Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ufP3TPsnZonbZOhZ58GhXIge-fY.roa
File: ufP3TPsnZonbZOhZ58GhXIge-fY.roa (raw, json)
Hash identifier: Q5qW6M1CCruf/dsJn5ytq0NwqfOkERZpW6vfP6qsDIY=
Subject key identifier: B9:F3:F7:4C:FB:27:66:89:DB:64:E8:59:E7:C1:A1:5C:88:1E:F9:F6
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A8DE984
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ufP3TPsnZonbZOhZ58GhXIge-fY.roa
Signing time: Sat 01 Jan 2022 04:52:11 +0000
ROA not before: Sat 01 Jan 2022 04:52:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204412
IP address blocks: 195.136.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982378884 (0x3a8de984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9f3f74cfb276689db64e859e7c1a15c881ef9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8a:1b:e4:4c:ec:a9:b1:81:83:1f:cf:fa:43:
81:ee:47:96:dc:1d:78:32:7c:c5:08:b5:2c:29:fa:
84:d7:b1:3e:82:6d:00:95:40:7a:32:74:27:ec:c0:
90:ad:b7:23:83:9b:e0:db:1d:9f:e9:c4:d2:76:62:
e3:48:e6:d9:ec:6b:b3:c8:d8:5b:f6:3c:b6:db:d2:
99:a9:48:64:a9:8c:99:e5:e6:d8:4d:24:62:23:26:
98:d7:71:30:52:f1:c1:17:d9:79:fd:cc:29:ed:e2:
09:21:a5:11:50:dd:8f:23:71:cb:8f:21:e8:69:19:
23:d1:00:5a:81:56:2d:88:10:36:42:c7:60:3c:f3:
ec:de:41:b3:7c:c6:e1:95:3a:71:fa:39:b3:ae:87:
93:d4:0a:64:c8:97:b8:d7:5f:4c:0d:27:e4:68:a4:
2d:83:73:18:c8:8c:c6:04:ef:86:e9:fa:48:5d:81:
41:8e:d0:87:71:fd:d9:b0:e3:f2:ba:88:50:3b:19:
85:1d:f2:b4:e8:23:b5:31:cc:8b:59:a2:b2:85:3f:
91:d4:7e:0f:d1:af:ca:36:de:e2:03:1a:da:2e:c1:
74:e9:df:a7:b7:19:81:ab:1f:41:e5:ad:a3:da:03:
d7:11:e8:7c:37:ce:24:cb:1e:fd:d3:8f:e5:fd:00:
f0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F3:F7:4C:FB:27:66:89:DB:64:E8:59:E7:C1:A1:5C:88:1E:F9:F6
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ufP3TPsnZonbZOhZ58GhXIge-fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.121.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a2:5d:f9:ca:c8:1c:5e:e5:0f:da:d7:9f:3f:ea:72:65:5a:
13:95:7a:e2:df:43:3f:f6:45:8b:c9:f3:f2:fd:8e:e9:fc:af:
b1:a9:33:8c:d2:00:12:18:98:16:c9:b1:3f:7a:5b:38:26:66:
3a:0d:05:c8:74:c3:a5:76:5b:93:3c:be:96:84:e0:0f:b2:88:
fb:04:59:54:63:9e:84:5d:52:b1:e1:d7:e7:82:e5:6e:11:ee:
8a:a9:56:6f:fa:47:9b:47:9d:f5:ca:05:13:72:84:45:cc:36:
5d:b9:cf:95:10:23:5f:58:fd:1c:76:c4:5d:4a:be:9e:3e:fc:
79:55:e6:20:97:6a:07:69:a0:02:33:e7:0e:ef:6b:0e:45:22:
55:4d:67:20:0f:1a:66:54:4a:3a:81:33:77:a9:dc:9b:38:1e:
55:78:5c:a4:c7:67:10:72:06:72:c2:35:6e:4d:f6:27:6f:8e:
bb:cd:54:88:00:84:27:c7:93:e4:0d:65:ca:ac:63:f3:cf:a8:
78:42:8d:fc:fd:7e:82:6d:44:18:a9:bc:df:53:f9:be:42:c7:
77:71:14:a5:7e:f6:2d:4a:24:40:f3:57:92:cd:38:80:d0:92:
ef:b1:9a:b6:00:9a:44:40:7e:2d:21:47:df:75:23:e2:31:bc:
4f:42:90:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:22 2025 by rpki-client