Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/Zd51yw3GFMunGwxaz9WrzQJ2JxY.roa
File: Zd51yw3GFMunGwxaz9WrzQJ2JxY.roa (raw, json)
Hash identifier: qA6mrw4ukUdc6ZdVbkwik/iwbQWfOwhzRQepNQx7qe0=
Subject key identifier: 65:DE:75:CB:0D:C6:14:CB:A7:1B:0C:5A:CF:D5:AB:CD:02:76:27:16
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 0161B081
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/Zd51yw3GFMunGwxaz9WrzQJ2JxY.roa
Signing time: Sat 01 Jan 2022 11:59:18 +0000
ROA not before: Sat 01 Jan 2022 11:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41104
IP address blocks: 195.95.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23179393 (0x161b081)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Jan 1 11:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65de75cb0dc614cba71b0c5acfd5abcd02762716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:b2:65:52:81:e8:a8:ef:96:56:df:56:c4:
97:25:70:ea:0d:72:9d:e3:c3:41:da:77:dc:03:eb:
55:f3:8a:17:a4:62:ee:f8:15:74:5a:37:6b:de:db:
4d:d8:f9:3b:58:d5:1b:b2:d7:40:2f:dc:19:12:ab:
7f:be:74:44:35:11:cb:e7:7e:fb:4f:f6:bb:8e:4c:
66:d7:2e:4f:96:ef:f4:af:c1:a0:ba:72:53:33:29:
02:03:99:82:e2:6b:bd:56:83:e3:87:60:5a:26:3a:
ec:23:13:13:1e:9c:36:40:49:f0:cf:80:26:9a:a0:
47:22:21:e5:21:23:3d:37:da:3f:c8:43:03:02:9f:
43:ad:f4:60:67:22:94:3e:53:c9:d7:2d:8f:d2:41:
cd:72:8e:07:63:9a:0b:79:42:68:15:b0:b0:ed:37:
6c:db:ec:58:02:47:0e:ce:2d:52:77:0f:b2:28:ae:
d4:a1:cf:b0:88:1d:a6:b7:1d:95:10:d0:e3:92:49:
d1:4d:60:cb:17:91:7d:67:a9:3d:ad:ed:57:c1:e2:
b1:be:af:f8:d9:ae:6f:80:7b:44:68:fb:e8:ab:01:
cd:80:55:65:a6:09:24:9c:9c:ec:df:2d:17:f8:46:
06:a7:02:33:40:a5:43:9c:d4:29:0f:c1:62:85:06:
77:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DE:75:CB:0D:C6:14:CB:A7:1B:0C:5A:CF:D5:AB:CD:02:76:27:16
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/Zd51yw3GFMunGwxaz9WrzQJ2JxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.173.0/24
Signature Algorithm: sha256WithRSAEncryption
55:92:3b:0a:f1:bd:86:5d:55:e6:09:4d:f8:eb:88:a8:3e:db:
a8:7e:de:7e:23:48:6a:0a:41:a3:cd:b9:66:f3:d3:ad:14:66:
08:f8:92:f0:48:6f:57:88:7f:e7:64:24:a8:78:9d:ec:2d:0b:
ab:db:01:65:b9:82:41:96:1a:c0:ae:b9:e5:06:30:e7:74:93:
f3:08:2f:69:1b:2c:ef:35:c5:77:68:60:9e:f0:18:a3:e7:40:
37:8b:7f:18:ff:11:09:23:fe:e7:7e:8f:25:cb:a8:25:56:19:
26:03:fe:46:94:ce:bb:00:e4:ea:49:3c:fb:3f:a7:22:a8:df:
3a:e4:07:1c:2b:53:fe:f3:c7:8f:7f:d5:25:68:89:8d:1c:20:
fc:d6:92:e9:f8:2e:4a:28:ca:a7:01:f0:38:7a:31:c4:45:f4:
4e:46:50:d5:d9:50:eb:47:47:fe:54:59:cc:90:76:e0:29:aa:
c8:5c:38:4e:38:36:9e:7f:71:eb:5a:f9:c3:84:79:e1:3c:2d:
70:f2:7c:a5:e0:fb:8e:a3:91:51:14:d3:31:51:b2:7b:f1:9a:
81:3f:51:01:45:c5:22:8e:7d:32:36:3b:f6:98:28:8e:99:7b:
3a:1f:f7:f9:c4:e9:e3:dd:e6:f2:4a:ca:91:82:66:92:b2:b9:
26:ea:0f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:55 2025 by rpki-client