Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/7fea5a-ed78-4ba9-9a17-fdbc7c4cf49e/1/vwosWVRbdTbR4zcTCi6fwsUTJ8o.roa
File: vwosWVRbdTbR4zcTCi6fwsUTJ8o.roa (raw, json)
Hash identifier: 2nxC0foPGXLlAb1T1OsumsK/H8dGfIct3LCW44AnO6s=
Subject key identifier: BF:0A:2C:59:54:5B:75:36:D1:E3:37:13:0A:2E:9F:C2:C5:13:27:CA
Certificate issuer: /CN=874aa16fd2a2c936c0aa4fb5624f62bc56a54df8
Certificate serial: 01856EB8F3EE58D04AE163D8B73456FFDF66
Authority key identifier: 87:4A:A1:6F:D2:A2:C9:36:C0:AA:4F:B5:62:4F:62:BC:56:A5:4D:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0qhb9KiyTbAqk-1Yk9ivFalTfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/7fea5a-ed78-4ba9-9a17-fdbc7c4cf49e/1/vwosWVRbdTbR4zcTCi6fwsUTJ8o.roa
Signing time: Sun 01 Jan 2023 19:04:52 +0000
ROA not before: Sun 01 Jan 2023 19:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8412
IP address blocks: 195.95.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:f3:ee:58:d0:4a:e1:63:d8:b7:34:56:ff:df:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874aa16fd2a2c936c0aa4fb5624f62bc56a54df8
Validity
Not Before: Jan 1 19:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf0a2c59545b7536d1e337130a2e9fc2c51327ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:67:5e:9e:30:7f:0c:15:4c:9b:b2:3c:a5:15:
51:c5:e3:d7:a3:cd:df:e3:11:41:33:bd:0b:85:54:
da:31:e2:25:86:89:f3:27:2b:1c:36:95:89:d6:27:
44:05:4a:4d:b5:60:92:f4:1a:ff:e1:71:70:37:a6:
f7:64:71:f8:72:70:0d:83:bd:de:da:84:f4:27:f5:
16:74:85:bf:60:cd:67:a7:86:4c:a2:57:49:53:9f:
b2:3d:35:08:33:2d:68:83:3e:50:51:ce:7a:97:52:
a4:49:5c:6d:90:4b:d9:c2:a1:d3:61:9c:c0:cf:24:
80:6f:78:21:23:79:84:4b:a8:2c:eb:46:f1:7e:c3:
cd:1c:ad:fa:80:b8:59:08:17:9a:d1:07:34:d4:15:
82:f4:5b:c0:6e:8f:cd:dd:ed:be:0d:bf:e8:b8:08:
14:45:14:7a:2b:82:c1:75:77:18:bd:fd:4d:55:29:
75:2f:20:75:6e:3a:7f:ef:c1:3c:ee:62:c4:c8:e9:
7c:d2:a3:72:15:6b:c3:42:be:2f:3b:01:14:fa:01:
a6:ea:26:75:f5:91:71:2e:0c:44:03:9c:02:98:bf:
2c:49:c6:ad:f3:5e:c2:7a:16:af:39:57:05:b2:49:
fc:05:a7:d6:94:db:ed:2e:c1:d9:34:60:01:e5:7d:
d6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0A:2C:59:54:5B:75:36:D1:E3:37:13:0A:2E:9F:C2:C5:13:27:CA
X509v3 Authority Key Identifier:
keyid:87:4A:A1:6F:D2:A2:C9:36:C0:AA:4F:B5:62:4F:62:BC:56:A5:4D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0qhb9KiyTbAqk-1Yk9ivFalTfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7fea5a-ed78-4ba9-9a17-fdbc7c4cf49e/1/vwosWVRbdTbR4zcTCi6fwsUTJ8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7fea5a-ed78-4ba9-9a17-fdbc7c4cf49e/1/h0qhb9KiyTbAqk-1Yk9ivFalTfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:1e:74:e3:34:6b:b9:de:7c:69:fa:92:d1:b4:ae:4d:13:de:
24:ce:e3:1c:e4:83:06:e8:7b:7a:c3:99:c3:b7:07:4c:82:3d:
c5:32:80:0c:6d:80:a5:ee:0c:4d:44:48:8c:61:e0:4d:9f:42:
12:b3:13:20:13:dd:37:76:bb:50:4e:9e:04:8d:8b:64:10:2e:
df:c1:ab:20:2b:4b:df:91:ea:0e:0b:22:bb:41:48:2d:dc:5c:
f4:eb:90:f4:76:88:8e:03:32:2e:52:2d:3d:55:24:4b:d9:d1:
71:26:8a:f2:55:65:31:45:7b:fa:ef:c6:86:f2:8d:69:9f:d4:
3a:b3:60:57:ea:5e:e0:bb:c8:ee:d8:0a:b5:4a:57:93:df:c9:
bd:cc:84:a2:16:a2:2e:09:dc:3f:02:97:43:85:32:24:4b:4c:
1c:a1:eb:6b:34:d5:08:e8:80:d8:6f:c9:44:64:6e:7a:96:23:
59:e4:97:52:07:61:9d:8b:a6:ed:c3:d2:df:3f:24:6e:3c:8b:
a6:93:dd:29:89:2a:e5:a4:88:8d:d7:19:be:91:e6:e7:1a:83:
e6:b5:60:12:29:1d:f3:10:05:2d:d4:02:cb:5f:e8:06:36:a6:
c0:ab:82:88:57:7d:05:71:0d:a6:27:c9:09:6d:19:1d:d0:63:
a4:b4:f7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:36 2025 by rpki-client