Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/512795-7ed4-4f31-98a4-4e5988548013/1/kuaeGChbnhmzxVGQwP7UpeeO0rc.roa
File: kuaeGChbnhmzxVGQwP7UpeeO0rc.roa (raw, json)
Hash identifier: c62tA/Wo9MkXZjTD40RN4obusJeTsP/OwXsNEQvVnww=
Subject key identifier: 92:E6:9E:18:28:5B:9E:19:B3:C5:51:90:C0:FE:D4:A5:E7:8E:D2:B7
Certificate issuer: /CN=47399ddb8c70fe334fe9c287b692694628518c69
Certificate serial: 018722C9FACFFEF5A9DAEAB985010942E290
Authority key identifier: 47:39:9D:DB:8C:70:FE:33:4F:E9:C2:87:B6:92:69:46:28:51:8C:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rzmd24xw_jNP6cKHtpJpRihRjGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/512795-7ed4-4f31-98a4-4e5988548013/1/kuaeGChbnhmzxVGQwP7UpeeO0rc.roa
Signing time: Mon 27 Mar 2023 11:17:54 +0000
ROA not before: Mon 27 Mar 2023 11:17:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59623
IP address blocks: 195.214.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:c9:fa:cf:fe:f5:a9:da:ea:b9:85:01:09:42:e2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47399ddb8c70fe334fe9c287b692694628518c69
Validity
Not Before: Mar 27 11:17:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92e69e18285b9e19b3c55190c0fed4a5e78ed2b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:94:d3:91:16:ce:f5:ca:d6:4f:f3:c3:de:48:
bf:45:a3:5f:72:c3:8e:c7:9e:6d:ed:db:67:b7:44:
fb:8d:bb:38:4d:50:9d:a5:53:e9:bb:35:95:24:b4:
55:9b:79:84:ac:65:7c:75:d6:1a:df:be:d1:fa:d9:
22:c4:2a:57:b7:7a:93:a7:95:27:87:ce:67:56:fc:
a8:30:51:96:51:e9:9c:29:7f:f5:1c:ea:26:46:cb:
be:1a:95:69:96:f6:8c:53:a2:d8:68:d1:e2:3a:95:
59:7d:d6:87:7c:e2:c2:dc:18:02:1f:fa:a4:8a:c2:
18:7c:c8:7e:c6:51:7e:f0:c4:5b:53:a7:73:37:b8:
d3:90:d7:c7:8c:30:21:fc:68:21:ad:0f:7d:3a:75:
fa:92:d0:e5:30:f7:fa:17:7d:a5:2e:47:b2:67:0a:
63:ff:0c:da:13:97:a4:67:74:29:9f:e5:ed:3e:d5:
db:5f:4a:d8:f5:79:e3:fd:ef:b2:e3:8c:61:3c:c6:
74:46:1b:45:e5:cd:60:46:d0:5b:a1:f2:74:81:09:
13:9c:91:1a:d7:7c:d1:1a:90:d3:be:37:9f:8d:bf:
19:b6:d8:7c:fc:6c:8b:d8:c7:c9:7e:bb:8a:b1:55:
bf:fc:11:c9:6d:96:bb:24:94:32:4f:49:73:12:b4:
dc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E6:9E:18:28:5B:9E:19:B3:C5:51:90:C0:FE:D4:A5:E7:8E:D2:B7
X509v3 Authority Key Identifier:
keyid:47:39:9D:DB:8C:70:FE:33:4F:E9:C2:87:B6:92:69:46:28:51:8C:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rzmd24xw_jNP6cKHtpJpRihRjGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/512795-7ed4-4f31-98a4-4e5988548013/1/kuaeGChbnhmzxVGQwP7UpeeO0rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/512795-7ed4-4f31-98a4-4e5988548013/1/Rzmd24xw_jNP6cKHtpJpRihRjGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.235.0/24
