Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/JKgRvO8MrXUaqOzM-OhSrQ1UTUI.roa
File: JKgRvO8MrXUaqOzM-OhSrQ1UTUI.roa (raw, json)
Hash identifier: ZoFXPyASv1WhhIvE9COh6TyTGSTJoTl5F8uT89WZgFA=
Subject key identifier: 24:A8:11:BC:EF:0C:AD:75:1A:A8:EC:CC:F8:E8:52:AD:0D:54:4D:42
Certificate issuer: /CN=22f960fdeef407355ab7836dcb6b9026f44293ea
Certificate serial: 018682F7A395506DF48DBED7A11E68BD23FB
Authority key identifier: 22:F9:60:FD:EE:F4:07:35:5A:B7:83:6D:CB:6B:90:26:F4:42:93:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ivlg_e70BzVat4Nty2uQJvRCk-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/JKgRvO8MrXUaqOzM-OhSrQ1UTUI.roa
Signing time: Fri 24 Feb 2023 10:28:32 +0000
ROA not before: Fri 24 Feb 2023 10:28:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 195.248.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:f7:a3:95:50:6d:f4:8d:be:d7:a1:1e:68:bd:23:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f960fdeef407355ab7836dcb6b9026f44293ea
Validity
Not Before: Feb 24 10:28:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24a811bcef0cad751aa8ecccf8e852ad0d544d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:3e:5b:6b:81:bf:63:09:12:fa:e9:eb:31:
51:18:f1:85:bd:ca:76:6e:c7:c0:af:81:e3:ff:3d:
8e:c6:05:47:8f:7d:2f:5a:df:67:37:54:33:d9:c6:
fa:34:09:25:67:4b:9c:33:96:e3:c0:87:11:f8:44:
c2:50:6a:e8:6f:f8:60:9c:be:4a:d6:31:f8:f6:0e:
c5:77:cf:17:19:f2:33:eb:03:7e:3f:e7:85:f0:32:
35:f4:9a:42:be:3e:89:47:e3:ac:18:05:78:24:52:
38:e7:f0:b5:8d:c4:6a:c5:94:40:00:be:00:f9:54:
bf:7c:0e:7b:14:6a:b9:6d:51:e4:ae:3c:b3:5d:4e:
f0:9e:d5:8c:ce:7f:a6:df:11:fe:37:2c:dc:0b:d8:
54:55:56:fe:a4:36:b9:55:79:f4:f4:41:89:05:7e:
90:1a:d8:81:fc:39:12:47:f5:f0:ae:f8:63:44:97:
01:4c:e2:39:92:1f:1e:da:2c:44:d5:fd:eb:e4:5b:
a8:f7:8a:c0:10:6c:30:12:d5:e7:c8:b2:00:7a:f5:
5f:78:83:bc:ed:63:bd:be:3d:32:fa:5a:5b:10:59:
40:7e:31:a6:af:f9:e4:54:50:b4:99:d2:42:ad:68:
a8:ed:4b:71:47:bd:1d:06:ad:0e:bf:20:98:6c:e7:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A8:11:BC:EF:0C:AD:75:1A:A8:EC:CC:F8:E8:52:AD:0D:54:4D:42
X509v3 Authority Key Identifier:
keyid:22:F9:60:FD:EE:F4:07:35:5A:B7:83:6D:CB:6B:90:26:F4:42:93:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ivlg_e70BzVat4Nty2uQJvRCk-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/JKgRvO8MrXUaqOzM-OhSrQ1UTUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/Ivlg_e70BzVat4Nty2uQJvRCk-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.90.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7b:51:9d:b4:75:0b:b3:23:13:5d:c8:af:6a:5d:0e:63:82:
