Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/pL6WDRdyvy4PED7BGbTaSN_4V5Y.roa
File: pL6WDRdyvy4PED7BGbTaSN_4V5Y.roa (raw, json)
Hash identifier: szMjdWNe0m/H4vmKWOV1cK60EhNAZ58egBnS1nUMyzM=
Subject key identifier: A4:BE:96:0D:17:72:BF:2E:0F:10:3E:C1:19:B4:DA:48:DF:F8:57:96
Certificate issuer: /CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Certificate serial: 018570D5149B9009A605C2CF1F8D19E2CC8A
Authority key identifier: 9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/pL6WDRdyvy4PED7BGbTaSN_4V5Y.roa
Signing time: Mon 02 Jan 2023 04:54:50 +0000
ROA not before: Mon 02 Jan 2023 04:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5539
IP address blocks: 195.230.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:14:9b:90:09:a6:05:c2:cf:1f:8d:19:e2:cc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Validity
Not Before: Jan 2 04:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4be960d1772bf2e0f103ec119b4da48dff85796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:b5:25:fb:79:af:df:32:68:0e:17:4b:54:
37:ea:9b:43:99:8c:1b:ee:55:19:8d:a7:54:62:6d:
73:85:35:2a:74:bd:7b:57:8e:88:0d:4c:54:40:20:
d5:9a:a5:30:e4:8f:66:17:bc:b2:47:4a:6d:47:9e:
81:cf:62:6f:df:93:8d:66:da:5e:d2:ae:5a:3e:84:
05:72:1c:a8:17:c6:3c:4f:a3:f8:67:3e:6a:f6:e9:
bc:bd:2c:93:81:bd:9f:4f:d5:c3:d8:3e:2a:ea:44:
b6:24:dc:a2:37:b9:26:72:7a:93:fa:8c:4f:b1:7b:
bc:f6:5c:e2:4c:87:25:80:31:8e:b8:68:45:77:53:
18:d0:a7:7d:9e:86:b4:c3:3c:57:f6:fa:4e:d9:00:
46:69:e3:e8:78:42:33:0a:c7:76:4d:e3:8d:82:8e:
84:95:37:0f:99:4f:8b:26:71:f9:4d:37:b0:e1:2d:
5f:34:23:00:a0:bc:45:c6:ef:b8:1a:cf:02:37:03:
1b:c6:99:96:e6:22:46:4c:38:1c:f6:eb:e4:be:34:
bb:b4:79:39:71:85:ca:26:a9:8f:91:88:0f:1c:23:
45:cb:fa:54:c1:32:8b:7a:9f:63:cc:1c:77:9f:e6:
c0:08:f3:2d:b8:36:b5:ce:a7:64:ae:a3:64:bf:b5:
18:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BE:96:0D:17:72:BF:2E:0F:10:3E:C1:19:B4:DA:48:DF:F8:57:96
X509v3 Authority Key Identifier:
keyid:9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/pL6WDRdyvy4PED7BGbTaSN_4V5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.114.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:4f:49:8c:11:ac:d8:03:fe:f9:bb:61:39:68:43:27:16:e3:
44:d9:de:10:f7:b5:b2:c2:71:e6:f1:f0:85:0e:62:ee:19:2b:
e5:67:e6:d8:a5:28:55:1b:c6:7e:49:8c:b8:61:67:38:c1:b7:
eb:41:40:0a:02:2d:f3:db:43:0b:e9:e1:e1:70:21:9f:5d:a0:
14:14:f2:54:ec:af:fc:a7:70:96:ec:e4:03:35:b5:81:c7:4c:
d2:0f:3a:ab:47:cc:55:0d:cf:aa:13:eb:e1:21:bc:98:0d:49:
90:06:2c:03:7c:53:db:2d:07:46:27:89:cf:56:7d:e6:29:e7:
fa:7c:8c:8e:64:e1:d1:4d:f6:30:6c:33:af:bf:9f:49:9f:10:
9a:9d:fe:78:a9:12:27:d5:0b:14:a8:43:6b:41:32:d0:02:fd:
72:a2:92:91:dd:fe:8a:8f:c6:4c:99:80:cf:a0:7d:8a:86:22:
4c:a8:37:8a:f6:79:94:63:87:b0:f6:5d:72:3c:01:97:95:d1:
29:bd:d0:ab:e4:35:3e:eb:02:e7:31:03:70:a4:f8:f5:ef:cc:
a6:3c:54:0a:ee:7e:74:31:d1:2d:7c:05:fe:3a:c2:72:f8:2e:
ac:de:a6:ff:ae:c2:07:d6:27:14:02:a6:67:c6:30:2b:31:b3:
6a:c1:80:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:31 2025 by rpki-client