Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/rHLodqubA16RVYhVVHIfmQ_NQHs.roa
File: rHLodqubA16RVYhVVHIfmQ_NQHs.roa (raw, json)
Hash identifier: 7JgAPE1GxSGzuHTsF4O3YeWUPaoUoRgvDHhtk6JPY0k=
Subject key identifier: AC:72:E8:76:AB:9B:03:5E:91:55:88:55:54:72:1F:99:0F:CD:40:7B
Certificate issuer: /CN=4d34750be2173cb9b086a77c6dea54b4a8469af3
Certificate serial: 018670FEE0D6CBEBB5BA5853AAF7DAC70212
Authority key identifier: 4D:34:75:0B:E2:17:3C:B9:B0:86:A7:7C:6D:EA:54:B4:A8:46:9A:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTR1C-IXPLmwhqd8bepUtKhGmvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/rHLodqubA16RVYhVVHIfmQ_NQHs.roa
Signing time: Mon 20 Feb 2023 22:43:17 +0000
ROA not before: Mon 20 Feb 2023 22:43:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197999
IP address blocks: 195.66.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:70:fe:e0:d6:cb:eb:b5:ba:58:53:aa:f7:da:c7:02:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d34750be2173cb9b086a77c6dea54b4a8469af3
Validity
Not Before: Feb 20 22:43:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac72e876ab9b035e9155885554721f990fcd407b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0d:33:5b:f1:2a:7d:b7:90:9f:34:e9:6b:4c:
06:a0:29:e6:1c:57:01:60:67:1a:db:3c:56:90:5e:
ff:84:cb:3e:cb:06:f4:3b:b1:fc:07:ea:13:96:e5:
f7:d0:6e:df:28:81:66:f6:c0:62:11:71:e8:b3:bf:
c6:50:7b:31:26:24:88:af:14:99:c9:c1:1c:a4:46:
38:30:85:08:0a:58:1a:b0:98:e0:3d:83:a8:bf:97:
14:32:4a:58:95:f0:c2:df:fe:a6:61:b5:66:b3:ed:
3b:f6:fd:c6:1b:2c:ce:1c:b9:10:9b:89:4e:05:b1:
0e:37:7e:c7:d7:4c:30:24:f3:e6:2c:55:31:c4:f7:
6f:ef:87:9b:6b:5a:fa:8b:e6:e0:8a:62:8f:dc:17:
3d:4b:9a:4f:0b:5a:4d:60:65:cb:da:d0:6d:57:06:
bf:b2:be:a5:86:11:23:83:01:9e:44:15:03:94:65:
04:52:b5:0e:d1:d3:c0:7d:00:e3:5f:90:54:75:e4:
72:06:89:6d:07:36:2a:51:bb:6d:67:cf:57:ce:8b:
71:09:84:f5:ca:b4:a5:3d:d8:7b:2a:83:f1:0b:4a:
1c:12:11:7e:8a:27:de:95:0f:d9:b9:dc:de:41:84:
68:53:9e:e9:a2:8d:6c:7a:50:c5:9e:1f:51:59:fc:
15:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:72:E8:76:AB:9B:03:5E:91:55:88:55:54:72:1F:99:0F:CD:40:7B
X509v3 Authority Key Identifier:
keyid:4D:34:75:0B:E2:17:3C:B9:B0:86:A7:7C:6D:EA:54:B4:A8:46:9A:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTR1C-IXPLmwhqd8bepUtKhGmvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/rHLodqubA16RVYhVVHIfmQ_NQHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/TTR1C-IXPLmwhqd8bepUtKhGmvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.91.0/24
Signature Algorithm: sha256WithRSAEncryption
40:51:a0:b0:29:08:ce:05:2a:5b:8d:88:da:4a:49:7d:ee:f5:
29:35:60:9c:13:68:fb:59:fa:02:41:a6:09:f8:4c:44:bb:b3:
34:d2:2a:39:0a:91:2b:2d:ee:e7:6e:7b:70:15:df:5c:0c:56:
af:d0:42:7b:62:ac:5f:89:b8:27:82:46:16:f9:9f:b5:f9:a4:
f9:ff:15:4b:84:5a:02:ea:4d:07:6d:45:db:65:be:38:7f:2a:
93:cf:c1:06:41:4f:3c:81:ac:8f:09:11:d9:f8:55:f3:9f:2b:
d6:30:9f:58:03:2d:55:29:fd:44:ee:8a:77:d7:2f:84:c0:2c:
0d:44:c7:33:48:ce:2f:c4:0f:81:81:95:3e:3f:23:82:27:63:
4e:f1:e1:41:a2:a5:d7:29:22:fe:e5:30:88:17:93:be:5e:0d:
4c:2f:a1:75:1c:3b:9a:7f:33:a2:9b:53:46:02:3e:18:0a:8c:
6e:16:c3:b5:e9:04:83:ff:5a:fd:8e:9f:c4:a3:37:67:64:50:
c1:fd:94:da:c7:ff:fa:6a:5c:2a:95:99:ad:61:c2:9a:da:be:
81:db:15:3e:85:3e:26:0e:d0:d3:e3:fe:47:cc:3a:2e:e4:31:
2e:a2:53:e7:5b:0d:58:19:13:ec:77:74:e5:05:3d:ef:d2:a8:
34:6a:7a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:10 2025 by rpki-client