Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ea96bf-fa0d-42f7-8098-3f30ca086872/1/C725aGJfnfu_418nP_cRbF1I9fg.roa
File: C725aGJfnfu_418nP_cRbF1I9fg.roa (raw, json)
Hash identifier: VbsNzU5FeUufhRkB2kvkWHWwaYQ8sJNKcwu/R3+upsQ=
Subject key identifier: 0B:BD:B9:68:62:5F:9D:FB:BF:E3:5F:27:3F:F7:11:6C:5D:48:F5:F8
Certificate issuer: /CN=796a77ee52dced5273893a71b9dbca3c6e96495f
Certificate serial: 01856F3909BCA0ED242243ED148B777EEAA5
Authority key identifier: 79:6A:77:EE:52:DC:ED:52:73:89:3A:71:B9:DB:CA:3C:6E:96:49:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWp37lLc7VJziTpxudvKPG6WSV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ea96bf-fa0d-42f7-8098-3f30ca086872/1/C725aGJfnfu_418nP_cRbF1I9fg.roa
Signing time: Sun 01 Jan 2023 21:24:46 +0000
ROA not before: Sun 01 Jan 2023 21:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47369
IP address blocks: 195.248.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:09:bc:a0:ed:24:22:43:ed:14:8b:77:7e:ea:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=796a77ee52dced5273893a71b9dbca3c6e96495f
Validity
Not Before: Jan 1 21:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bbdb968625f9dfbbfe35f273ff7116c5d48f5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b1:1a:a0:52:7a:72:ac:25:e2:c8:38:5c:80:
ec:2a:ca:62:5c:7e:4c:5d:ed:64:75:32:a3:0f:54:
3c:22:5e:df:23:7e:39:79:c2:fc:03:a7:af:f8:4f:
a1:2c:5d:8d:8d:d7:0d:48:a3:5b:d5:fb:3d:d3:a6:
20:68:bf:f0:35:5e:0a:15:92:0e:89:ff:55:23:f2:
2f:1f:6b:be:70:11:02:f0:e5:a6:6f:64:90:af:5a:
98:a4:05:12:ea:cd:7d:f9:e0:6a:cd:68:43:61:b8:
28:5b:34:26:4f:3c:7f:a5:6a:d5:bc:fe:b9:eb:db:
3f:99:3f:d8:40:ee:2c:6e:42:ae:82:de:a1:66:a8:
09:15:63:04:61:81:94:cc:d6:b5:bb:3a:af:9e:7a:
87:df:95:f6:43:44:37:f0:83:c7:39:4c:68:77:ff:
33:18:1e:e5:34:17:3d:a1:e7:a1:6a:7b:11:aa:19:
05:62:14:79:a5:46:97:63:99:f7:63:65:7d:e7:da:
73:8f:f4:a0:86:ed:85:44:f3:8f:8b:dc:bd:a6:83:
86:89:25:67:6c:0e:58:4a:a9:25:03:62:85:5e:5b:
e9:7a:7d:ac:35:78:aa:b1:59:48:f0:a4:27:b5:47:
c9:0f:3b:93:c9:c7:53:1d:72:ee:2a:8a:92:83:8d:
6c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BD:B9:68:62:5F:9D:FB:BF:E3:5F:27:3F:F7:11:6C:5D:48:F5:F8
X509v3 Authority Key Identifier:
keyid:79:6A:77:EE:52:DC:ED:52:73:89:3A:71:B9:DB:CA:3C:6E:96:49:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWp37lLc7VJziTpxudvKPG6WSV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ea96bf-fa0d-42f7-8098-3f30ca086872/1/C725aGJfnfu_418nP_cRbF1I9fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ea96bf-fa0d-42f7-8098-3f30ca086872/1/eWp37lLc7VJziTpxudvKPG6WSV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.67.0/24
Signature Algorithm: sha256WithRSAEncryption
16:cb:32:3a:01:72:db:eb:0f:0f:23:df:72:b8:7c:52:1b:74:
7d:b3:2a:50:a6:75:d8:1f:fd:ed:9d:de:30:76:29:3e:13:30:
c8:da:2c:a3:aa:7f:b3:4c:35:12:68:7b:0d:d6:01:5e:db:72:
c4:4f:8f:95:69:ba:ae:3c:be:f8:9e:3e:49:87:9c:39:ad:e0:
88:5d:12:76:0f:6d:fb:ed:c3:03:91:1d:bf:75:68:8d:b5:14:
1b:a5:de:83:07:90:97:70:9c:db:7f:ee:7f:79:f6:01:c8:32:
ae:aa:c4:a0:96:eb:b1:48:a0:39:eb:98:e4:1a:a3:a9:e2:a3:
e8:21:5f:96:ed:c2:c2:16:8b:3c:a8:d1:86:35:f2:62:89:30:
5d:fd:6e:74:76:de:4a:d2:9c:2d:8f:99:d9:7e:11:69:07:63:
37:cd:5c:fc:06:29:45:4f:83:bc:a3:6b:b5:b9:b8:ef:ba:04:
03:3e:65:71:1a:78:49:19:60:c2:1e:18:4a:cd:68:c5:05:44:
3b:f7:66:27:45:d9:92:95:73:2f:78:27:07:24:84:7f:79:0b:
ff:10:b3:a9:cd:c8:80:87:6e:50:5f:e5:b4:01:ce:2c:d5:94:
eb:aa:0c:cf:20:aa:e4:99:87:1d:87:47:16:d5:52:b6:19:fb:
65:da:51:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:09 2025 by rpki-client