Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/dZJ-YJsDu9eCmC--zNrJUUp0gEQ.roa
File: dZJ-YJsDu9eCmC--zNrJUUp0gEQ.roa (raw, json)
Hash identifier: 32jPbfRg5JzINF//WRCCPzbCKEcib0d+b1JamQq0Hg8=
Subject key identifier: 75:92:7E:60:9B:03:BB:D7:82:98:2F:BE:CC:DA:C9:51:4A:74:80:44
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A91B3DA
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/dZJ-YJsDu9eCmC--zNrJUUp0gEQ.roa
Signing time: Sat 01 Jan 2022 04:52:13 +0000
ROA not before: Sat 01 Jan 2022 04:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205608
IP address blocks: 195.136.4.0/22 maxlen: 22
195.136.38.0/23 maxlen: 23
195.136.156.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982627290 (0x3a91b3da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75927e609b03bbd782982fbeccdac9514a748044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6e:4d:69:26:d8:ba:03:56:21:6f:b2:ad:13:
83:92:09:34:ff:3d:83:5f:f3:e8:7f:f4:40:4c:19:
02:ed:03:31:c9:cd:3f:e2:f0:41:22:74:72:07:2d:
5b:d3:0f:e9:5e:86:5e:20:8f:d2:f9:71:b6:72:52:
d9:30:06:e4:0f:1f:ba:28:e8:75:85:96:cb:d7:bf:
5c:ab:9a:86:91:91:2b:ae:90:c3:86:e5:84:87:4d:
e1:21:66:30:c0:84:c4:2a:46:22:f8:ed:d0:35:0e:
8f:83:af:1a:dd:ca:7a:8e:1d:cd:46:ce:1f:34:70:
e4:1c:14:68:ee:ff:00:e5:3e:0f:df:cd:44:fb:52:
18:d7:78:4d:66:13:af:aa:30:39:d6:30:96:6b:34:
6d:30:ce:c1:27:04:db:c3:37:dc:be:7c:72:94:9d:
2e:be:45:f9:3c:43:b2:56:9b:3f:32:15:dc:a2:08:
c7:d1:ef:35:cc:fd:5a:5c:d9:cd:09:cb:e1:30:09:
89:4f:b7:0d:ee:f7:58:23:93:a2:b0:81:3b:ed:32:
ab:2e:9d:de:2e:c4:54:27:24:6f:a3:29:e8:aa:64:
c6:25:df:e7:1c:dc:62:58:8d:9f:22:e2:2b:d7:9a:
a1:ad:81:6b:6f:5b:0a:75:d1:48:94:a2:94:f6:50:
bd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:92:7E:60:9B:03:BB:D7:82:98:2F:BE:CC:DA:C9:51:4A:74:80:44
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/dZJ-YJsDu9eCmC--zNrJUUp0gEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.4.0/22
195.136.38.0/23
195.136.156.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:c0:6b:59:eb:c7:cf:33:db:0e:f2:ae:ba:64:ae:14:f2:3d:
45:a1:46:f7:f7:04:32:9c:69:47:a1:9f:7f:32:0f:a1:23:bd:
00:95:5e:c1:88:9b:d1:26:bf:5c:5d:7b:4f:c8:e5:0c:ac:1d:
87:2d:08:24:0f:f5:bd:2e:e0:10:bd:70:eb:60:26:92:aa:9c:
06:4b:b5:0f:98:99:e8:a7:7a:43:03:d0:03:ba:5f:dd:b3:a3:
f3:5a:91:53:b4:84:6f:78:00:df:d2:2e:34:eb:e3:08:7d:cd:
d0:eb:d3:0e:55:22:37:33:88:9a:9c:d9:74:40:5c:2b:c4:b9:
b8:91:f6:f5:2c:67:3b:a7:73:a4:e1:4a:21:a5:51:ed:43:73:
22:05:14:e1:17:d1:bd:e4:52:51:ae:d7:a0:88:1c:2d:1d:12:
e8:a2:12:e0:df:89:76:a8:56:d1:86:96:41:84:e4:9f:fc:9b:
7e:cd:67:f9:44:47:72:1f:cc:4c:35:6c:48:f1:f8:c8:8f:28:
04:5b:a6:52:fd:8e:d8:e2:26:56:0e:6b:a5:af:d4:13:47:b0:
e8:03:95:89:a1:72:5d:67:2d:51:48:a5:9e:a2:6d:48:25:fb:
04:99:6a:1c:70:f9:18:72:7d:28:a1:a0:22:84:65:0d:1b:aa:
8a:2e:c9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:39 2025 by rpki-client