Signature Algorithm: sha256WithRSAEncryption
e8:be:9f:ff:80:34:70:8f:36:00:f2:cc:aa:07:08:2f:84:83:
22:9a:80:8a:ab:8b:7a:a2:b3:00:dc:7e:70:e0:95:b6:95:50:
d7:1c:47:d6:3d:3c:a1:3c:39:62:68:e4:e3:64:2d:35:df:1a:
13:0b:5b:7a:eb:92:8f:14:6c:fc:4d:9e:3f:13:44:64:99:65:
0d:39:c9:97:c3:8e:a3:6e:fa:5a:74:1b:b5:7a:bf:89:6d:2e:
e0:dc:e4:6e:6b:41:e4:f0:f2:3b:4a:5d:9b:2c:b8:c8:38:e6:
0a:66:b5:51:2d:04:e9:f9:9c:02:4d:d1:0a:53:e9:80:cd:6e:
6c:37:c1:20:08:53:0b:2e:76:24:d1:d9:dc:58:a5:8b:9a:3a:
f6:24:42:3a:b1:cd:d9:0c:8a:6a:2f:04:d3:3a:ba:47:62:f0:
f2:a0:aa:d2:60:05:91:9e:65:45:5c:ed:23:5a:ab:b7:de:86:
2b:fa:e6:d8:88:47:75:f7:f2:fe:75:48:9c:40:dc:00:72:3c:
63:d0:e0:f6:7b:12:e7:31:11:4c:e1:8c:49:ee:98:7f:1f:6b:
83:67:55:1c:71:bb:27:1d:7f:49:98:cc:ac:1b:30:36:64:51:
17:e8:8c:50:08:34:d2:42:df:7f:7a:c6:de:6d:9f:ff:11:c4:
be:2f:49:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYciyfrP/vWp2uq5hQEJQuKQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3Mzk5ZGRiOGM3MGZlMzM0ZmU5YzI4N2I2OTI2OTQ2Mjg1
MThjNjkwHhcNMjMwMzI3MTExNzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmU2OWUxODI4NWI5ZTE5YjNjNTUxOTBjMGZlZDRhNWU3OGVkMmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJTTkRbO9crWT/PD3ki/RaNfcsOO
x55t7dtnt0T7jbs4TVCdpVPpuzWVJLRVm3mErGV8ddYa377R+tkixCpXt3qTp5Un
h85nVvyoMFGWUemcKX/1HOomRsu+GpVplvaMU6LYaNHiOpVZfdaHfOLC3BgCH/qk
isIYfMh+xlF+8MRbU6dzN7jTkNfHjDAh/GghrQ99OnX6ktDlMPf6F32lLkeyZwpj
/wzaE5ekZ3Qpn+XtPtXbX0rY9Xnj/e+y44xhPMZ0RhtF5c1gRtBbofJ0gQkTnJEa
13zRGpDTvjefjb8Ztth8/GyL2MfJfruKsVW//BHJbZa7JJQyT0lzErTcAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJLmnhgoW54Zs8VRkMD+1KXnjtK3MB8GA1UdIwQY
MBaAFEc5nduMcP4zT+nCh7aSaUYoUYxpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnptZDI0eHdfak5QNmNLSHRwSnBSaWhSakdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni81MTI3OTUtN2VkNC00ZjMxLTk4YTQt
NGU1OTg4NTQ4MDEzLzEva3VhZUdDaGJuaG16eFZHUXdQN1VwZWVPMHJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni81MTI3OTUtN2VkNC00ZjMxLTk4YTQtNGU1OTg4NTQ4MDEz
LzEvUnptZDI0eHdfak5QNmNLSHRwSnBSaWhSakdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9brMA0G
CSqGSIb3DQEBCwUAA4IBAQDovp//gDRwjzYA8syqBwgvhIMimoCKq4t6orMA3H5w
4JW2lVDXHEfWPTyhPDliaOTjZC013xoTC1t665KPFGz8TZ4/E0RkmWUNOcmXw46j
bvpadBu1er+JbS7g3ORua0Hk8PI7Sl2bLLjIOOYKZrVRLQTp+ZwCTdEKU+mAzW5s
N8EgCFMLLnYk0dncWKWLmjr2JEI6sc3ZDIpqLwTTOrpHYvDyoKrSYAWRnmVFXO0j
Wqu33oYr+ubYiEd19/L+dUicQNwAcjxj0OD2exLnMRFM4YxJ7ph/H2uDZ1Uccbsn
HX9JmMysGzA2ZFEX6IxQCDTSQt9/esbebZ//EcS+L0ks
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:42 2025 by rpki-client