Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/zRUD9Qj00JkxyaIWfj5JJTSm9NE.roa
File: zRUD9Qj00JkxyaIWfj5JJTSm9NE.roa (raw, json)
Hash identifier: WuSGGihFG+74AJ8yIpHsB7CLTS3hcQsJE4FQx73pOXc=
Subject key identifier: CD:15:03:F5:08:F4:D0:99:31:C9:A2:16:7E:3E:49:25:34:A6:F4:D1
Certificate issuer: /CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Certificate serial: 03E9F154
Authority key identifier: 84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/zRUD9Qj00JkxyaIWfj5JJTSm9NE.roa
Signing time: Sat 01 Jan 2022 13:57:30 +0000
ROA not before: Sat 01 Jan 2022 13:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203461
IP address blocks: 195.110.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65663316 (0x3e9f154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Validity
Not Before: Jan 1 13:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd1503f508f4d09931c9a2167e3e492534a6f4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:54:70:85:36:ce:ff:26:01:c9:36:af:55:
06:dc:6f:b5:4f:a3:8c:1c:ba:c2:d3:94:e2:91:44:
43:e7:c5:2d:b1:f2:58:38:4f:6a:03:b3:e9:b7:2d:
db:89:15:ab:77:09:ab:65:d8:4f:80:ad:4e:59:23:
9c:0c:70:6a:82:53:f9:f4:a5:9b:97:d4:92:c5:27:
68:47:bc:10:7f:fa:43:61:a1:05:50:a0:cd:44:ae:
81:24:37:4a:22:a5:e9:28:f1:55:34:da:40:90:29:
5f:d1:cd:53:0b:55:06:c7:cb:f3:1c:03:e7:99:04:
5c:8a:0b:31:93:62:a7:f4:4d:bc:b5:12:3c:19:a2:
1a:e8:27:54:f6:c0:1d:ff:0d:d4:1c:4c:dc:b7:95:
22:3f:ed:5a:43:2d:59:09:3a:8e:76:28:21:4e:e6:
25:b8:f0:cd:0b:49:a6:fc:5b:80:1b:36:d7:75:59:
1a:ae:cc:cb:20:cb:bf:8e:08:a5:25:4b:89:d6:88:
a7:0d:34:e0:48:16:b2:b6:fa:83:fd:d4:c4:32:aa:
32:6d:47:78:29:a9:01:24:09:7f:51:07:a0:01:39:
ea:6e:2a:3b:86:71:4e:e8:28:a3:25:4e:cd:36:68:
6d:a1:ea:51:77:f8:1f:f5:c3:0f:a6:08:fe:62:da:
58:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:15:03:F5:08:F4:D0:99:31:C9:A2:16:7E:3E:49:25:34:A6:F4:D1
X509v3 Authority Key Identifier:
keyid:84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/zRUD9Qj00JkxyaIWfj5JJTSm9NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.108.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:ad:d5:9a:78:ca:77:e7:22:7d:ca:de:20:b3:b9:e6:e9:b1:
b5:5f:25:58:63:71:2f:2b:9b:7b:34:21:8f:87:3d:de:05:2f:
77:ba:51:46:99:68:7f:fc:1f:db:c9:80:c7:43:46:4e:a6:cb:
f2:80:16:23:4b:cb:03:06:f9:e6:b2:08:29:b0:3b:74:0d:f6:
db:d6:25:7a:cb:66:ee:ed:05:31:41:e0:36:6c:26:75:3f:3e:
23:1c:95:6f:de:f7:4a:09:e8:12:5b:00:d0:67:4f:32:8e:8f:
40:84:fb:10:5c:f6:a6:e7:70:0d:6e:37:23:0a:2c:a7:e3:30:
c6:c8:a5:ee:a2:db:a9:eb:6f:da:e8:5e:7b:54:ad:70:bb:8c:
ea:9b:e4:03:12:96:42:82:77:c7:ee:1f:cb:5a:42:38:58:0c:
b6:ba:d2:6f:ac:ed:84:a4:17:9a:82:21:1b:5e:cd:32:6f:35:
7b:ee:a1:2a:7c:43:11:e7:43:47:5c:ec:08:d8:1c:db:7d:1f:
22:fd:cd:00:20:fc:f9:c7:2c:73:b1:60:d4:f8:67:03:b1:44:
4b:76:7e:40:d5:ba:5b:12:06:2c:aa:ac:3a:59:c1:46:d3:3c:
f6:11:b4:ca:4f:19:fd:08:91:66:00:45:5e:4f:c9:8f:3c:1f:
14:06:a5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:18:29 2025 by rpki-client