Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/mPdUjt2OzWScJ_-Uj6NaWng22Oo.roa
File: mPdUjt2OzWScJ_-Uj6NaWng22Oo.roa (raw, json)
Hash identifier: l5DPq0x5KHeFsxNmvOZmOoo7GfCjzBP0bVHcbOQYHN4=
Subject key identifier: 98:F7:54:8E:DD:8E:CD:64:9C:27:FF:94:8F:A3:5A:5A:78:36:D8:EA
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 40CBA21B
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/mPdUjt2OzWScJ_-Uj6NaWng22Oo.roa
Signing time: Sat 01 Jan 2022 08:00:29 +0000
ROA not before: Sat 01 Jan 2022 08:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28883
IP address blocks: 195.237.80.0/24 maxlen: 24
194.240.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1087087131 (0x40cba21b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 1 08:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98f7548edd8ecd649c27ff948fa35a5a7836d8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:da:55:bb:3b:2d:63:a0:31:f8:34:fa:cd:
6d:e6:f4:1e:39:27:c8:d5:a0:97:47:74:c0:0d:90:
81:28:09:b2:8f:bd:b2:1e:b2:1f:d6:11:ee:7b:7e:
e6:12:43:61:a8:67:93:ca:36:c1:c0:a6:bb:db:bd:
41:31:18:c0:e1:5d:72:86:d3:7c:3b:57:8f:d5:3b:
54:7b:d4:19:94:bb:7f:8d:28:53:0a:84:e2:ab:04:
39:74:b9:3e:1f:50:87:96:21:46:30:04:eb:4c:c5:
78:89:4a:9f:5f:34:55:73:aa:d9:1d:f9:43:2f:82:
93:7a:24:4d:3d:9a:19:fc:68:d7:ed:6c:ae:5a:15:
f6:16:3d:67:04:4a:22:09:0c:2b:98:c5:27:e6:ff:
45:b4:04:fe:4f:8e:0e:43:4f:34:03:bf:94:37:77:
77:67:c1:af:2d:65:e3:98:fb:5d:f9:7c:08:ef:de:
b1:ec:81:46:9f:10:af:79:63:0b:b9:25:9c:7a:6e:
4c:5f:c5:3e:be:c0:81:07:04:76:b0:51:61:af:48:
9c:21:27:e3:42:1b:6b:ff:47:6d:54:13:ac:d9:a6:
6f:a6:fc:5d:90:24:22:c2:c3:74:7f:00:ec:61:39:
56:21:ce:d2:0f:53:51:79:cd:0d:74:d7:90:1e:8e:
0e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F7:54:8E:DD:8E:CD:64:9C:27:FF:94:8F:A3:5A:5A:78:36:D8:EA
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/mPdUjt2OzWScJ_-Uj6NaWng22Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.240.69.0/24
195.237.80.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:ba:e2:64:ab:d8:80:f5:fb:1d:93:ef:90:b7:42:3b:8e:b7:
0e:69:59:69:94:d8:1f:ef:fb:8b:c8:40:6a:cd:65:38:6f:64:
ac:84:91:9c:bd:19:53:7e:f4:9f:a7:21:9c:2d:e6:18:80:f1:
5d:6a:25:11:cf:13:bb:82:a3:1b:6d:8e:bc:4f:eb:8a:82:a8:
e8:e7:e1:ef:11:ca:fe:74:83:13:82:84:5c:df:18:00:cc:6e:
73:28:b2:99:d7:c4:7b:0f:75:41:17:67:96:2d:fd:49:8f:1f:
fa:d9:aa:86:8c:73:f3:ad:d7:45:50:0e:55:c2:92:ad:fb:2d:
25:12:e1:9b:78:44:2c:51:f1:b7:0b:7f:ee:08:28:33:d0:71:
f8:da:f5:9c:91:75:51:fc:ae:81:2a:17:cd:66:ba:18:50:7b:
d2:b4:5f:6a:38:d3:e5:42:51:87:65:24:77:52:cb:3a:9b:1d:
53:5f:fc:fb:da:5d:8c:e6:ae:a5:98:ca:b9:fc:0b:28:eb:ee:
fa:e9:3e:3f:04:6e:9f:2e:da:eb:35:c5:c4:60:df:df:d4:e3:
fd:5a:b4:2c:48:08:d4:97:c0:85:c9:5e:6a:57:08:0d:ed:ea:
64:5a:3c:48:35:ea:f5:dc:b5:86:8d:35:05:8c:a2:67:d0:38:
07:00:2b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:54 2025 by rpki-client