Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/jq3w1zQI-LHNAm6obIXlaNzq7Vk.roa
File: jq3w1zQI-LHNAm6obIXlaNzq7Vk.roa (raw, json)
Hash identifier: jd6EEyiWLcNV+m/2KrTRXrxv3jzEzwq5fbF3cH7V3Gc=
Subject key identifier: 8E:AD:F0:D7:34:08:F8:B1:CD:02:6E:A8:6C:85:E5:68:DC:EA:ED:59
Certificate issuer: /CN=e871726c4c103e0eb42c2f0e8b5da8733fa7efed
Certificate serial: 0FDFC98A
Authority key identifier: E8:71:72:6C:4C:10:3E:0E:B4:2C:2F:0E:8B:5D:A8:73:3F:A7:EF:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HFybEwQPg60LC8Oi12ocz-n7-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/jq3w1zQI-LHNAm6obIXlaNzq7Vk.roa
Signing time: Sat 01 Jan 2022 07:55:47 +0000
ROA not before: Sat 01 Jan 2022 07:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41617
IP address blocks: 195.138.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266324362 (0xfdfc98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e871726c4c103e0eb42c2f0e8b5da8733fa7efed
Validity
Not Before: Jan 1 07:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eadf0d73408f8b1cd026ea86c85e568dceaed59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:f8:49:8f:74:43:62:4b:d5:9f:9c:9f:de:
98:90:68:b2:ac:3b:fe:e5:08:7a:0a:0e:04:90:9e:
ef:4d:22:4c:16:44:c5:17:b8:75:97:2a:4e:aa:a3:
48:26:ab:cb:7f:e8:93:03:a5:3b:5f:b4:cd:5a:c2:
b4:d3:08:82:71:60:05:f1:71:cd:98:a8:0c:9f:da:
81:7f:34:4c:7f:14:cf:c9:59:4f:9d:51:0e:a8:58:
63:62:e6:bf:cf:73:69:a4:28:ac:cc:89:9f:36:89:
d9:51:7a:0a:3f:2c:00:9d:d2:be:f1:85:45:f8:61:
02:b1:5f:5d:a2:f0:47:da:d5:1e:f8:b5:bd:88:03:
1d:81:50:eb:0d:7c:aa:9d:30:3e:37:23:4f:cf:36:
49:e1:93:0c:1d:89:b8:b1:e0:a6:df:c7:d6:fe:ca:
39:12:bb:43:2f:be:15:dc:50:0a:11:b2:83:80:3c:
4e:47:c0:e2:42:a0:7d:a3:02:08:71:30:2e:48:ca:
57:35:6b:d9:49:68:89:b8:f5:57:10:0a:b9:e2:20:
74:0a:f9:2f:9f:fc:55:4f:77:88:0d:df:d9:e9:3d:
78:ae:93:25:5e:75:32:e6:f5:96:b2:92:de:0e:7c:
46:79:a2:da:ab:46:a3:c3:46:ba:ec:38:37:d7:93:
9a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AD:F0:D7:34:08:F8:B1:CD:02:6E:A8:6C:85:E5:68:DC:EA:ED:59
X509v3 Authority Key Identifier:
keyid:E8:71:72:6C:4C:10:3E:0E:B4:2C:2F:0E:8B:5D:A8:73:3F:A7:EF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HFybEwQPg60LC8Oi12ocz-n7-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/jq3w1zQI-LHNAm6obIXlaNzq7Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/6HFybEwQPg60LC8Oi12ocz-n7-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.210.0/24
Signature Algorithm: sha256WithRSAEncryption
12:1f:ff:c4:0b:07:53:44:f7:f2:da:ea:46:13:53:8a:03:7a:
ce:0b:19:be:32:94:88:cc:4f:8f:bc:a9:5c:bc:21:55:36:46:
aa:8a:65:ff:5e:70:eb:14:ed:99:82:6f:6d:00:79:a1:28:2e:
08:9e:c2:da:8b:5a:48:4f:40:c1:e5:43:66:8f:c4:22:75:b8:
5e:62:07:79:2f:6d:81:78:f5:04:81:55:f8:11:10:a8:84:b3:
29:09:2a:69:6d:69:9e:be:6f:9c:e8:c5:8c:b3:b9:a2:6d:f0:
cf:0b:b9:e5:b3:c3:7a:80:38:23:4b:f7:c0:13:1e:e5:d9:68:
a2:6e:6f:37:70:91:0e:73:8d:9f:be:f2:1d:35:d8:98:dc:7f:
f0:b6:6d:48:79:e7:13:b3:bc:f2:a6:6d:c2:c4:bc:3e:eb:26:
28:31:2f:53:40:cf:3f:81:05:bb:62:64:ae:c7:09:b3:73:13:
72:b0:47:72:5e:b7:7b:38:37:35:62:31:6d:1b:4c:f6:b1:35:
99:76:ce:c8:27:d0:76:91:09:9a:b0:ae:7a:7d:18:6a:bf:9b:
3a:7a:12:c3:6e:88:75:de:fe:04:d2:b8:7f:38:a1:39:21:66:
84:90:79:c3:47:ac:84:e1:77:24:a6:c5:59:49:c9:af:3d:53:
7e:5a:21:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:45:05 2025 by rpki-client