Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/McJ6owIAmU_yopcJV0TJ9zcYdX8.roa
File: McJ6owIAmU_yopcJV0TJ9zcYdX8.roa (raw, json)
Hash identifier: fB+mxxWijEmqulKD1Chlr1BRDErVkX3WYr/rfTgM3EE=
Subject key identifier: 31:C2:7A:A3:02:00:99:4F:F2:A2:97:09:57:44:C9:F7:37:18:75:7F
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 01856D0AA40139671644BEA0EECB1F9C67F1
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/McJ6owIAmU_yopcJV0TJ9zcYdX8.roa
Signing time: Sun 01 Jan 2023 11:14:51 +0000
ROA not before: Sun 01 Jan 2023 11:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42626
IP address blocks: 194.27.48.0/23 maxlen: 23
95.183.216.0/22 maxlen: 22
193.255.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:a4:01:39:67:16:44:be:a0:ee:cb:1f:9c:67:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 11:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31c27aa30200994ff2a297095744c9f73718757f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:67:38:d6:cb:a0:0d:44:4b:9a:cb:83:a7:76:
d1:24:b0:92:30:21:45:61:25:a3:e3:15:1c:ab:ca:
a7:a6:53:14:22:08:7c:ff:af:38:99:e4:b0:55:06:
9d:17:66:c7:7e:e6:26:53:7b:b2:c5:0e:4f:ee:91:
c3:67:7a:ff:73:3c:b2:e6:a5:8c:2b:d6:a7:00:21:
2c:64:8c:cb:95:af:45:d8:4a:cc:94:2b:16:ae:21:
09:52:17:32:44:d9:92:6d:22:96:cd:3c:96:63:30:
5b:16:87:6f:37:fc:da:b4:01:02:8a:51:b9:15:7b:
c3:e0:0a:96:a9:fd:52:5b:14:bb:4e:e7:d9:12:33:
05:1a:00:a7:5a:fe:a5:fd:9d:66:aa:d6:72:87:52:
1a:ad:73:7a:bd:f3:e8:c4:bb:67:e8:b9:db:74:c9:
b2:f0:76:2d:27:5e:32:30:3c:28:2f:b9:ad:1f:84:
35:09:25:d3:b9:50:c4:e2:d3:31:0d:5e:b3:d4:41:
fc:ab:8c:81:54:e5:50:5d:41:da:d8:04:bb:4d:54:
6e:6a:fb:ba:f8:3e:fe:01:67:05:14:c4:2d:63:d8:
d5:69:fa:31:58:8b:1b:82:3f:67:5f:8f:38:80:27:
18:4a:e9:39:dd:68:5c:5c:ba:e9:9d:7b:ea:12:49:
cf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C2:7A:A3:02:00:99:4F:F2:A2:97:09:57:44:C9:F7:37:18:75:7F
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/McJ6owIAmU_yopcJV0TJ9zcYdX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.183.216.0/22
193.255.58.0/24
194.27.48.0/23
Signature Algorithm: sha256WithRSAEncryption
30:e3:85:ac:6c:97:34:9b:e3:75:a7:21:73:07:96:96:e9:63:
7b:c1:b8:f2:ee:f2:fa:10:61:fe:03:17:69:12:a5:54:9b:72:
dd:b2:0b:8a:67:0f:3b:c9:89:f7:e2:27:59:d7:f4:db:3e:6a:
50:b8:a5:1d:61:18:ae:31:fa:d2:0d:01:8f:c0:75:16:db:48:
5d:ba:06:0b:c2:76:2e:08:91:f2:67:44:5e:1c:8d:f9:14:f3:
19:1c:86:b1:11:00:ed:a4:5a:b8:ed:55:5e:67:6d:40:93:f7:
ed:db:95:68:cc:38:a0:d9:fb:63:47:56:c7:35:ad:e1:8c:c3:
58:d5:f9:ea:bd:93:02:c2:73:c2:2e:1e:cb:4f:5d:1a:a2:70:
1f:2a:0f:55:c8:11:62:6e:eb:40:b8:0a:19:08:55:65:0c:51:
b8:17:0f:15:cf:18:ef:eb:11:57:19:90:05:d9:41:ba:26:7d:
95:d9:5e:11:2a:50:8a:84:86:65:d5:7f:51:85:9c:d2:df:ed:
42:48:b5:67:ab:8c:38:06:d8:08:c1:cc:ee:e4:84:ea:29:2d:
75:6a:55:0a:61:ee:25:8c:ac:aa:ce:b3:04:80:0d:95:9f:04:
e8:e3:7f:76:f9:c4:50:f5:f0:e4:bb:0f:8a:8b:d9:34:d8:30:
ae:7d:87:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:05 2025 by rpki-client