7b:89:cc:3b:43:bb:0b:bc:1c:92:82:e9:96:8e:90:e2:c6:15:
54:75:6c:19:68:f8:4d:81:af:71:a9:34:98:6e:53:10:c2:e5:
06:61:79:f8:03:62:4b:44:74:b0:8e:75:3d:a8:db:b3:a3:73:
e0:66:91:0f:8d:65:17:60:59:df:f8:00:b9:f6:44:29:10:a8:
b9:b7:cb:f9:bd:ea:ae:91:74:49:1c:62:81:21:68:a7:c9:44:
2f:9e:40:2c:0a:0a:63:91:b6:de:be:42:95:44:8c:9b:b1:5a:
41:09:2b:10:26:7a:57:86:6d:7e:74:e8:ff:e6:c8:29:4e:3d:
8b:d8:d2:7e:ca:e8:11:61:3e:01:5a:d6:e5:b8:ea:95:91:dc:
52:5a:3a:6a:fa:50:93:80:84:f1:3d:92:a9:7d:f9:d0:80:79:
83:a4:4b:ac:d4:02:1d:a9:93:cb:09:90:c1:bd:ae:89:16:c9:
c6:8c:bf:ae:a9:4a:c7:72:a7:c1:47:82:ad:4c:a3:3e:f6:0a:
71:9a:fd:b5:80:84:30:9b:0f:dd:bd:ff:59:bf:75:0e:56:54:
c5:77:fd:d2:9e:bd:fa:3d:52:bc:f1:77:c8:ee:e0:43:17:30:
cb:f4:54:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaC96OVUG30jb7XoR5ovSP7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZjk2MGZkZWVmNDA3MzU1YWI3ODM2ZGNiNmI5MDI2ZjQ0
MjkzZWEwHhcNMjMwMjI0MTAyODMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGE4MTFiY2VmMGNhZDc1MWFhOGVjY2NmOGU4NTJhZDBkNTQ0ZDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3c+W2uBv2MJEvrp6zFRGPGFvcp2
bsfAr4Hj/z2OxgVHj30vWt9nN1Qz2cb6NAklZ0ucM5bjwIcR+ETCUGrob/hgnL5K
1jH49g7Fd88XGfIz6wN+P+eF8DI19JpCvj6JR+OsGAV4JFI45/C1jcRqxZRAAL4A
+VS/fA57FGq5bVHkrjyzXU7wntWMzn+m3xH+NyzcC9hUVVb+pDa5VXn09EGJBX6Q
GtiB/DkSR/XwrvhjRJcBTOI5kh8e2ixE1f3r5Fuo94rAEGwwEtXnyLIAevVfeIO8
7WO9vj0y+lpbEFlAfjGmr/nkVFC0mdJCrWio7UtxR70dBq0OvyCYbOfOiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCSoEbzvDK11GqjszPjoUq0NVE1CMB8GA1UdIwQY
MBaAFCL5YP3u9Ac1WreDbctrkCb0QpPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXZsZ19lNzBCelZhdDROdHkydVFKdlJDay1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMTU1YmYtYzg4MS00Mzk2LWFlZmQt
MjM2YmE5ZWU0MDU2LzEvSktnUnZPOE1yWFVhcU96TS1PaFNyUTFVVFVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zMTU1YmYtYzg4MS00Mzk2LWFlZmQtMjM2YmE5ZWU0MDU2
LzEvSXZsZ19lNzBCelZhdDROdHkydVFKdlJDay1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/haMA0G
CSqGSIb3DQEBCwUAA4IBAQAte1GdtHULsyMTXcival0OY4J7icw7Q7sLvBySgumW
jpDixhVUdWwZaPhNga9xqTSYblMQwuUGYXn4A2JLRHSwjnU9qNuzo3PgZpEPjWUX
YFnf+AC59kQpEKi5t8v5vequkXRJHGKBIWinyUQvnkAsCgpjkbbevkKVRIybsVpB
CSsQJnpXhm1+dOj/5sgpTj2L2NJ+yugRYT4BWtbluOqVkdxSWjpq+lCTgITxPZKp
ffnQgHmDpEus1AIdqZPLCZDBva6JFsnGjL+uqUrHcqfBR4KtTKM+9gpxmv21gIQw
mw/dvf9Zv3UOVlTFd/3Snr36PVK88XfI7uBDFzDL9FTb
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:14:35 2025 by rpki-client