Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/lCyVBKpCRk9w4rdzSjUZNkrlP8k.roa
File: lCyVBKpCRk9w4rdzSjUZNkrlP8k.roa (raw, json)
Hash identifier: NthTehg4Z2zr/S7iE2LtQiY4bMv1pMK40TQ2TdcZPGE=
Subject key identifier: 94:2C:95:04:AA:42:46:4F:70:E2:B7:73:4A:35:19:36:4A:E5:3F:C9
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 033A4F
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/lCyVBKpCRk9w4rdzSjUZNkrlP8k.roa
Signing time: Thu 09 Jun 2022 11:29:04 +0000
ROA not before: Thu 09 Jun 2022 11:29:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212062
IP address blocks: 195.244.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211535 (0x33a4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Jun 9 11:29:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=942c9504aa42464f70e2b7734a3519364ae53fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6a:31:30:bb:7b:9b:50:79:d8:77:fc:a3:95:
32:e4:e2:80:50:84:22:c2:8a:43:89:85:cb:bb:55:
1d:67:ab:a8:83:e5:39:9b:4c:06:d4:d1:a4:4c:5e:
b2:a6:89:0b:6c:c8:0e:0e:77:8a:06:e3:5d:32:5c:
d6:38:9c:3d:79:d6:60:95:a9:e3:9a:99:4b:2c:f1:
de:1c:8a:c2:35:a1:f1:64:a2:a9:a6:2f:9e:1f:14:
fa:57:b4:89:4b:99:38:4b:5a:9a:d8:c8:be:84:fb:
52:7f:47:eb:58:7f:29:df:61:60:0b:bc:a3:f4:e7:
27:65:b5:0b:b5:54:db:ff:86:a3:97:bd:ed:86:5c:
f4:d4:60:bc:3f:df:d5:48:7f:79:6f:81:d1:0d:58:
6b:32:67:1c:b5:8c:27:e1:2b:62:39:fc:ea:2c:72:
29:d2:f1:1b:82:03:ab:0b:41:b5:58:5b:4e:6b:4e:
ee:2f:9d:20:49:cf:44:e3:d9:fb:dc:7d:68:8c:d6:
3f:f4:b3:b1:6d:c8:bc:96:5d:81:a8:17:c6:a8:19:
42:4c:7c:cd:ee:31:77:05:54:b9:83:62:0a:19:b7:
13:71:2f:a1:18:ac:03:f2:6c:e1:0d:09:0f:2c:32:
7d:8a:8c:f4:bc:e8:c1:80:7a:eb:cd:73:9a:2d:3b:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:2C:95:04:AA:42:46:4F:70:E2:B7:73:4A:35:19:36:4A:E5:3F:C9
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/lCyVBKpCRk9w4rdzSjUZNkrlP8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.13.0/24
Signature Algorithm: sha256WithRSAEncryption
96:69:8d:62:00:d0:75:04:d1:bc:7a:33:ac:ae:50:45:b7:66:
00:75:08:fc:95:06:0f:ce:7f:71:ec:e7:42:a6:64:5b:24:33:
9e:93:17:99:9e:fc:c4:13:c5:b6:c0:af:0b:52:09:35:de:69:
16:3f:81:55:72:ee:77:4d:21:44:29:43:26:3a:fa:01:8b:3f:
d8:e4:2f:ca:e6:3b:63:5f:8e:3b:d1:2b:e7:2e:79:13:78:58:
d0:50:b6:2b:3b:bd:f6:74:9d:d3:3b:82:fc:3f:66:23:53:cf:
3e:d1:51:b2:80:8b:eb:9e:14:cd:7b:39:da:e8:d9:7c:dd:e0:
47:e7:a1:3e:b4:b7:6e:fc:97:36:cb:52:3c:bf:c1:82:dd:ad:
3c:ff:d3:63:23:ce:a5:cc:02:97:06:12:d0:2c:7c:67:cc:6f:
3e:de:91:7e:fc:92:2c:47:6d:e5:11:72:09:8e:80:86:32:fe:
79:28:60:79:70:66:a0:08:6d:90:31:c5:21:80:ba:93:47:52:
27:09:43:3c:c5:06:27:39:ef:94:c5:3a:e0:b4:cf:c1:57:0d:
19:51:26:cd:46:d1:54:f7:f1:bb:9d:6e:4d:ca:3f:41:18:c6:
3d:99:25:f4:66:f0:a1:7d:fb:01:87:a3:7e:54:a1:bf:5e:bd:
16:f7:00:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:42 2025 by rpki-client