Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6a8ad5-21df-4dbb-9abd-d446455dc5ba/1/9Te0bxAVrvW7Lt8IHd9F-MJpoVE.roa
File: 9Te0bxAVrvW7Lt8IHd9F-MJpoVE.roa (raw, json)
Hash identifier: XP8tnWUyNSQMOYh+SooYNdWqvjG/mtiqOlE/HNQILkg=
Subject key identifier: F5:37:B4:6F:10:15:AE:F5:BB:2E:DF:08:1D:DF:45:F8:C2:69:A1:51
Certificate issuer: /CN=f14666fbb64c4da8cb8992bf0da97b8b0117eac6
Certificate serial: C8ACAD
Authority key identifier: F1:46:66:FB:B6:4C:4D:A8:CB:89:92:BF:0D:A9:7B:8B:01:17:EA:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8UZm-7ZMTajLiZK_Dal7iwEX6sY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6a8ad5-21df-4dbb-9abd-d446455dc5ba/1/9Te0bxAVrvW7Lt8IHd9F-MJpoVE.roa
Signing time: Sat 01 Jan 2022 03:00:51 +0000
ROA not before: Sat 01 Jan 2022 03:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48797
IP address blocks: 185.130.16.0/22 maxlen: 22
95.128.232.0/22 maxlen: 22
95.128.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13151405 (0xc8acad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f14666fbb64c4da8cb8992bf0da97b8b0117eac6
Validity
Not Before: Jan 1 03:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f537b46f1015aef5bb2edf081ddf45f8c269a151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:75:9b:e6:09:3d:fc:48:78:95:ee:d1:69:
bd:4e:04:d0:4b:08:21:2e:f1:1f:4a:28:b7:f7:c0:
24:91:56:8d:8e:8f:1d:71:f8:f0:ba:7f:8c:8c:13:
94:6c:4e:60:d0:d8:53:04:4a:45:d9:30:76:43:a8:
37:3f:07:12:3e:28:46:6d:68:e0:f2:8e:45:7e:90:
03:cf:83:8e:48:e5:7f:c7:de:57:46:65:cc:68:ab:
c5:2c:c6:bc:d0:6b:fd:30:dc:eb:4c:d1:a2:36:98:
e6:0b:60:02:be:a2:06:38:8e:c3:88:20:43:be:6f:
28:55:1f:d0:c1:06:a9:8f:09:ee:e8:2f:7a:6f:68:
dd:dd:97:84:66:34:08:40:3e:d2:76:96:0b:6e:23:
27:80:84:da:c9:7c:ae:a2:88:4d:ff:df:78:d6:af:
c0:24:d4:a8:00:0f:4d:bb:38:0c:b0:b5:18:7c:62:
a0:8b:e6:d5:81:01:f9:d6:1b:0b:19:8d:ba:cc:2f:
d5:b3:fe:a3:5b:7b:59:97:da:ad:4b:68:be:83:b6:
04:02:ff:71:db:11:00:2c:d5:82:d0:e4:30:79:b5:
b7:78:51:96:54:c5:5a:77:89:de:e6:ad:82:3b:5a:
f6:f5:d2:c9:a6:82:e0:76:57:f8:ff:97:af:3e:10:
00:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:37:B4:6F:10:15:AE:F5:BB:2E:DF:08:1D:DF:45:F8:C2:69:A1:51
X509v3 Authority Key Identifier:
keyid:F1:46:66:FB:B6:4C:4D:A8:CB:89:92:BF:0D:A9:7B:8B:01:17:EA:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UZm-7ZMTajLiZK_Dal7iwEX6sY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6a8ad5-21df-4dbb-9abd-d446455dc5ba/1/9Te0bxAVrvW7Lt8IHd9F-MJpoVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6a8ad5-21df-4dbb-9abd-d446455dc5ba/1/8UZm-7ZMTajLiZK_Dal7iwEX6sY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.232.0/21
185.130.16.0/22
Signature Algorithm: sha256WithRSAEncryption
10:25:f6:51:01:07:84:ae:24:30:89:9c:81:80:65:ec:2e:9f:
62:17:2f:7f:ff:34:2c:f3:fd:14:2f:b3:69:c2:8b:7e:48:0b:
ac:a5:0b:0e:46:ea:a9:f7:8a:b2:21:5b:05:e9:d3:40:5c:d7:
8b:8f:8e:70:23:49:16:4a:42:f9:2b:b3:50:cd:9b:ab:cc:63:
49:a9:17:dc:68:86:2d:49:c7:49:ba:f6:53:3a:2f:f1:29:44:
ad:1e:48:81:96:a1:13:46:96:32:27:af:ff:b1:e8:47:ff:8a:
c9:52:2f:7d:be:5b:ae:7b:0b:c8:e3:be:dc:cf:26:af:7f:b5:
c7:e9:de:ec:89:b9:cd:d0:70:ab:a9:a9:a8:d6:77:f2:a2:3a:
0d:45:2e:cb:de:91:37:f4:72:54:72:57:46:9b:3d:da:7d:21:
66:39:56:c7:f8:d9:42:58:10:15:45:a2:89:b4:21:8a:ab:92:
45:26:6d:68:35:69:44:22:00:b8:a9:78:5d:46:65:66:5d:fd:
4c:75:c7:8e:ba:a8:d2:5e:d6:82:fc:f5:ad:c8:e7:67:fc:c1:
9c:e5:a4:29:c7:ea:2e:82:d3:84:03:d2:90:08:9d:b2:e7:c6:
58:9c:81:b3:ef:eb:23:0b:09:e3:22:64:dd:22:d9:44:ff:15:
35:bc:8b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:27 2025 by rpki-client