Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/J0JlhOlbXt3mlvn7Etuqr_pW6jQ.roa
File: J0JlhOlbXt3mlvn7Etuqr_pW6jQ.roa (raw, json)
Hash identifier: WP9DPGoN7/2RAlhlWPxojKnyPDdeKBPuEvNEBAL1UNg=
Subject key identifier: 27:42:65:84:E9:5B:5E:DD:E6:96:F9:FB:12:DB:AA:AF:FA:56:EA:34
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 5BC69C
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/J0JlhOlbXt3mlvn7Etuqr_pW6jQ.roa
Signing time: Sat 01 Jan 2022 03:58:43 +0000
ROA not before: Sat 01 Jan 2022 03:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 195.130.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6014620 (0x5bc69c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Jan 1 03:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27426584e95b5edde696f9fb12dbaaaffa56ea34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b2:3e:e9:3c:ef:3a:0e:a4:df:f0:3c:33:cd:
98:be:56:aa:ad:d0:06:73:ac:61:f8:60:bb:c9:0e:
52:8a:60:d0:2a:ab:dd:ff:c0:f1:f7:53:84:4d:66:
33:4b:6d:e7:13:64:6b:bf:ed:99:70:dc:57:a7:0e:
2e:20:4e:e7:f8:1f:bc:32:85:1a:f1:41:2c:38:20:
3b:a8:84:29:15:ac:b2:e2:ef:ea:74:6e:3d:b5:35:
3f:71:ab:bd:fd:9a:48:77:4d:5b:a4:17:30:d3:36:
89:69:fe:29:b6:22:49:f3:ef:d3:f9:3f:15:03:18:
c3:a3:2b:50:52:c7:cc:26:bc:c6:35:8e:6d:87:0c:
bd:5b:eb:e5:e4:cd:4f:b5:7d:57:f0:e6:2b:24:10:
1c:70:c5:36:8d:c8:11:dc:3a:bf:15:1f:31:6a:ed:
cc:e5:ac:45:92:4d:9b:c5:21:b6:0b:8d:ea:58:d5:
93:5d:f8:47:2d:8f:66:12:ff:3d:33:eb:a1:08:5e:
55:77:33:11:31:75:f5:55:2b:dc:d5:da:8b:d0:2a:
4c:40:15:9c:15:01:d5:11:8a:12:76:e7:a1:58:4b:
5b:d4:09:40:8c:e9:29:02:d8:c3:b4:c5:0a:e3:70:
bd:96:a8:54:43:c7:25:8a:cf:f3:af:58:06:df:06:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:42:65:84:E9:5B:5E:DD:E6:96:F9:FB:12:DB:AA:AF:FA:56:EA:34
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/J0JlhOlbXt3mlvn7Etuqr_pW6jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.223.0/24
Signature Algorithm: sha256WithRSAEncryption
42:f3:f7:94:59:80:84:d5:56:3e:18:3e:b7:ec:86:6c:9a:88:
ca:59:6a:f2:49:13:8d:f9:f7:e5:d3:0a:ed:13:c5:62:c9:5c:
b2:2a:bc:a0:92:02:02:c6:cf:09:78:a1:52:f3:af:d9:5a:d1:
7e:e5:11:7b:3f:5e:12:c7:e4:02:e4:c9:72:ee:5e:d2:63:86:
98:05:7c:b1:94:c8:e3:17:ad:2d:ac:2c:d3:8d:f6:21:b8:81:
7e:f8:3b:b2:53:7f:54:e1:d6:79:0c:16:6f:01:e2:24:27:c6:
66:d1:5f:1f:fa:1a:d4:ce:1f:e6:2c:17:84:d0:90:80:73:52:
ee:4c:f5:e2:47:72:99:9e:e1:d1:12:85:2d:08:20:a8:d2:66:
6c:1f:d2:ac:89:38:8f:5e:ef:57:9f:99:31:94:fa:06:e1:51:
ef:03:4d:fa:4a:3c:f8:a1:bc:3c:c7:52:24:d8:fb:0b:e0:cd:
47:dd:98:5d:b1:5a:f0:b0:c5:3c:6d:59:73:cc:62:83:56:02:
54:32:af:48:b0:17:46:90:f8:7c:89:56:76:53:46:70:79:67:
e9:32:5a:d1:5a:91:cd:5d:6e:42:18:55:fd:d1:b0:fa:22:2c:
1e:d2:20:7b:b2:f2:ae:2c:31:88:67:f1:76:fd:9c:ee:bb:89:
be:61:4d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:51 2025 by rpki-client