Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/50753a-91aa-447b-b232-a000d769e026/1/R5EtWZBpLs5m6l-RJ9lC0x62x5I.roa
File: R5EtWZBpLs5m6l-RJ9lC0x62x5I.roa (raw, json)
Hash identifier: jCSSZOMv/sbxpaoHGL4OmFwip6kVCRJ0qOUdz1w15No=
Subject key identifier: 47:91:2D:59:90:69:2E:CE:66:EA:5F:91:27:D9:42:D3:1E:B6:C7:92
Certificate issuer: /CN=9666c238f7ffdacf15c802e320b52e0980869cec
Certificate serial: C8D6F9
Authority key identifier: 96:66:C2:38:F7:FF:DA:CF:15:C8:02:E3:20:B5:2E:09:80:86:9C:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmbCOPf_2s8VyALjILUuCYCGnOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/50753a-91aa-447b-b232-a000d769e026/1/R5EtWZBpLs5m6l-RJ9lC0x62x5I.roa
Signing time: Sat 01 Jan 2022 12:57:43 +0000
ROA not before: Sat 01 Jan 2022 12:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197864
IP address blocks: 195.225.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13162233 (0xc8d6f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9666c238f7ffdacf15c802e320b52e0980869cec
Validity
Not Before: Jan 1 12:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47912d5990692ece66ea5f9127d942d31eb6c792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:ce:c1:15:50:76:3c:60:10:95:6e:3e:a4:
ba:ab:f2:0a:1f:d6:ad:66:86:ca:d7:ef:24:2c:42:
24:a7:82:0d:e2:39:20:7b:58:b1:cb:20:1e:0d:6c:
c9:8d:37:15:91:10:c2:f2:71:8f:37:6b:36:32:b3:
47:54:46:a9:98:ee:27:b0:fc:25:c2:9e:f2:50:e8:
85:ab:66:3d:35:2b:99:32:13:6c:18:2e:3f:48:df:
1d:b7:af:b1:d3:a6:84:3d:46:aa:89:c3:82:49:df:
74:71:5d:17:b0:50:25:e3:ae:56:ac:c8:93:f3:14:
7a:39:c0:52:6a:15:54:0e:b0:8a:b2:4b:b0:b7:be:
91:3c:84:de:07:f8:63:e4:d8:66:7c:07:4b:1c:41:
62:17:8a:90:9a:99:7e:1f:4d:7f:bd:96:2a:ee:24:
a2:d7:d3:24:b3:dc:b7:9f:82:f0:b0:bd:f4:ad:e9:
b4:40:45:9f:83:71:3a:db:35:9b:6c:7b:7f:96:73:
19:8e:fe:38:a1:ad:8f:68:7f:fe:fe:72:d7:31:83:
e8:e8:d4:1f:c1:52:a0:d1:a4:1f:99:80:25:13:71:
14:d4:16:07:f7:4d:8b:a8:e8:e1:bc:76:f0:db:77:
31:7e:b4:87:d5:f8:50:c3:7d:83:a2:64:fa:b4:fa:
59:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:91:2D:59:90:69:2E:CE:66:EA:5F:91:27:D9:42:D3:1E:B6:C7:92
X509v3 Authority Key Identifier:
keyid:96:66:C2:38:F7:FF:DA:CF:15:C8:02:E3:20:B5:2E:09:80:86:9C:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmbCOPf_2s8VyALjILUuCYCGnOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/50753a-91aa-447b-b232-a000d769e026/1/R5EtWZBpLs5m6l-RJ9lC0x62x5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/50753a-91aa-447b-b232-a000d769e026/1/lmbCOPf_2s8VyALjILUuCYCGnOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.50.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:62:01:ef:ec:c6:11:ae:21:02:34:dd:48:d4:fe:46:6b:65:
7b:c5:2c:4a:40:db:15:24:c7:e9:79:f2:9a:eb:3a:ab:25:34:
3c:36:df:fd:9e:4c:ea:3f:16:1b:a0:28:a8:02:0f:f0:59:09:
38:0d:11:34:a6:a7:b4:ac:8c:4c:16:36:09:c5:59:9d:12:f5:
79:15:a4:53:cc:6b:ba:b7:8d:76:99:98:79:b5:2e:d0:1c:0f:
e5:10:f2:05:97:67:42:54:46:27:cd:2e:e9:53:87:2a:5f:a8:
f2:8e:ec:93:c7:70:02:44:a8:a5:bc:a9:13:a8:b2:46:8d:de:
5d:00:30:3b:f5:0d:76:1f:35:10:9d:39:bd:51:7c:0e:66:60:
32:bc:78:1d:45:39:69:25:20:a6:fb:ab:8e:c9:22:e2:98:9b:
33:0a:5f:3b:6d:38:ed:3d:44:07:63:6c:99:ab:27:79:8f:6c:
ca:9c:0f:a8:5e:5c:d7:d0:2e:ad:1b:e8:4c:11:2f:90:50:d1:
f3:dc:47:d1:cc:48:3e:17:1a:77:a1:70:db:cc:81:7f:74:10:
b7:4d:c3:7e:bb:0e:5a:00:ff:57:ee:38:c8:1c:a0:24:f1:30:
b8:bd:3d:56:62:4a:5d:dd:da:d1:70:50:f7:a3:a1:3b:16:d6:
d3:cd:64:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:15 2025 by rpki-client