Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/ea4b1f-3d90-40f2-8f98-0baa7778ace7/1/zVNhE-HtkdHS8CjHfZMyS-Tn9Q8.roa
File: zVNhE-HtkdHS8CjHfZMyS-Tn9Q8.roa (raw, json)
Hash identifier: mP4BNsMellTPlcIMVX7XGSqhLPneN8nAdHWMr5o8S74=
Subject key identifier: CD:53:61:13:E1:ED:91:D1:D2:F0:28:C7:7D:93:32:4B:E4:E7:F5:0F
Certificate issuer: /CN=6c9b3e19fd1f430f5145d6db9241a5057ed96cb3
Certificate serial: 018571D7A6338653A792E0904BA3EDACE332
Authority key identifier: 6C:9B:3E:19:FD:1F:43:0F:51:45:D6:DB:92:41:A5:05:7E:D9:6C:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJs-Gf0fQw9RRdbbkkGlBX7ZbLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/ea4b1f-3d90-40f2-8f98-0baa7778ace7/1/zVNhE-HtkdHS8CjHfZMyS-Tn9Q8.roa
Signing time: Mon 02 Jan 2023 09:37:16 +0000
ROA not before: Mon 02 Jan 2023 09:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39581
IP address blocks: 194.50.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a6:33:86:53:a7:92:e0:90:4b:a3:ed:ac:e3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c9b3e19fd1f430f5145d6db9241a5057ed96cb3
Validity
Not Before: Jan 2 09:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd536113e1ed91d1d2f028c77d93324be4e7f50f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:8e:f3:6c:68:72:09:3e:b5:c9:44:54:ba:
56:25:37:90:34:c8:78:f3:d2:75:c2:2e:25:51:e9:
c0:7b:26:3a:86:11:18:2f:73:7a:3d:08:03:56:cc:
eb:5b:89:f9:55:a4:95:0c:47:8c:86:cd:08:5b:16:
f4:c3:47:e6:1e:0e:ac:92:8c:c2:3e:42:65:43:2d:
e7:0b:97:99:d1:8e:c7:12:9f:96:b7:50:3d:0a:a3:
7f:65:44:ac:37:9a:ae:6b:9d:f2:41:bf:9c:46:53:
c5:a9:88:bb:df:c1:35:74:77:45:93:49:a2:df:8a:
b3:2e:51:c4:aa:52:b6:bc:49:48:bb:1e:87:79:ee:
d3:ae:d3:45:4c:fc:d7:02:a3:bc:4d:43:c8:55:77:
72:64:d1:7c:40:66:cc:b9:73:df:5b:ea:78:c9:16:
d8:c2:c2:1f:ae:fc:0d:18:ea:97:cb:91:4f:e2:2f:
f7:f0:ad:04:80:8a:21:2b:e6:35:be:f0:2f:95:41:
b9:ac:83:60:71:3b:f8:80:6d:dc:93:1f:5e:c5:af:
c7:80:03:ba:bf:f0:0e:8f:f8:56:d5:98:4c:c5:1c:
50:9f:5c:2f:92:04:74:84:8a:c0:5f:d2:78:cb:34:
b8:d1:8b:b8:63:d5:d9:2d:6a:96:3e:db:96:de:c4:
9e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:53:61:13:E1:ED:91:D1:D2:F0:28:C7:7D:93:32:4B:E4:E7:F5:0F
X509v3 Authority Key Identifier:
keyid:6C:9B:3E:19:FD:1F:43:0F:51:45:D6:DB:92:41:A5:05:7E:D9:6C:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJs-Gf0fQw9RRdbbkkGlBX7ZbLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/ea4b1f-3d90-40f2-8f98-0baa7778ace7/1/zVNhE-HtkdHS8CjHfZMyS-Tn9Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/ea4b1f-3d90-40f2-8f98-0baa7778ace7/1/bJs-Gf0fQw9RRdbbkkGlBX7ZbLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.63.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e5:f7:10:9c:33:96:78:84:6d:72:6a:0a:dc:73:fe:c7:b5:
43:5f:96:58:ca:4b:eb:a0:6c:d4:62:7d:9c:ea:94:a1:1c:a9:
7d:8a:d6:f6:0e:8d:a9:1c:1a:15:de:3a:9f:21:24:34:73:ed:
33:0c:af:53:e2:ea:0c:ba:51:53:1c:64:6e:5f:bf:f3:12:04:
85:6f:85:64:40:5e:8e:97:d6:c1:a1:c3:fd:0c:8d:0c:53:a1:
ea:e3:56:39:28:3b:80:e7:25:68:c1:dc:e7:c2:45:00:77:ae:
b2:aa:75:89:a6:91:62:f0:ad:7c:4c:5d:ff:16:01:8d:b8:94:
e6:ed:54:cd:5f:43:92:a1:8a:a1:ac:d7:10:a4:10:0c:6a:b0:
99:fb:cc:b8:74:2a:bf:84:16:38:b9:ae:64:da:86:22:f7:2b:
ef:e1:a4:0d:b7:e2:ca:a3:9b:34:f4:55:0b:99:db:19:6b:5a:
85:17:0d:47:b7:01:d7:9b:d5:52:05:7b:60:5b:c2:18:64:37:
3f:8f:1b:dc:c9:ba:bb:50:ae:fc:2b:9c:59:d8:a0:7f:1b:15:
d8:37:0e:37:5e:ce:bb:e2:48:c7:d9:9b:3b:f1:b3:d5:b6:d1:
e5:2e:e7:e3:52:6c:43:57:76:80:dc:0f:59:e3:cc:da:e3:cf:
77:67:f5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:40:48 2025 by rpki-client