Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/818142-c138-44bb-922b-d305730b5368/1/1-TG41xiPzOzEgH2eChmRHyS54o.roa
File: 1-TG41xiPzOzEgH2eChmRHyS54o.roa (raw, json)
Hash identifier: KZYVAXuJLFPSJeCVCC8/2ZSeCiBHAXnsQJhIAdsTBE0=
Subject key identifier: D7:E4:C6:E3:5C:62:3F:33:B3:12:01:F6:78:28:66:44:7C:92:E7:8A
Certificate issuer: /CN=dd52ad090b54678e0968e69955c25049434d96c8
Certificate serial: 0181FBE221F30796D5238BDEE604A5F550D9
Authority key identifier: DD:52:AD:09:0B:54:67:8E:09:68:E6:99:55:C2:50:49:43:4D:96:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VKtCQtUZ44JaOaZVcJQSUNNlsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/818142-c138-44bb-922b-d305730b5368/1/1-TG41xiPzOzEgH2eChmRHyS54o.roa
Signing time: Thu 14 Jul 2022 08:45:09 +0000
ROA not before: Thu 14 Jul 2022 08:45:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28951
IP address blocks: 195.47.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:e2:21:f3:07:96:d5:23:8b:de:e6:04:a5:f5:50:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd52ad090b54678e0968e69955c25049434d96c8
Validity
Not Before: Jul 14 08:45:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7e4c6e35c623f33b31201f6782866447c92e78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:74:2e:5a:62:30:d5:02:63:f1:4e:92:4d:02:
81:93:eb:59:5a:57:7a:4b:e0:f0:03:f0:04:26:4a:
89:cb:cb:5a:9c:a5:02:f2:db:fd:30:3e:ee:ad:03:
ef:25:e8:f1:7e:a7:27:4d:79:17:75:b2:3e:2e:98:
9d:6e:22:3e:3a:6f:13:cf:aa:5a:fe:77:5c:7d:a2:
ee:6e:cf:ab:19:75:d9:e7:06:ff:ce:fb:83:09:de:
a7:6f:d3:42:88:0e:be:6a:28:6f:43:43:5a:be:ab:
42:e4:c9:3e:3d:c5:b8:b8:9d:bc:52:5e:fc:f8:5e:
07:38:7e:f9:67:4a:15:6b:a9:33:9f:7a:13:da:7c:
81:a9:66:e5:12:62:af:c1:91:28:e8:94:bd:f3:66:
b5:03:81:99:fb:c8:c4:02:da:1a:15:6d:4b:84:06:
14:50:50:29:c9:93:de:92:df:60:3f:c5:b4:76:ad:
37:d6:98:56:3e:47:39:7a:28:6f:f4:9e:3b:e1:f8:
81:53:0b:ea:c9:83:3a:ce:b2:d1:ca:a1:d5:80:df:
ea:e5:9a:e6:fa:38:e3:b8:40:2d:97:56:d9:5b:b2:
d0:f8:98:69:1f:fb:25:84:ca:7f:78:9b:1b:d8:a1:
3b:b8:9a:08:ed:43:b6:6a:48:27:ee:94:e2:e9:f3:
77:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E4:C6:E3:5C:62:3F:33:B3:12:01:F6:78:28:66:44:7C:92:E7:8A
X509v3 Authority Key Identifier:
keyid:DD:52:AD:09:0B:54:67:8E:09:68:E6:99:55:C2:50:49:43:4D:96:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VKtCQtUZ44JaOaZVcJQSUNNlsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/818142-c138-44bb-922b-d305730b5368/1/1-TG41xiPzOzEgH2eChmRHyS54o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/818142-c138-44bb-922b-d305730b5368/1/3VKtCQtUZ44JaOaZVcJQSUNNlsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.213.0/24
Signature Algorithm: sha256WithRSAEncryption
53:69:20:65:4d:fc:3d:ec:c9:a5:31:bb:89:e7:45:d0:35:c4:
b9:ea:38:fa:7b:e1:51:36:61:ce:b2:fe:b2:13:45:5c:13:9f:
8b:5a:98:09:d4:e0:ed:bc:27:c4:68:19:d4:52:15:cb:fd:7e:
99:9c:fb:b1:3c:64:0e:7c:0c:d8:a9:d2:ce:cd:66:a8:89:e8:
da:0b:03:49:41:ed:d7:71:a6:b7:3b:a6:d8:9e:40:9e:b8:d1:
e9:ff:1f:bf:50:9e:b4:22:81:14:ff:37:0f:c1:ac:14:f4:d2:
c1:bf:d6:df:78:b5:b0:10:c3:01:df:82:2d:b1:13:df:91:4c:
f5:c6:e6:35:fa:17:63:58:53:10:d6:62:10:36:c1:de:c0:e7:
c3:be:05:de:47:6c:16:c4:a6:7a:27:5f:4c:28:46:ce:8f:04:
1d:06:36:27:bb:b5:d5:d8:c9:6e:86:92:4a:74:b1:fb:24:7b:
ad:6f:16:07:b8:6b:31:68:9b:9b:9e:2d:38:67:bb:12:06:e4:
ef:41:b5:c9:c8:3b:c0:6b:99:7a:4c:b6:61:3e:1b:6c:0d:ca:
b8:99:01:fb:6b:a1:b6:87:92:90:fb:a8:7c:65:5b:f7:6d:2e:
5e:86:eb:ef:6a:2d:57:2a:dc:4b:26:e1:a5:63:86:f8:b9:04:
5f:bf:45:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:05 2025 by rpki-client