:4e:73:1b:
4e:03:94:da:26:d4:20:8b:7b:aa:59:9b:0e:7d:65:
1a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2F:49:04:14:1D:22:CD:DD:8C:09:6C:3A:E3:39:F3:85:B0:43:D3
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5i9JBBQdIs3djAlsOuM584WwQ9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.236.0/22
Signature Algorithm: sha256WithRSAEncryption
09:9d:84:f1:0e:a0:69:e8:b0:6b:e5:e7:8e:a0:7f:52:0c:6f:
4f:85:23:a8:88:47:49:3d:03:2e:58:02:00:4d:c4:f3:c9:a1:
9d:7d:f7:88:61:de:5b:41:8a:6f:41:0e:f5:d9:a1:c8:fa:e2:
5c:b0:9e:ed:1c:56:d8:4a:86:4e:8e:9e:46:19:46:9c:e1:13:
ad:7a:03:63:0d:35:9f:2f:15:3b:6d:4b:d7:f1:56:41:37:3d:
b5:e6:02:0f:a3:27:64:94:41:5b:41:98:37:d8:5a:64:51:4c:
0c:d8:72:0d:7b:f3:1c:1e:03:69:44:c5:78:84:26:a6:ae:ae:
28:0f:fa:e3:2a:a7:d9:7e:23:8c:23:5c:e3:35:88:51:b9:fc:
96:36:3f:70:9e:74:25:2b:4b:3e:9c:df:d8:9e:1b:a7:b5:31:
c3:a5:80:09:da:38:2c:b1:cb:27:76:78:e5:e0:25:5f:12:21:
a7:fc:98:db:83:cb:b0:7e:c1:bb:9e:ef:34:23:84:46:35:66:
5b:e3:fc:bf:de:56:a1:8d:77:a4:60:1d:54:be:b0:11:67:7b:
61:09:00:b5:03:ee:62:ee:9f:0e:b7:76:c4:7c:c7:2b:9d:e5:
aa:f2:09:7c:a0:24:56:84:b4:74:23:90:5c:47:96:d4:bd:9c:
e6:73:ed:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:57:28 2025 by rpki-client