Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/bWWnKDGSRttvxrFqkgXEa2A5du0.roa
File: bWWnKDGSRttvxrFqkgXEa2A5du0.roa (raw, json)
Hash identifier: 0ZEdZR1LiS4NQlFA2+LKacpm56D47yDwC/B0zielKPk=
Subject key identifier: 6D:65:A7:28:31:92:46:DB:6F:C6:B1:6A:92:05:C4:6B:60:39:76:ED
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 018389246A5B8C835D211FD338C09989D024
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/bWWnKDGSRttvxrFqkgXEa2A5du0.roa
Signing time: Thu 29 Sep 2022 12:06:48 +0000
ROA not before: Thu 29 Sep 2022 12:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202220
IP address blocks: 195.82.166.0/24 maxlen: 24
195.82.162.0/24 maxlen: 24
83.230.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:24:6a:5b:8c:83:5d:21:1f:d3:38:c0:99:89:d0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Sep 29 12:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d65a728319246db6fc6b16a9205c46b603976ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:46:f0:56:64:08:fc:df:98:0d:51:8a:4b:
43:a9:04:fc:5f:ec:1d:ce:b4:15:a2:d5:f8:f7:cc:
e0:f9:26:64:9f:d5:f4:3b:15:4f:2b:df:49:e8:8a:
ec:ae:d3:cb:cf:96:da:ce:1a:1f:47:37:ac:2f:d4:
6c:b9:30:66:67:8e:c2:5d:10:dc:42:20:54:4f:56:
1b:ba:b1:7a:9b:6e:f1:11:39:bb:42:7f:b5:5f:68:
b7:37:7f:b5:e0:ca:2b:1e:e2:b3:18:34:01:1c:5e:
71:1d:ce:d9:94:67:c0:8c:5f:90:2b:76:e7:bf:d9:
0d:8d:bd:86:bb:fe:64:b1:f4:13:f3:44:cd:11:a3:
dd:88:fe:ad:f6:10:df:f3:c6:49:84:74:97:82:4d:
3a:e1:9a:6c:77:56:6c:15:a6:6a:2b:76:ec:22:f3:
0b:1c:cb:2d:00:04:33:2b:ae:11:57:b4:b0:78:2a:
12:4c:40:72:0a:8a:de:6a:7f:44:76:3e:04:77:d5:
d9:0c:04:df:49:94:23:80:ed:e1:2e:1a:5a:9c:20:
d9:a5:06:d6:b4:fc:ec:81:8e:ee:19:15:e0:a7:fd:
02:44:6e:5c:bb:e1:c3:3e:4c:f3:a8:79:9c:be:dd:
66:75:a0:42:c9:d3:3f:86:1e:63:78:b5:a6:9d:13:
6e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:65:A7:28:31:92:46:DB:6F:C6:B1:6A:92:05:C4:6B:60:39:76:ED
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/bWWnKDGSRttvxrFqkgXEa2A5du0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.230.14.0/24
195.82.162.0/24
195.82.166.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:94:05:a2:2a:81:40:28:66:17:ad:51:b4:f1:b5:be:62:b4:
47:cd:4c:c4:36:e0:d4:cd:98:4e:12:da:72:35:cc:ac:33:9e:
2b:da:dd:55:34:42:03:7e:f4:07:cd:a4:8f:3e:cf:51:32:15:
05:4b:b6:48:0e:43:5a:45:1d:a5:aa:09:7c:79:8d:fb:6b:0b:
e3:ff:aa:22:55:02:0d:6c:7b:46:c0:bb:68:49:a3:e3:90:4b:
23:83:10:5a:27:0c:c2:28:1e:4c:3d:6a:17:b7:63:e0:e1:fe:
60:8e:64:6f:fd:7b:57:11:3c:e5:c8:28:2e:2b:66:4a:93:4d:
c6:92:80:80:a6:19:7d:d2:0f:8b:d5:8a:6c:d4:20:6e:4f:b1:
fb:8f:f9:6c:5a:cf:1a:cc:b5:ba:e1:67:10:ac:5a:a2:01:bf:
b6:1d:9e:6e:40:f4:34:1d:6d:25:87:54:8f:f7:e3:4c:ca:66:
1e:85:c8:ed:35:83:fa:9f:ce:3d:90:c7:d4:6c:27:e8:65:bf:
d9:01:4f:ef:10:cb:6e:28:47:e0:dc:89:d7:3f:3c:a9:06:58:
e1:6e:86:85:26:1e:11:0f:d6:a3:14:34:e5:11:4a:45:b9:e1:
aa:b9:73:43:75:2f:90:be:dd:b7:84:65:0e:ec:73:86:85:79:
f1:7e:a4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:47 2025 by rpki-client