Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5c5859-75c0-4345-bd29-45c568f8a27c/1/Ewxt5STJBJr8UR0XqOPu2Q1VdNE.roa
File: Ewxt5STJBJr8UR0XqOPu2Q1VdNE.roa (raw, json)
Hash identifier: IiKUkY2EHbHFvkLLAVBClx3iQOWWqcN0qvfil89ZOgE=
Subject key identifier: 13:0C:6D:E5:24:C9:04:9A:FC:51:1D:17:A8:E3:EE:D9:0D:55:74:D1
Certificate issuer: /CN=f3ac8c7e32baf778b8c451a2d24cc68196964bfc
Certificate serial: 0E98B950
Authority key identifier: F3:AC:8C:7E:32:BA:F7:78:B8:C4:51:A2:D2:4C:C6:81:96:96:4B:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86yMfjK693i4xFGi0kzGgZaWS_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5c5859-75c0-4345-bd29-45c568f8a27c/1/Ewxt5STJBJr8UR0XqOPu2Q1VdNE.roa
Signing time: Sat 01 Jan 2022 01:03:15 +0000
ROA not before: Sat 01 Jan 2022 01:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50472
IP address blocks: 195.160.173.0/24 maxlen: 24
2001:678:760::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244889936 (0xe98b950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3ac8c7e32baf778b8c451a2d24cc68196964bfc
Validity
Not Before: Jan 1 01:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=130c6de524c9049afc511d17a8e3eed90d5574d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7c:1b:8c:00:e0:b0:4f:87:45:67:e8:72:d2:
ec:6e:87:60:d6:af:e9:11:3d:28:02:9a:4d:af:e2:
09:76:ba:0b:4f:19:c3:be:d1:ff:f4:ed:2a:a3:51:
56:2c:af:cd:ad:90:e5:2a:bb:59:26:85:17:e3:39:
60:07:1f:a8:b3:34:1f:5b:b9:59:f5:bc:e4:df:06:
38:e1:e2:db:d0:a9:e9:ea:26:d2:84:db:01:18:e0:
50:85:f1:9a:64:99:d5:72:d7:30:6c:ca:dc:42:ae:
7a:7d:9d:2d:04:84:f6:9f:f6:10:48:36:93:d0:ac:
97:3d:a5:07:c5:16:22:07:93:32:c7:13:3b:44:d9:
58:3b:b4:dd:0a:81:58:b7:72:e3:3b:b9:53:58:9b:
80:75:2d:a2:ac:e7:cc:66:2f:c3:cd:54:4f:6b:ee:
13:c2:86:c1:6d:f5:e5:11:e5:d8:66:a3:be:9c:21:
48:a9:d4:1c:6b:29:5d:4f:4b:36:95:6f:af:f6:87:
95:f4:b2:2a:7f:11:57:47:69:85:af:eb:e1:bb:8d:
fe:e3:62:42:66:6e:b4:ae:4c:43:75:dc:02:cc:6a:
0f:43:1b:f9:a4:6f:c1:8a:7d:c9:34:69:2a:84:4a:
f5:0c:0a:0b:85:10:8b:55:1d:5f:e8:e5:b4:70:72:
d2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0C:6D:E5:24:C9:04:9A:FC:51:1D:17:A8:E3:EE:D9:0D:55:74:D1
X509v3 Authority Key Identifier:
keyid:F3:AC:8C:7E:32:BA:F7:78:B8:C4:51:A2:D2:4C:C6:81:96:96:4B:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86yMfjK693i4xFGi0kzGgZaWS_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5c5859-75c0-4345-bd29-45c568f8a27c/1/Ewxt5STJBJr8UR0XqOPu2Q1VdNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5c5859-75c0-4345-bd29-45c568f8a27c/1/86yMfjK693i4xFGi0kzGgZaWS_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.160.173.0/24
IPv6:
2001:678:760::/48
Signature Algorithm: sha256WithRSAEncryption
80:66:52:6b:dc:01:4e:e7:ac:0a:9e:87:6e:b4:2d:0b:89:20:
45:ce:a7:8a:5e:f5:2a:64:14:55:80:22:7b:b4:9a:12:c4:af:
fa:be:19:3b:d8:51:fa:c5:af:16:f4:46:c5:46:ce:fe:18:7d:
68:41:3d:84:a2:67:8a:97:80:dd:58:95:85:22:b8:26:fb:fe:
18:d3:4c:d6:3b:48:72:cd:02:08:a6:96:63:44:ad:33:9e:5e:
7c:ed:fe:7a:dd:4a:0a:dd:08:ef:74:ba:d9:ad:d0:8d:10:69:
b6:21:8d:9c:b1:18:3f:fd:02:fd:8e:1f:54:d5:a9:b3:5a:cc:
ff:ab:83:1b:c1:23:4f:7a:81:44:b8:7e:24:16:4e:a2:ae:be:
14:dc:12:cd:a8:52:3b:aa:9d:2b:95:c8:6a:cc:4b:08:eb:b5:
ec:e7:6e:fc:2e:b1:f1:02:1f:cc:7f:da:7f:70:24:b9:51:23:
81:1c:7e:3e:df:1c:90:fe:02:d4:93:0a:02:a7:d0:33:8f:63:
c3:1a:b0:77:42:40:93:bb:a3:d7:3b:dd:39:65:41:af:09:0f:
4f:b2:b1:a0:d4:e4:c5:5e:a7:27:c1:db:ec:29:08:ae:a9:59:
fd:34:78:6c:69:ac:98:ba:3a:65:cd:e0:67:e2:b5:4e:d4:7d:
3e:ef:e6:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:35 2025 by rpki-client