Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4oCoXzaJXTzU3RjD0-PczB80l8M.roa
File: 4oCoXzaJXTzU3RjD0-PczB80l8M.roa (raw, json)
Hash identifier: ex0nmhPHAMFUM6Zr+AxFK0zVD5lnhvaqQZ8CX7ajBpI=
Subject key identifier: E2:80:A8:5F:36:89:5D:3C:D4:DD:18:C3:D3:E3:DC:CC:1F:34:97:C3
Certificate issuer: /CN=88652fe652966d728a527aee6e43c485c6939f45
Certificate serial: 03D2BF15
Authority key identifier: 88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4oCoXzaJXTzU3RjD0-PczB80l8M.roa
Signing time: Sat 01 Jan 2022 09:54:59 +0000
ROA not before: Sat 01 Jan 2022 09:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29663
IP address blocks: 195.149.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64143125 (0x3d2bf15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88652fe652966d728a527aee6e43c485c6939f45
Validity
Not Before: Jan 1 09:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e280a85f36895d3cd4dd18c3d3e3dccc1f3497c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cf:9c:82:cc:38:53:3a:09:cb:91:0e:fd:6f:
ab:9a:cb:1e:cc:14:2c:04:e2:63:f8:11:ef:84:1a:
e1:68:e9:45:07:34:6a:80:7c:50:e5:35:4b:87:ef:
d8:b2:c7:83:5a:ce:dc:71:fc:e6:21:6d:31:9e:f9:
a1:f3:d8:b3:d8:b2:51:6e:47:7a:ad:2f:44:47:c7:
f2:85:3b:48:19:11:e0:d1:31:ae:2d:f7:e0:72:8c:
04:82:3c:39:b5:4a:11:bd:e3:7d:d5:17:90:96:a8:
65:d0:26:01:29:3b:5f:40:a1:4d:4e:d1:c2:53:00:
a3:dd:72:65:59:2a:40:14:1a:8a:e8:2c:7a:b4:23:
42:b0:8b:8a:ba:c1:f0:dc:b2:32:5d:e5:90:2d:41:
63:41:e3:9d:02:60:98:a3:de:57:20:76:94:72:82:
cb:90:90:94:f4:d0:55:54:b5:3a:7f:60:c5:f3:72:
04:a0:c0:f4:00:cd:e8:7d:bd:07:3f:b6:d8:0a:94:
fb:f2:27:17:7a:dd:d3:7b:72:f3:db:98:80:2d:11:
08:39:f3:e0:95:dc:b3:2e:9a:17:84:45:69:58:d1:
3f:ce:fe:0b:3c:f2:5b:0e:1b:e6:8d:42:a2:6a:73:
c4:5d:fa:81:dd:ac:82:c6:44:f1:70:29:24:cb:56:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:80:A8:5F:36:89:5D:3C:D4:DD:18:C3:D3:E3:DC:CC:1F:34:97:C3
X509v3 Authority Key Identifier:
keyid:88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/4oCoXzaJXTzU3RjD0-PczB80l8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/iGUv5lKWbXKKUnrubkPEhcaTn0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.112.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:41:15:49:0f:57:2d:f8:e1:dc:6e:7a:fc:1d:ab:45:06:f2:
ee:54:84:38:8e:9d:07:b9:55:c1:54:8d:7f:1c:7e:4c:32:ca:
04:60:ce:f3:f8:c6:a2:f1:28:7e:b2:c9:14:e9:42:32:0f:94:
47:8f:e7:4c:00:20:e7:b9:34:d8:7e:6d:88:5b:c8:a3:0e:08:
00:59:5e:24:7d:e5:3b:f3:7f:09:9e:4e:e8:1b:62:2c:bc:aa:
48:f6:7a:48:32:94:f8:f3:6e:c9:b5:33:46:4c:82:69:c0:7c:
13:ea:12:e4:43:9a:1f:a6:b6:b7:06:a7:a0:95:f7:00:38:43:
cf:92:dd:d7:39:a4:6f:10:88:b0:95:3f:60:3d:85:7e:39:50:
85:39:c8:cb:0d:44:58:6f:c6:ea:af:be:9c:57:04:79:96:27:
7c:43:3e:5b:3d:e2:cb:81:ca:b9:37:2d:13:eb:5e:3e:8f:0d:
01:c9:7f:c8:75:46:93:c3:0c:aa:e7:94:17:65:e2:e6:bf:cb:
3d:8d:ac:73:c4:dc:03:5c:df:4f:0a:51:66:dc:b2:06:63:bb:
8d:bb:b7:ba:ad:a0:35:ff:ab:36:e5:83:f5:80:0c:64:33:01:
72:3d:4b:6e:5d:51:68:2f:b3:39:47:37:0e:68:d1:f2:ea:d6:
98:77:6a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:00 2025 by rpki-client