Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/ZESfF4z6quuH0VA83mPwDkhEOGI.roa
File: ZESfF4z6quuH0VA83mPwDkhEOGI.roa (raw, json)
Hash identifier: vgUBxxK3YtdPszcnBS5hAa2TPutE/iHTPScPEHea+38=
Subject key identifier: 64:44:9F:17:8C:FA:AA:EB:87:D1:50:3C:DE:63:F0:0E:48:44:38:62
Certificate issuer: /CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Certificate serial: 062B89CB
Authority key identifier: 27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/ZESfF4z6quuH0VA83mPwDkhEOGI.roa
Signing time: Tue 26 Apr 2022 06:30:56 +0000
ROA not before: Tue 26 Apr 2022 06:30:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64413
IP address blocks: 95.81.84.0/22 maxlen: 24
95.81.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103516619 (0x62b89cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Validity
Not Before: Apr 26 06:30:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64449f178cfaaaeb87d1503cde63f00e48443862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f8:29:f9:ff:21:17:7a:0f:91:f9:2e:24:8f:
28:18:58:36:d2:fb:66:45:f6:21:68:ad:a5:b4:20:
e4:e5:ef:76:10:07:a9:03:25:b6:e3:1d:6e:c4:9a:
3d:b1:29:52:5c:24:3e:5a:e4:88:9a:c1:a5:ee:09:
88:ca:93:78:b1:16:35:77:ca:0f:06:ca:fb:64:a8:
d6:b6:94:d7:6a:72:40:45:b6:83:ea:72:09:62:b3:
e8:2c:fa:54:51:6b:86:5b:52:b8:74:21:42:8c:62:
22:f1:4d:cc:dc:91:4f:eb:35:b1:65:ed:8f:20:6e:
17:8f:35:e8:34:56:c1:5d:b2:ec:e6:fd:14:14:dd:
89:a1:16:52:bc:29:0c:55:5e:30:c8:ef:55:f0:c1:
9f:d5:d7:88:2d:85:9b:31:4f:48:4c:48:f9:e4:90:
b1:ae:e2:9d:0d:6a:4e:c3:95:98:1f:af:0b:fe:8e:
98:2a:0d:e8:9f:20:9e:4d:19:02:d9:00:58:41:1a:
20:7d:59:bc:0f:b8:47:12:f1:01:68:5a:f3:a3:fe:
83:69:cb:c2:83:78:71:9c:9d:27:24:31:9f:42:9e:
6f:bc:d8:e1:ce:d8:48:6a:41:c6:5c:41:d2:39:bf:
e6:8e:b9:29:db:8a:6e:47:4a:7b:d6:96:5f:53:b8:
f3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:44:9F:17:8C:FA:AA:EB:87:D1:50:3C:DE:63:F0:0E:48:44:38:62
X509v3 Authority Key Identifier:
keyid:27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/ZESfF4z6quuH0VA83mPwDkhEOGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.81.84.0/22
95.81.92.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:59:7a:23:b2:72:d4:d4:bf:82:11:c4:29:b3:11:d3:66:30:
de:38:1b:c3:c1:20:74:67:5c:91:84:a9:b4:93:c4:8f:f1:24:
d5:b9:c2:8d:c9:67:76:ae:02:97:6a:bd:ee:d0:72:4c:e0:99:
86:81:e3:82:e1:9b:65:0c:ad:9a:b1:51:e5:28:c8:56:a5:af:
91:e8:6c:d2:28:a7:da:ec:55:8f:1e:dd:b7:41:c1:75:88:b0:
d9:94:36:51:8e:57:ed:54:d6:6e:93:65:cc:d4:ce:5c:52:3e:
bc:f7:93:8d:c3:27:c9:d3:fe:e7:ae:79:b4:47:91:89:b8:6c:
c9:cd:15:6b:af:0b:83:2d:d1:3f:bb:7d:93:63:dd:76:b3:a2:
2e:27:c3:2d:0f:71:a6:fd:d3:21:0e:0b:93:06:91:ef:64:60:
c8:6f:f7:c3:6e:ed:32:25:c7:de:3e:a0:4d:84:ef:69:d9:ea:
0f:d9:af:f3:4b:4a:4d:c2:74:eb:3f:59:54:84:7c:03:6f:06:
2e:35:86:7a:19:4a:8a:81:84:b6:47:57:2d:e3:49:97:ab:92:
03:a6:6e:b5:ac:64:13:12:a8:ee:f0:ea:f2:4a:a9:57:09:cc:
a5:fc:f7:3e:0a:52:38:8d:a8:99:b0:42:a2:fa:30:c6:fb:af:
a5:5a:2f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:32 2025 by rpki-client