Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/rHg7iOFa3vpqdEIh6PeADVIgpDs.roa
File: rHg7iOFa3vpqdEIh6PeADVIgpDs.roa (raw, json)
Hash identifier: sp/H+qKvLyJVmFilZyERQd7+XWQCMbVswsWeS5YOTCI=
Subject key identifier: AC:78:3B:88:E1:5A:DE:FA:6A:74:42:21:E8:F7:80:0D:52:20:A4:3B
Certificate issuer: /CN=a719fdc70d39f13c3784d325ae2b61f0f3c99f48
Certificate serial: 0D8458A3
Authority key identifier: A7:19:FD:C7:0D:39:F1:3C:37:84:D3:25:AE:2B:61:F0:F3:C9:9F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxn9xw058Tw3hNMlrith8PPJn0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/rHg7iOFa3vpqdEIh6PeADVIgpDs.roa
Signing time: Sat 01 Jan 2022 14:05:29 +0000
ROA not before: Sat 01 Jan 2022 14:05:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44726
IP address blocks: 195.42.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226777251 (0xd8458a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a719fdc70d39f13c3784d325ae2b61f0f3c99f48
Validity
Not Before: Jan 1 14:05:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac783b88e15adefa6a744221e8f7800d5220a43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:fd:4d:24:4d:1c:5f:e6:60:75:4e:94:70:
51:b5:41:2b:d2:34:e2:d7:9d:84:5f:29:ea:95:d0:
f4:6d:1b:85:95:e5:55:8f:ab:19:91:38:03:5a:e8:
0d:43:f2:6b:ab:f1:1a:25:c2:f4:22:e9:93:23:eb:
cc:ed:e8:e7:e3:98:0d:fb:09:9e:56:61:91:75:74:
05:8e:1e:42:d5:6c:61:d7:b1:eb:df:39:3d:ca:c2:
73:26:35:40:80:77:7a:ca:76:c8:9e:a7:24:00:ec:
93:36:df:c3:5c:1a:59:24:8d:92:05:5f:77:44:9b:
c1:9e:74:ed:58:9a:70:e9:1d:5e:ba:d7:87:89:9e:
0c:3e:79:a1:ad:07:52:2b:84:b1:4e:aa:1b:f6:bd:
92:84:42:b5:2a:d6:26:91:29:b6:44:5e:4c:f8:05:
40:69:e3:8d:be:86:69:28:9f:c3:f0:e0:fa:66:db:
3c:17:1e:81:26:3f:07:b6:9e:03:2e:db:6a:73:03:
71:23:b0:46:0f:16:4c:95:21:10:62:42:c8:62:cc:
d7:79:14:87:92:aa:27:49:32:2e:14:1a:1d:d7:66:
11:b6:62:ed:3f:fb:28:db:78:86:ff:c3:7e:44:b0:
fa:98:56:cb:19:a0:34:7b:00:22:81:4d:d8:3e:71:
e3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:78:3B:88:E1:5A:DE:FA:6A:74:42:21:E8:F7:80:0D:52:20:A4:3B
X509v3 Authority Key Identifier:
keyid:A7:19:FD:C7:0D:39:F1:3C:37:84:D3:25:AE:2B:61:F0:F3:C9:9F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxn9xw058Tw3hNMlrith8PPJn0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/rHg7iOFa3vpqdEIh6PeADVIgpDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/pxn9xw058Tw3hNMlrith8PPJn0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.124.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:6d:1f:47:ea:f1:db:a7:63:31:5b:2f:5b:8e:e0:e0:91:b7:
d8:55:f0:08:c1:03:e8:e0:9a:9f:7a:40:89:7a:48:b9:84:c7:
7b:d6:0b:0e:a1:3c:99:b7:bb:0d:b5:1c:c8:bd:dd:9e:6e:54:
94:32:12:1e:a1:a3:0c:07:8c:bf:e8:5e:cc:12:0b:4e:01:23:
01:d5:f6:26:4c:81:fc:0d:14:7d:2e:ef:3a:7e:b2:30:53:2e:
3d:3f:98:79:a8:ae:33:d1:53:c4:32:83:9c:70:ce:ec:37:4c:
17:53:5d:57:b1:af:2d:ca:6f:b4:f7:85:b2:f7:46:4c:4f:de:
8d:4a:e1:2c:c6:5e:af:8c:91:c8:79:e7:eb:eb:ef:b7:38:97:
10:31:e5:8b:75:84:c4:17:74:ee:df:f0:3c:4a:2e:2e:82:b2:
5e:e0:df:79:be:f8:6b:03:ba:8c:1d:a6:77:c0:44:ec:ef:c6:
3e:02:08:10:54:18:0e:25:ee:86:71:9e:37:f4:60:03:84:bd:
60:9d:a1:92:ad:d7:0c:fc:7c:a5:22:fe:2e:4a:1e:12:12:26:
e6:d0:6d:55:17:d2:4a:f6:9c:10:a3:c6:af:20:df:98:2f:4e:
8c:98:4c:52:98:50:b8:b1:72:a7:43:0f:b0:c6:6c:83:06:d9:
05:b1:4a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:07 2025 by rpki-client