Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/DaLIUCREA60yEZORlrK4ehn3iNo.roa
File: DaLIUCREA60yEZORlrK4ehn3iNo.roa (raw, json)
Hash identifier: spEAavsXws5C5HFsDYs3xUEUXufLHm/c3r+JHljE8vU=
Subject key identifier: 0D:A2:C8:50:24:44:03:AD:32:11:93:91:96:B2:B8:7A:19:F7:88:DA
Certificate issuer: /CN=f4a5b042fe48eeb123be56dbf9e8dda20c1ea11d
Certificate serial: 268508AC
Authority key identifier: F4:A5:B0:42:FE:48:EE:B1:23:BE:56:DB:F9:E8:DD:A2:0C:1E:A1:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9KWwQv5I7rEjvlbb-ejdogweoR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/DaLIUCREA60yEZORlrK4ehn3iNo.roa
Signing time: Sat 01 Jan 2022 14:54:42 +0000
ROA not before: Sat 01 Jan 2022 14:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197914
IP address blocks: 195.66.112.0/24 maxlen: 24
130.0.192.0/21 maxlen: 24
194.50.60.0/24 maxlen: 24
2a03:a580::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 646252716 (0x268508ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4a5b042fe48eeb123be56dbf9e8dda20c1ea11d
Validity
Not Before: Jan 1 14:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0da2c850244403ad3211939196b2b87a19f788da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a5:5e:50:59:0e:28:38:70:a3:29:5a:eb:0b:
2e:37:ed:4c:4b:9c:74:91:df:31:a6:61:a2:9d:b1:
00:c2:7d:40:ef:ff:b4:d4:0a:b0:cb:eb:d3:09:49:
31:bf:f6:6f:13:24:d1:68:e7:db:21:59:fa:f9:09:
39:a1:3a:4c:62:c1:5e:91:12:7e:37:a8:f6:4c:2d:
de:06:8c:65:30:d2:58:c5:3f:f0:1c:ad:9f:56:fa:
e6:ce:ab:dd:82:d6:33:d8:b0:fa:a9:13:6a:37:93:
18:40:30:3b:db:91:46:43:62:11:4d:8b:e0:35:6c:
cc:11:fb:6d:ca:3e:38:f0:f9:ed:b1:20:d0:46:5e:
7a:54:64:a7:2b:12:e4:2a:a9:41:18:12:8d:7d:3b:
75:09:9b:6c:c7:71:b8:c0:ac:3e:78:0b:cd:e4:a7:
bb:75:71:04:64:cb:77:b5:85:a0:23:40:95:dd:b9:
ee:e3:9b:92:4e:26:2a:c3:b7:26:f4:24:d5:a4:2b:
e3:b5:00:0f:2a:0a:e4:4f:5a:13:4a:20:fa:1c:4b:
7b:0d:9b:20:7c:21:6a:12:72:c8:da:0f:a9:62:be:
9e:3f:17:51:7f:c9:42:77:2e:82:a1:98:06:44:92:
d6:aa:54:8f:19:d8:b8:f1:55:bd:7d:3e:5d:73:b8:
1e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A2:C8:50:24:44:03:AD:32:11:93:91:96:B2:B8:7A:19:F7:88:DA
X509v3 Authority Key Identifier:
keyid:F4:A5:B0:42:FE:48:EE:B1:23:BE:56:DB:F9:E8:DD:A2:0C:1E:A1:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9KWwQv5I7rEjvlbb-ejdogweoR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/DaLIUCREA60yEZORlrK4ehn3iNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/9KWwQv5I7rEjvlbb-ejdogweoR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.0.192.0/21
194.50.60.0/24
195.66.112.0/24
IPv6:
2a03:a580::/32
Signature Algorithm: sha256WithRSAEncryption
25:3a:67:24:37:b8:9c:9b:ad:68:9f:6e:77:cb:56:6a:41:41:
8f:3d:10:66:98:a0:c3:fa:0e:b2:59:9e:67:70:35:00:04:18:
ce:1f:7d:b3:b8:ff:85:f6:32:94:e7:d3:da:cd:35:39:e1:ae:
b9:1a:a1:77:b0:91:ca:5f:8d:bd:cb:74:df:d8:0e:e8:fe:4a:
19:65:64:f0:6d:11:2e:d8:ac:5a:46:52:5f:2d:bc:7c:a8:72:
4f:14:52:4f:fc:68:40:cf:82:35:6e:27:2e:93:0d:db:a3:ad:
ea:63:32:70:93:45:22:8e:70:dc:af:72:6e:22:db:63:aa:75:
55:69:7a:2d:89:f9:3d:a6:45:3c:36:9e:00:47:fb:b7:e7:0e:
93:7a:b8:da:9c:fb:89:7d:a3:09:dd:18:a3:28:5c:dd:26:52:
8d:21:b0:56:c6:27:e8:24:64:62:f4:5b:f3:d6:88:d3:4b:27:
25:a0:4e:c7:62:35:02:1a:26:27:e6:48:c6:bb:d9:4c:48:bd:
2a:2b:7a:b7:94:c2:6d:66:38:42:bf:70:88:ec:28:15:3a:34:
de:94:e0:ae:6b:27:03:56:67:a7:f7:5f:c5:04:ad:f9:85:5b:
56:48:d5:8b:3d:8a:20:c7:3c:a2:ec:ad:20:a1:9e:48:45:6e:
d4:ce:ea:55
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:40 2025 by rpki-client