Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/RnUU6lmHIc6LjyxzyYma4O5EwLA.roa
File: RnUU6lmHIc6LjyxzyYma4O5EwLA.roa (raw, json)
Hash identifier: 4eB1JyKuzVz5evs50HDqnbgQAh8PTwpbK2ks5xtZ0w4=
Subject key identifier: 46:75:14:EA:59:87:21:CE:8B:8F:2C:73:C9:89:9A:E0:EE:44:C0:B0
Certificate issuer: /CN=37ca50022828d901bf42b2798f7844104b05404d
Certificate serial: 01856FF94CFF5B4B095778946B327467ED1E
Authority key identifier: 37:CA:50:02:28:28:D9:01:BF:42:B2:79:8F:78:44:10:4B:05:40:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8pQAigo2QG_QrJ5j3hEEEsFQE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/RnUU6lmHIc6LjyxzyYma4O5EwLA.roa
Signing time: Mon 02 Jan 2023 00:54:47 +0000
ROA not before: Mon 02 Jan 2023 00:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42677
IP address blocks: 195.248.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:4c:ff:5b:4b:09:57:78:94:6b:32:74:67:ed:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ca50022828d901bf42b2798f7844104b05404d
Validity
Not Before: Jan 2 00:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=467514ea598721ce8b8f2c73c9899ae0ee44c0b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3c:7b:e4:8a:ee:87:be:f9:d0:3c:6f:c4:b9:
6d:b1:df:d8:a7:1d:84:c4:94:62:45:f3:47:17:3a:
c5:7e:2e:08:db:47:cc:86:2d:1d:a7:bd:ea:07:c1:
c4:16:ed:4a:b3:da:12:79:68:33:3a:70:bb:09:eb:
ea:0e:cf:75:8b:a6:d6:c6:0e:bc:ce:77:d4:2e:a7:
f4:42:c9:6c:1c:4d:86:9e:be:8e:af:fb:bd:a3:67:
9f:1a:00:f0:36:87:7c:2e:f5:f9:de:2f:ae:d6:4e:
12:66:5b:56:de:46:a2:01:75:ef:61:f0:1c:97:11:
47:65:eb:00:28:a8:a4:94:10:72:9a:13:7c:31:2b:
3d:fb:a0:57:77:e9:44:0e:40:9e:3f:6d:6f:4e:a8:
43:7f:b8:b4:e8:cc:ad:55:21:48:9e:c3:42:8e:17:
07:14:48:29:9d:f4:56:72:35:83:3f:fe:3e:e8:bd:
88:50:2b:a5:83:31:9f:1f:b8:2c:a3:06:64:96:5e:
b4:13:e4:17:45:80:1f:da:15:f4:eb:a4:22:22:e2:
7e:ef:48:b4:08:d4:a4:83:9c:7b:5d:f9:a7:4d:82:
ec:a3:ab:8d:48:87:99:36:d9:ba:5a:6a:e3:ae:de:
4f:88:c6:4d:a6:1e:87:50:54:3c:18:ed:31:d6:3c:
2d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:75:14:EA:59:87:21:CE:8B:8F:2C:73:C9:89:9A:E0:EE:44:C0:B0
X509v3 Authority Key Identifier:
keyid:37:CA:50:02:28:28:D9:01:BF:42:B2:79:8F:78:44:10:4B:05:40:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8pQAigo2QG_QrJ5j3hEEEsFQE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/RnUU6lmHIc6LjyxzyYma4O5EwLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/N8pQAigo2QG_QrJ5j3hEEEsFQE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.232.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:17:25:1d:2b:64:e3:fb:57:31:bb:e5:98:9b:50:77:d0:8c:
9f:31:c1:31:f1:55:d2:43:d7:0c:6d:bf:80:ff:86:a2:91:e0:
94:c0:d0:b1:8c:36:c0:c7:40:d7:78:8b:73:03:04:4c:cc:c2:
f5:4b:68:7f:0a:53:38:a8:6a:7d:4c:e7:ca:c1:58:ef:6a:2a:
ed:8b:e9:34:49:c1:5f:e7:f3:71:59:19:16:90:da:4f:53:dd:
08:ba:6f:a0:8c:a3:01:d5:04:3b:b5:95:15:2e:40:25:8c:d5:
5e:4d:25:95:03:8a:9e:e9:b7:4f:84:f0:ec:77:e1:fb:92:43:
bc:f3:c5:34:ee:af:d4:97:14:cf:d3:72:a5:e3:0e:11:d2:9f:
89:ea:59:08:19:5f:4f:36:d0:76:6a:33:f7:8d:0e:dc:0f:56:
cc:2b:3a:9e:c8:86:14:cc:0f:cd:0e:92:27:c7:0e:5e:98:cb:
08:c1:d7:ce:f1:1e:60:3e:61:53:e7:76:f8:97:43:a8:ce:4b:
ed:43:71:67:12:c4:14:75:72:e7:9d:31:7e:49:28:6e:92:e4:
fa:72:cf:d8:78:1c:a6:35:4a:6d:3d:76:cd:c0:57:7e:99:4c:
37:c0:83:6e:5b:26:ef:f3:6f:bf:66:2c:5e:98:20:9b:87:3f:
84:10:65:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:01:16 2025 by rpki-client