Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/EaEMY1xQ7Zp9F14vklaR0qsH8vE.roa
File: EaEMY1xQ7Zp9F14vklaR0qsH8vE.roa (raw, json)
Hash identifier: BESB8LRu/3c0wK/S9fFTMHuAS0wmMckO6JvTimFl/lw=
Subject key identifier: 11:A1:0C:63:5C:50:ED:9A:7D:17:5E:2F:92:56:91:D2:AB:07:F2:F1
Certificate issuer: /CN=af734108705a95796e8577125dd300c751dfd9a8
Certificate serial: 03991484
Authority key identifier: AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/EaEMY1xQ7Zp9F14vklaR0qsH8vE.roa
Signing time: Sat 01 Jan 2022 00:51:13 +0000
ROA not before: Sat 01 Jan 2022 00:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212847
IP address blocks: 195.234.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60363908 (0x3991484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af734108705a95796e8577125dd300c751dfd9a8
Validity
Not Before: Jan 1 00:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11a10c635c50ed9a7d175e2f925691d2ab07f2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:23:31:97:45:65:7b:24:f2:26:3a:ff:d8:
85:f1:10:29:9c:1c:9a:85:9f:81:76:16:10:00:da:
f3:78:80:e9:c0:ea:de:4e:86:b7:59:a5:69:c9:ee:
3b:5b:8c:e7:09:42:e6:c0:e1:b8:97:11:38:34:a2:
55:2d:7d:21:28:19:41:ef:48:ae:81:14:bb:4b:46:
1a:0c:4c:95:50:c6:7b:19:43:39:a7:39:4f:41:ac:
de:d4:14:cc:10:09:a6:95:c1:6f:5d:b8:5b:a9:84:
e6:c5:0e:17:bf:12:7c:ca:9f:90:46:24:c2:1b:62:
d6:ae:87:05:40:a6:5f:cb:53:84:72:cd:d0:40:4e:
f8:00:72:c5:43:b1:06:38:8e:67:a6:3a:36:83:64:
09:f3:09:69:f2:26:85:45:1f:ec:2c:2b:91:e6:7b:
ca:5c:78:2a:ad:f3:6f:c2:b3:fb:40:9a:e5:5b:8b:
fb:dc:93:0f:f7:f6:61:1b:ad:c8:94:35:5c:d5:5d:
3a:2b:7f:39:2e:33:00:cb:02:9c:8b:97:50:da:af:
f7:5b:9e:d5:2f:ff:1c:6f:38:40:27:42:ef:11:0f:
b1:a9:0c:0c:fd:0f:7b:38:6b:62:25:90:b0:b7:9d:
f7:b1:c7:be:4c:6d:42:ac:3a:08:da:d0:c8:98:44:
15:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A1:0C:63:5C:50:ED:9A:7D:17:5E:2F:92:56:91:D2:AB:07:F2:F1
X509v3 Authority Key Identifier:
keyid:AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/EaEMY1xQ7Zp9F14vklaR0qsH8vE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/r3NBCHBalXluhXcSXdMAx1Hf2ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.191.0/24
Signature Algorithm: sha256WithRSAEncryption
47:22:3c:9b:40:27:d6:d9:e7:c1:4e:bc:3f:df:e9:5a:05:b1:
f3:75:82:86:e1:ff:45:26:0b:32:46:d6:69:c1:bc:50:f6:d9:
d5:39:71:18:1f:1f:03:19:78:8b:61:11:92:2a:86:27:ea:1c:
2d:03:d1:f1:13:04:c6:52:cb:31:c4:30:72:25:06:38:1d:3c:
2b:39:71:0c:a2:67:94:d9:8d:29:01:b0:52:9b:60:3c:88:18:
bd:c4:22:f9:35:45:bc:87:52:50:a4:80:c3:a3:dc:b2:cf:81:
e3:17:c9:14:6a:35:7b:03:0e:53:d5:a9:cb:f7:4a:dc:c8:fe:
9c:6c:7e:af:fa:f6:fa:4e:db:27:cb:45:2a:8a:f7:36:f7:3c:
20:b6:ab:ea:11:9c:84:ca:81:d0:cd:bf:3d:5d:b1:5e:f7:75:
4e:94:f9:d6:02:d4:c7:ad:c0:4a:a9:fe:9f:92:c6:94:10:33:
c4:dd:5b:d6:c8:aa:1f:28:09:e4:b3:3b:e5:46:84:91:df:9f:
68:07:5f:a1:ee:ff:2f:ad:d1:c3:fa:83:61:fa:ac:7a:6a:fc:
55:bd:b7:f5:86:14:0d:f6:a1:42:38:19:4d:bc:21:b8:66:e7:
7f:8a:a8:0e:cb:14:17:88:ac:0b:a3:1b:fd:48:50:ad:01:50:
f0:ef:56:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:44 2025 by rpki-client