Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/7a96cb-c3e0-49c6-ae34-da81f08f6001/1/43Fi67H9Mqq-DebOrMpYo_IEPjU.roa
File: 43Fi67H9Mqq-DebOrMpYo_IEPjU.roa (raw, json)
Hash identifier: ux5BdWVPaa2PtbF7vHY/N2xYalTkn1cA2HmwjmZVFZk=
Subject key identifier: E3:71:62:EB:B1:FD:32:AA:BE:0D:E6:CE:AC:CA:58:A3:F2:04:3E:35
Certificate issuer: /CN=5f14a4e6558bab89d36e3ba21c95e2afdd68fbea
Certificate serial: 059718E1
Authority key identifier: 5F:14:A4:E6:55:8B:AB:89:D3:6E:3B:A2:1C:95:E2:AF:DD:68:FB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxSk5lWLq4nTbjuiHJXir91o--o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/7a96cb-c3e0-49c6-ae34-da81f08f6001/1/43Fi67H9Mqq-DebOrMpYo_IEPjU.roa
Signing time: Sat 01 Jan 2022 05:01:51 +0000
ROA not before: Sat 01 Jan 2022 05:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 195.182.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93788385 (0x59718e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f14a4e6558bab89d36e3ba21c95e2afdd68fbea
Validity
Not Before: Jan 1 05:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e37162ebb1fd32aabe0de6ceacca58a3f2043e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7a:fd:4b:b8:f5:f0:c2:ed:d8:93:c2:27:e5:
3b:b5:f7:37:65:63:1e:a1:4a:14:9f:fd:fb:ed:e6:
71:d9:6f:1f:ff:3d:ea:ca:6e:c6:f3:d5:ff:c7:40:
54:d9:15:64:c2:6b:74:f3:a1:9f:82:ac:19:41:f4:
45:d6:b6:ad:ac:a5:16:be:0b:cd:56:46:ab:6f:5b:
85:a1:32:b9:cc:7c:92:e5:99:85:8e:e0:bb:9b:58:
07:54:9e:f8:ea:18:c2:22:b1:11:5b:43:1a:06:46:
db:66:94:b4:5e:2d:3b:e2:4c:31:1c:28:a1:20:61:
d7:ce:26:d6:75:b7:82:9b:60:81:ad:4b:7f:e6:29:
22:28:7a:b2:09:5f:40:5f:1a:81:26:5b:24:88:19:
9b:e0:bd:3a:83:1e:c3:0c:47:1a:3e:0c:a4:43:e3:
6f:50:2f:94:fa:f8:2f:0c:c2:6a:84:a1:16:e1:21:
61:bc:47:b6:35:a9:14:f9:84:14:be:17:82:62:7c:
15:6a:02:4a:d2:3c:41:e6:7c:82:83:bf:31:cc:f9:
b7:be:fb:a8:71:3c:2b:cd:cd:71:cf:d2:c5:7f:7d:
5b:4c:7b:aa:95:d4:a6:44:3a:14:4d:14:9e:44:6a:
88:a4:55:7d:fc:27:cd:c2:94:99:69:ab:57:4c:9f:
b5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:71:62:EB:B1:FD:32:AA:BE:0D:E6:CE:AC:CA:58:A3:F2:04:3E:35
X509v3 Authority Key Identifier:
keyid:5F:14:A4:E6:55:8B:AB:89:D3:6E:3B:A2:1C:95:E2:AF:DD:68:FB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxSk5lWLq4nTbjuiHJXir91o--o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/7a96cb-c3e0-49c6-ae34-da81f08f6001/1/43Fi67H9Mqq-DebOrMpYo_IEPjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/7a96cb-c3e0-49c6-ae34-da81f08f6001/1/XxSk5lWLq4nTbjuiHJXir91o--o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:30:2f:aa:5d:87:83:48:cc:11:cc:37:0c:4d:58:77:96:77:
85:1a:ac:69:a0:60:f1:47:ef:4b:d9:92:b5:08:d9:f0:c8:fb:
ed:49:94:9a:e4:e1:4b:e4:2a:27:83:0b:e0:fb:4f:c4:58:dd:
f1:aa:18:97:3e:84:9e:b2:2a:18:99:ac:bc:95:a5:e1:1f:49:
f6:54:da:5a:02:f9:eb:73:96:8e:5d:94:8f:cc:cf:b2:91:77:
46:26:f9:e2:67:4c:dd:24:1e:b6:45:a9:94:59:e6:ca:8f:57:
eb:73:d0:f3:37:fc:8c:3a:25:18:20:61:f0:aa:f1:66:96:af:
9d:13:b0:b6:02:68:ac:47:6d:46:ad:2d:64:e5:c6:d5:25:66:
7d:9e:9e:0c:e8:c8:49:df:6c:f1:1b:21:7c:11:a1:a9:a4:a8:
7b:bc:26:8e:77:ee:35:d6:33:36:b5:c2:3a:7d:e7:cf:c4:6c:
6a:cc:5a:c5:fe:de:c3:d0:ac:ee:71:a0:de:42:44:99:6c:96:
60:8d:3c:1a:28:51:c6:7d:d6:ad:0c:35:89:ad:04:c2:d7:8f:
eb:b9:36:60:bd:30:71:36:29:7d:fe:75:82:8c:b0:1b:a2:15:
69:8e:dc:c8:d8:cd:e3:d9:6b:25:00:8c:59:32:3e:e4:75:5e:
36:05:e4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:18 2025 by rpki-client