Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/KeoZ8I1i2baV6PzDBljmcVeunq0.roa
File: KeoZ8I1i2baV6PzDBljmcVeunq0.roa (raw, json)
Hash identifier: Qia4j3Lja5kHB+CU5Yktuq1Tx2bJ1bv5ZuhHAP+1IMg=
Subject key identifier: 29:EA:19:F0:8D:62:D9:B6:95:E8:FC:C3:06:58:E6:71:57:AE:9E:AD
Certificate issuer: /CN=713b9404a0c43223addc8ea1b10ab74b777a2a01
Certificate serial: 0187227F89E218363884C44E12DEAABC6078
Authority key identifier: 71:3B:94:04:A0:C4:32:23:AD:DC:8E:A1:B1:0A:B7:4B:77:7A:2A:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cTuUBKDEMiOt3I6hsQq3S3d6KgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/KeoZ8I1i2baV6PzDBljmcVeunq0.roa
Signing time: Mon 27 Mar 2023 09:56:36 +0000
ROA not before: Mon 27 Mar 2023 09:56:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51013
IP address blocks: 81.95.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:7f:89:e2:18:36:38:84:c4:4e:12:de:aa:bc:60:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=713b9404a0c43223addc8ea1b10ab74b777a2a01
Validity
Not Before: Mar 27 09:56:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ea19f08d62d9b695e8fcc30658e67157ae9ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1f:dc:43:73:6b:27:79:4d:c5:aa:b1:85:48:
0b:1c:9f:b1:19:42:1b:28:35:7e:9c:b4:2d:20:4a:
7c:7e:94:db:d3:67:b2:6c:50:02:1b:0c:b7:bf:ca:
41:94:aa:e9:c8:64:2e:4a:4b:6e:91:fd:f0:27:fe:
b2:5d:95:a7:7b:28:76:3f:57:41:6f:65:35:f8:a6:
7b:ec:d7:b8:c5:ec:87:87:c3:02:11:62:59:99:10:
36:ab:63:4e:dd:21:d4:55:39:5a:b8:ac:08:6a:77:
0e:8e:e4:22:9b:25:50:53:60:00:c9:80:36:36:b9:
cf:3b:7d:fe:5d:a4:57:cc:07:65:d3:de:2c:ca:81:
22:50:3b:71:76:c7:83:7e:cd:23:70:22:1e:36:e6:
c0:bb:9f:2e:ce:05:44:38:78:32:5d:46:1b:58:f7:
24:a7:0b:21:c4:29:38:e4:ca:73:68:4f:53:e7:3b:
71:ef:89:9c:97:f0:58:02:9e:ab:5a:c9:59:4d:a5:
e2:1a:ff:8a:38:a2:38:2f:de:1f:53:45:1a:ba:44:
79:04:53:45:21:ce:6f:d8:5a:4f:3b:b7:c5:ef:6a:
23:99:21:5f:21:46:85:0b:98:39:f1:85:bd:48:50:
1d:32:1a:11:05:a6:bb:3f:2c:0b:fd:8c:bf:6d:a4:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EA:19:F0:8D:62:D9:B6:95:E8:FC:C3:06:58:E6:71:57:AE:9E:AD
X509v3 Authority Key Identifier:
keyid:71:3B:94:04:A0:C4:32:23:AD:DC:8E:A1:B1:0A:B7:4B:77:7A:2A:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cTuUBKDEMiOt3I6hsQq3S3d6KgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/KeoZ8I1i2baV6PzDBljmcVeunq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/cTuUBKDEMiOt3I6hsQq3S3d6KgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.108.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:77:ec:59:0f:91:af:ee:5c:7f:60:75:4f:7e:14:a1:6b:62:
8e:85:1b:56:55:f7:fa:64:4b:3b:9e:3e:83:9f:47:2e:85:d2:
c3:02:89:9b:0a:e6:d4:67:c4:ce:b0:32:3e:4c:f8:5f:d8:22:
e4:70:03:95:ac:73:61:ca:92:43:ef:5a:f8:c3:5e:b3:1c:11:
07:2d:52:0c:fe:c3:aa:16:95:d9:84:5c:91:e3:d1:79:d0:74:
06:c0:c5:8e:3a:dc:d2:3c:be:a3:5a:91:05:8d:e7:b4:15:fd:
d2:71:36:7f:1e:f8:62:8e:2f:aa:b2:89:6f:db:49:b2:ef:6d:
74:13:a9:f9:53:cf:4d:e1:d8:19:1e:80:bf:78:3e:8e:89:5f:
17:33:ea:b7:50:e1:c7:10:7f:ec:48:3d:4c:05:70:43:95:88:
20:fe:49:88:9b:b1:a8:40:e6:0a:87:f5:5a:cf:ce:e7:ea:03:
7c:8e:7a:55:64:fc:4b:13:f9:a8:27:80:a0:2e:86:a5:26:c9:
e5:f2:b0:ab:c4:27:43:cf:f3:4c:a3:0b:ea:e0:0d:2d:68:d4:
d1:98:61:2d:7d:36:19:7a:cb:b6:93:f7:94:38:d8:cd:24:43:
8c:1f:78:ce:ad:e4:d7:c8:5b:7b:31:a7:98:db:3c:9b:e8:15:
bb:e5:8a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:51 2025 by rpki-client