Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/06vOi1WDY2gfeXuZvP9yiwtCXVQ.roa
File: 06vOi1WDY2gfeXuZvP9yiwtCXVQ.roa (raw, json)
Hash identifier: ZWQt48dzIvINp75pr3Mf7zjaPtB3kg/v5gD7f78H4PQ=
Subject key identifier: D3:AB:CE:8B:55:83:63:68:1F:79:7B:99:BC:FF:72:8B:0B:42:5D:54
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 381CD752
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/06vOi1WDY2gfeXuZvP9yiwtCXVQ.roa
Signing time: Sat 01 Jan 2022 01:52:58 +0000
ROA not before: Sat 01 Jan 2022 01:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3302
IP address blocks: 195.62.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941414226 (0x381cd752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Jan 1 01:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3abce8b558363681f797b99bcff728b0b425d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:07:a5:15:86:d9:c1:3f:ef:dd:8e:2a:93:
08:71:de:1b:76:b8:c5:85:3f:20:15:74:e7:f9:09:
e2:8e:07:e8:5c:60:b3:e1:cd:35:e1:37:f7:0f:fe:
6a:8b:60:01:ba:86:7b:60:49:7d:0b:83:9c:ac:38:
8f:03:2c:38:f6:70:cf:ed:5c:c5:d6:1e:02:6a:83:
6a:c3:08:7a:fe:db:ba:4c:e3:30:f4:6f:02:b5:c1:
dd:1b:d9:0c:dc:73:db:38:1a:f1:ec:7e:ab:de:14:
ab:9d:e2:4b:80:90:ab:98:39:58:02:e1:44:8f:74:
48:c5:e5:72:c5:25:d8:3d:8a:b1:2d:0f:82:98:87:
13:d8:fb:c0:07:aa:89:0e:83:ac:24:0c:45:7c:7a:
4a:16:cd:21:2c:9c:c3:6b:fb:3a:c1:45:87:39:92:
88:43:c0:52:07:14:2a:69:5f:d0:ac:fa:9e:d5:80:
52:ca:bc:03:1f:16:05:12:b0:f7:a5:b6:43:08:70:
a8:fd:48:64:0a:69:01:0a:23:f6:8d:47:f7:cc:a6:
8a:fa:43:17:f0:3e:c9:a2:54:c8:6b:3c:f0:94:fc:
69:c8:07:9d:f4:25:ae:69:63:e6:39:4c:13:f7:e3:
7d:61:cc:84:3f:bc:ad:c7:6f:93:9f:44:07:c6:f9:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AB:CE:8B:55:83:63:68:1F:79:7B:99:BC:FF:72:8B:0B:42:5D:54
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/06vOi1WDY2gfeXuZvP9yiwtCXVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.224.0/19
Signature Algorithm: sha256WithRSAEncryption
79:60:9b:0c:88:df:da:e3:f8:6d:66:97:c5:7c:6f:7f:8c:c2:
8c:ec:54:ae:25:05:ed:91:00:44:5e:b9:8e:7b:f3:0c:1d:9e:
07:bb:69:85:de:4a:dc:1d:69:f3:0a:eb:a8:ce:47:f7:43:1f:
45:51:80:56:f7:f3:f2:ec:80:65:fb:5b:16:c2:36:1b:41:d7:
8c:98:96:52:ad:42:f4:33:50:b8:80:47:64:c9:b3:a6:5e:07:
c8:54:65:4d:b6:90:1e:0d:80:2b:e4:e8:a5:99:c2:ae:18:30:
5e:66:d7:1c:81:37:09:18:8f:85:da:e2:8c:4a:ad:eb:86:2e:
b6:78:a1:10:db:13:8c:67:53:79:00:10:5e:2c:15:50:43:2b:
6f:00:00:ac:68:bd:1b:25:e0:fe:9a:1f:1d:c5:63:70:a6:69:
61:1c:78:d0:87:45:85:a3:7e:ac:07:d0:7e:a4:86:fb:87:45:
17:c0:f2:2b:23:96:51:5f:5a:24:ea:91:d3:d7:c5:84:84:c7:
5b:d3:a3:f4:55:66:21:7c:39:ca:bb:c9:6a:2d:58:9e:a9:fa:
00:b7:4e:21:d3:fc:1d:bc:0b:11:e3:f0:b9:ec:2c:94:88:a3:
c8:4c:e8:c9:5c:03:68:52:f9:6c:85:a5:23:21:fa:28:6e:0d:
f3:b1:fa:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:18:28 2025 by rpki-client