Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/MdU9bmAphFVK5nb-tdp8HL-w6Po.roa
File: MdU9bmAphFVK5nb-tdp8HL-w6Po.roa (raw, json)
Hash identifier: VpVyQWJejC/uISVmcPziMwOxTsB0Q38yqA530hjgw9s=
Subject key identifier: 31:D5:3D:6E:60:29:84:55:4A:E6:76:FE:B5:DA:7C:1C:BF:B0:E8:FA
Certificate issuer: /CN=9135be8ef0dce9d1e67071ab7cb07cf50d53f617
Certificate serial: 0187BF8DE9A5123098441AB96D2E3397B67E
Authority key identifier: 91:35:BE:8E:F0:DC:E9:D1:E6:70:71:AB:7C:B0:7C:F5:0D:53:F6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTW-jvDc6dHmcHGrfLB89Q1T9hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/MdU9bmAphFVK5nb-tdp8HL-w6Po.roa
Signing time: Wed 26 Apr 2023 21:52:41 +0000
ROA not before: Wed 26 Apr 2023 21:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 195.182.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bf:8d:e9:a5:12:30:98:44:1a:b9:6d:2e:33:97:b6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9135be8ef0dce9d1e67071ab7cb07cf50d53f617
Validity
Not Before: Apr 26 21:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31d53d6e602984554ae676feb5da7c1cbfb0e8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d4:ba:9d:a7:16:e3:64:c7:96:24:58:e9:b5:
b5:22:0c:79:d1:5b:3d:66:c4:27:2a:58:df:59:81:
f2:ba:56:fa:62:e4:bd:36:a4:e3:33:ab:a7:4e:18:
7c:12:d5:cb:88:7c:62:6e:88:6f:6b:10:d7:38:c3:
74:b6:1e:fb:c9:f3:86:38:fa:80:10:66:5a:7e:ef:
d6:2a:f8:d8:d2:27:22:51:e7:71:a8:df:ac:03:91:
ed:3a:7f:d4:ef:cc:57:a1:91:3f:c2:a4:c1:0e:ad:
84:61:79:ed:fe:00:cc:bd:2a:8e:32:2e:b3:1c:53:
a7:ea:41:b0:8a:d6:04:61:f2:a8:16:9d:04:19:66:
32:b2:04:62:fe:fe:1b:bb:e0:b4:3d:b6:4d:b3:eb:
29:5b:97:6b:a2:43:5d:be:0e:f6:85:10:99:5d:ba:
fe:78:ba:38:4a:06:c2:83:cc:f6:ea:7b:dc:b6:44:
a9:a4:fa:02:14:a8:b2:d4:ce:9a:46:35:f9:ce:ed:
b2:df:ed:35:12:e1:68:4d:f3:37:be:df:8c:5c:d8:
96:47:5f:1a:9d:eb:84:a7:8b:54:b6:de:e7:ab:66:
e4:b2:dc:ce:ff:72:02:75:38:34:07:6a:87:6f:52:
4d:92:0a:dd:96:7a:e5:30:3a:1f:dc:a3:b4:2c:6b:
95:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D5:3D:6E:60:29:84:55:4A:E6:76:FE:B5:DA:7C:1C:BF:B0:E8:FA
X509v3 Authority Key Identifier:
keyid:91:35:BE:8E:F0:DC:E9:D1:E6:70:71:AB:7C:B0:7C:F5:0D:53:F6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTW-jvDc6dHmcHGrfLB89Q1T9hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/MdU9bmAphFVK5nb-tdp8HL-w6Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/kTW-jvDc6dHmcHGrfLB89Q1T9hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.62.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:96:02:d3:11:39:94:04:13:e1:ce:0d:da:b5:11:c2:dd:94:
f0:40:98:67:66:ea:7c:6a:23:a0:54:74:a5:8c:21:7c:0e:a7:
dc:28:72:e7:27:19:28:33:93:fb:ae:bf:91:f0:e7:1e:cd:f0:
80:5f:11:d3:90:79:48:69:6e:dc:07:d9:e8:bb:46:3d:a5:98:
35:2a:8e:97:6f:bb:4a:8a:db:ec:10:dd:17:5e:bb:57:99:66:
1a:c7:f0:bf:f1:10:94:ba:e9:68:56:54:32:5a:b8:a5:67:67:
e5:d9:d6:98:2a:94:e2:2f:a1:94:ed:08:6b:69:6e:75:4c:7b:
9b:21:fc:f9:e7:8a:7c:30:da:83:3f:1e:87:3d:c3:91:ae:81:
0f:62:ac:e2:78:5b:ac:d1:91:dc:c6:57:b3:57:23:12:d3:a5:
4d:f7:b5:ae:5e:b6:2f:7f:8a:94:21:34:d1:b0:de:42:12:17:
ad:38:78:40:f7:ba:f7:5b:67:8d:c4:09:0c:f1:93:83:d7:1f:
42:c8:45:b3:09:65:a5:6a:13:a9:15:78:3f:2e:32:43:75:60:
0f:02:54:02:1c:81:88:5c:a0:c0:3c:c9:37:15:3d:cc:41:b7:
f4:34:92:86:91:48:ba:a7:6a:20:18:52:b4:28:0b:5a:e8:6b:
44:d8:da:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:47 2025 by rpki-client