Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/EILrRgRIOvfq1por2oZT93rLtH8.roa
File: EILrRgRIOvfq1por2oZT93rLtH8.roa (raw, json)
Hash identifier: KvAAh1XiMUfgRt2FHhSGX3n6HeMBkb0fHSUBrRnnRAE=
Subject key identifier: 10:82:EB:46:04:48:3A:F7:EA:D6:9A:2B:DA:86:53:F7:7A:CB:B4:7F
Certificate issuer: /CN=d8b92af44b79fc0acf64103eb5fb337a91eecd9a
Certificate serial: 01856F26B3BC2D0ABC92030001087430CD94
Authority key identifier: D8:B9:2A:F4:4B:79:FC:0A:CF:64:10:3E:B5:FB:33:7A:91:EE:CD:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Lkq9Et5_ArPZBA-tfszepHuzZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/EILrRgRIOvfq1por2oZT93rLtH8.roa
Signing time: Sun 01 Jan 2023 21:04:45 +0000
ROA not before: Sun 01 Jan 2023 21:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 195.95.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:b3:bc:2d:0a:bc:92:03:00:01:08:74:30:cd:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b92af44b79fc0acf64103eb5fb337a91eecd9a
Validity
Not Before: Jan 1 21:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1082eb4604483af7ead69a2bda8653f77acbb47f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:92:3a:cd:6f:ab:5d:cf:e0:c9:4a:db:a0:19:
69:32:fc:5b:82:ff:79:7d:dc:9b:fb:94:9f:18:f7:
ce:65:cb:70:53:cf:ea:7a:dd:ce:fc:36:80:ed:c0:
52:3f:61:9e:4b:6a:48:76:8b:7c:10:c2:92:f9:8a:
fe:fb:48:3d:78:4c:fe:41:be:de:f6:dc:6c:f9:a9:
70:c0:f3:ba:3b:8d:dc:c3:0f:d1:1d:b5:a9:ee:68:
b2:e1:6e:c7:5e:1a:fa:e9:b4:16:ee:84:5f:bf:94:
da:e3:12:9d:37:17:b1:ff:27:ed:5d:a9:19:c3:ee:
9f:9d:8b:03:15:1b:97:05:b4:d8:f1:13:0d:6c:97:
8e:2a:1d:98:08:63:68:91:2f:30:90:54:1f:3e:b8:
c8:5d:f2:2f:b2:18:6b:d6:02:61:95:29:90:90:c0:
50:50:62:d1:b1:bb:10:7f:fd:9b:6b:bf:cf:50:4f:
34:cb:ac:a5:50:c8:e7:4f:bb:81:cb:06:f4:49:bd:
5b:27:1f:05:87:9e:ac:1f:50:d5:4a:b5:6d:34:d5:
8d:fb:a0:49:54:b3:77:e9:73:6f:8c:2b:2e:7e:f3:
c6:49:00:21:9d:80:5c:c5:92:c0:90:10:d8:f2:f8:
27:db:82:38:7b:37:f4:9f:5e:72:98:6b:f5:42:50:
28:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:82:EB:46:04:48:3A:F7:EA:D6:9A:2B:DA:86:53:F7:7A:CB:B4:7F
X509v3 Authority Key Identifier:
keyid:D8:B9:2A:F4:4B:79:FC:0A:CF:64:10:3E:B5:FB:33:7A:91:EE:CD:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Lkq9Et5_ArPZBA-tfszepHuzZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/EILrRgRIOvfq1por2oZT93rLtH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/2Lkq9Et5_ArPZBA-tfszepHuzZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.148.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:8b:a4:28:01:09:97:f6:53:a6:48:53:57:43:61:46:09:bd:
1c:bd:46:fb:bc:d7:4b:5a:22:71:0f:b8:27:06:50:77:9b:8b:
20:8e:ca:4e:7b:52:04:71:f3:0a:2d:d5:ab:0c:12:e3:68:c8:
a0:50:8b:d3:f9:3e:89:3a:37:22:9f:83:4b:9a:23:28:bb:0a:
65:fe:36:1c:74:3f:ba:4c:77:13:6d:1d:2c:ca:b2:e4:2f:dd:
70:2f:f0:a3:80:db:59:3e:38:a5:cb:0a:1e:99:6b:af:98:81:
23:b4:c5:d5:d3:cc:c9:51:13:8e:c7:b2:27:b8:93:64:0d:67:
79:b5:5b:60:da:0b:93:62:d8:24:01:12:06:eb:16:6f:9b:3a:
d1:f9:f9:09:8a:bd:f8:ef:4a:40:3b:e6:a1:d6:8a:af:9f:80:
57:3a:92:b6:6f:90:85:6b:42:ea:52:a1:84:c4:1f:08:b1:23:
c1:6d:18:61:51:06:7a:18:01:22:68:47:a1:ef:a1:78:d7:cd:
73:b2:29:58:80:69:9f:19:32:97:9b:b8:ce:96:3d:9e:3e:b2:
bf:76:98:2a:d5:49:44:73:a5:be:9c:a8:27:ca:14:64:36:97:
74:5a:28:51:ec:e3:f6:6e:a9:83:24:6a:bb:42:9d:95:62:44:
1c:33:f8:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:13 2025 by rpki-client