Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/7w61wIopXagX5T6vJRkaT1sujFc.roa
File: 7w61wIopXagX5T6vJRkaT1sujFc.roa (raw, json)
Hash identifier: 1JYtBzzZOWV8iQez7eN6Oq9XzlpzFHGtmU6dE86zFGg=
Subject key identifier: EF:0E:B5:C0:8A:29:5D:A8:17:E5:3E:AF:25:19:1A:4F:5B:2E:8C:57
Certificate issuer: /CN=1571f157c3a5bd5cff5d1a47d419648a27e35a9b
Certificate serial: 053F1F8D
Authority key identifier: 15:71:F1:57:C3:A5:BD:5C:FF:5D:1A:47:D4:19:64:8A:27:E3:5A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXHxV8OlvVz_XRpH1BlkiifjWps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/7w61wIopXagX5T6vJRkaT1sujFc.roa
Signing time: Sat 01 Jan 2022 11:01:21 +0000
ROA not before: Sat 01 Jan 2022 11:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51576
IP address blocks: 195.95.190.0/24 maxlen: 24
2a06:de80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88022925 (0x53f1f8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1571f157c3a5bd5cff5d1a47d419648a27e35a9b
Validity
Not Before: Jan 1 11:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef0eb5c08a295da817e53eaf25191a4f5b2e8c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3f:1b:a7:1a:8d:7a:ce:01:36:ef:7e:55:1d:
97:f8:3c:cb:2b:6f:3a:52:32:33:b6:f9:bd:a4:05:
40:f4:33:c8:4c:b0:cf:3f:04:0a:21:f1:61:1e:34:
67:c2:40:a3:a1:98:d9:31:5f:78:d1:29:fd:cb:ca:
61:a6:23:3f:35:93:bb:63:48:65:a6:b2:44:1f:98:
ac:86:c0:50:5f:f8:c4:93:c9:09:c0:ca:c4:13:96:
80:e8:8b:ce:4b:8b:35:50:71:71:12:50:be:2c:c8:
35:fa:66:cc:8c:0d:0a:c1:c9:ae:7d:fd:9d:7d:57:
2a:f5:88:2d:5e:84:84:a1:77:64:df:41:d4:31:6e:
85:c0:80:14:6d:18:86:be:b6:e3:f0:73:48:4b:ae:
4e:f7:4b:69:f4:83:58:4a:c7:5a:31:32:aa:e9:8f:
a9:bb:97:5f:36:7c:ec:15:e6:19:53:a0:07:e3:ec:
87:bc:9e:31:bf:4c:f3:ef:51:48:80:9b:8a:95:9c:
f4:e9:38:bd:b2:3e:bc:da:bf:72:fb:4d:bf:02:2a:
59:e0:31:4b:1b:64:45:93:aa:5e:bb:44:9c:85:5d:
b0:79:6e:64:86:d9:ff:e9:08:61:82:3e:83:23:72:
5f:ff:2f:29:ec:95:fb:db:80:f2:cc:85:f6:ec:c7:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0E:B5:C0:8A:29:5D:A8:17:E5:3E:AF:25:19:1A:4F:5B:2E:8C:57
X509v3 Authority Key Identifier:
keyid:15:71:F1:57:C3:A5:BD:5C:FF:5D:1A:47:D4:19:64:8A:27:E3:5A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXHxV8OlvVz_XRpH1BlkiifjWps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/7w61wIopXagX5T6vJRkaT1sujFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/FXHxV8OlvVz_XRpH1BlkiifjWps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.190.0/24
IPv6:
2a06:de80::/29
Signature Algorithm: sha256WithRSAEncryption
43:43:65:c2:6a:ca:aa:78:b3:bc:a3:10:92:57:c0:4a:11:1c:
f3:77:11:0e:d6:0e:b8:d5:8d:74:95:12:04:a3:4f:1f:bd:78:
95:af:94:cf:4c:b6:59:9f:7d:65:06:0c:50:75:5a:5c:01:67:
79:46:b0:64:0c:81:8d:1b:12:e1:f2:7d:ff:5c:d9:80:7e:f3:
fa:ca:f2:cd:ec:8a:70:3a:29:a5:75:b7:f6:0b:3c:99:8a:6f:
42:b2:aa:d4:9f:99:13:6d:20:b0:ad:87:c2:b3:bc:1a:1f:0a:
f4:5a:26:04:a2:f7:50:e6:df:64:71:c1:32:1c:70:05:d5:28:
7c:92:f5:27:0d:44:35:09:cd:41:d0:a2:b2:3e:d3:ee:34:64:
b9:01:9a:4a:12:42:9b:da:df:e6:ba:48:3c:3b:2c:13:07:89:
0c:18:04:a4:5a:93:1d:96:0c:9b:1c:8a:04:83:65:11:f8:48:
d3:96:17:6d:8c:f5:a4:27:f1:6c:6d:fc:37:d1:f2:46:c9:c0:
ee:63:24:eb:94:1d:55:aa:19:bd:d1:45:72:4c:16:2d:42:66:
36:47:16:05:8e:fb:a7:e0:e4:40:cf:ca:77:d8:38:98:d6:e3:
fb:a1:71:ff:98:a1:1f:1e:94:96:61:88:cc:4b:04:d3:35:95:
d0:c2:d0:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:10:16 2025 by rpki-client