Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/V8Dap1fT9Qofh82-agQkO-TctIo.roa
File: V8Dap1fT9Qofh82-agQkO-TctIo.roa (raw, json)
Hash identifier: xt4bJX6Q86BGMXY/Y1XIbLGD75rJ9xqf4xuIBeZ2Jj4=
Subject key identifier: 57:C0:DA:A7:57:D3:F5:0A:1F:87:CD:BE:6A:04:24:3B:E4:DC:B4:8A
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 018571D7D9530FB384CCDC5603701E91A264
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/V8Dap1fT9Qofh82-agQkO-TctIo.roa
Signing time: Mon 02 Jan 2023 09:37:29 +0000
ROA not before: Mon 02 Jan 2023 09:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203890
IP address blocks: 195.150.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d9:53:0f:b3:84:cc:dc:56:03:70:1e:91:a2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 2 09:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57c0daa757d3f50a1f87cdbe6a04243be4dcb48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:17:8c:53:dc:b6:b5:c8:fb:22:d9:ea:9c:f6:
4c:5e:07:59:65:d8:5a:bf:30:2d:02:aa:48:ab:96:
62:b1:34:87:d1:ac:28:be:47:bd:e4:f6:6d:fb:1a:
11:75:ac:8d:87:3c:90:25:27:6e:8f:35:5a:2f:e2:
17:9a:4d:68:cc:47:da:b9:d0:19:f1:99:1a:e6:75:
9c:aa:b9:bf:1c:f5:39:d0:0c:55:f9:07:0a:ac:4b:
23:b5:9e:46:10:4b:84:b1:7a:66:a4:2c:29:76:6c:
42:c0:1f:35:61:69:8d:3f:5d:8a:a6:9d:65:a3:8f:
7e:88:73:ce:45:89:ef:f0:75:7d:52:3a:88:9e:32:
bd:d8:9e:6b:07:89:75:99:5e:6a:36:5a:48:1d:fc:
38:d8:51:63:cc:32:33:3c:6f:d4:32:99:84:6b:d0:
98:72:fc:a9:f6:b3:97:a2:d8:5e:ca:8b:6c:57:a6:
f7:6a:45:f2:2d:4f:8f:4b:38:1a:47:dc:ce:47:d8:
6e:ed:e1:2f:31:2c:88:85:0c:f8:ef:84:a7:33:9c:
f6:04:dc:bd:b4:4c:ae:55:d2:32:d9:6e:6c:47:7a:
15:ed:cf:f9:d9:36:e9:ab:8b:43:31:e6:9c:69:b7:
b2:e7:d9:f7:98:18:8c:41:74:71:44:01:fc:b0:6a:
ee:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C0:DA:A7:57:D3:F5:0A:1F:87:CD:BE:6A:04:24:3B:E4:DC:B4:8A
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/V8Dap1fT9Qofh82-agQkO-TctIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.192.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:9b:b6:ee:9b:8a:d4:b4:fc:dc:37:bb:eb:40:1d:26:7f:4f:
67:4c:ab:24:b9:d1:51:a7:b4:77:e0:c7:db:c6:33:ff:5b:0a:
6e:4e:24:75:3f:2d:1c:49:14:52:88:03:76:39:83:f5:66:99:
a5:a3:7b:4d:30:ac:92:2e:72:2c:a5:7e:6d:7a:5f:15:24:56:
3d:d7:ea:e4:f0:b6:b5:b1:89:ea:1f:92:80:48:1c:0a:4f:53:
e4:66:bf:e1:ad:9c:df:52:96:c3:6e:8a:eb:d5:68:f2:70:8b:
d3:36:fa:28:e6:a1:ab:35:fd:d8:f2:56:be:95:ff:8b:c2:70:
37:c9:22:84:19:15:22:b8:82:3f:30:4c:0a:69:68:49:f7:da:
4f:3d:d6:45:7c:2d:6d:e2:74:33:77:04:d8:fd:9d:3c:01:02:
3c:8b:6e:e6:92:bd:41:83:0a:41:95:82:11:ec:e7:21:1f:ae:
59:a9:2a:de:42:dc:53:44:7c:8a:01:a3:4c:fd:99:ee:e8:05:
e6:54:5b:74:f9:98:62:8f:04:51:89:14:5f:2e:87:ec:59:2f:
94:d2:dc:5c:0b:5a:fd:6f:4e:19:a0:c2:77:ae:25:ab:d5:0c:
60:b6:ef:d7:ca:92:0c:10:9f:51:78:92:c9:00:cf:dc:b7:59:
d9:f2:00:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:23 2025 by rpki-client