Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/UIP5Nzy4J9Cjl4i89jmpTl7fAm4.roa
File: UIP5Nzy4J9Cjl4i89jmpTl7fAm4.roa (raw, json)
Hash identifier: 9++yAZPpaUO/74vo3aUKxZgJUTA0BdCfHzqAPuD6NGc=
Subject key identifier: 50:83:F9:37:3C:B8:27:D0:A3:97:88:BC:F6:39:A9:4E:5E:DF:02:6E
Certificate issuer: /CN=e48da335b072536d58e6b7cdf4cdb16445bcbc33
Certificate serial: 018B4D8EF3C4B45FB31EE5176E30BACAAADC
Authority key identifier: E4:8D:A3:35:B0:72:53:6D:58:E6:B7:CD:F4:CD:B1:64:45:BC:BC:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5I2jNbByU21Y5rfN9M2xZEW8vDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/UIP5Nzy4J9Cjl4i89jmpTl7fAm4.roa
Signing time: Fri 20 Oct 2023 14:48:16 +0000
ROA not before: Fri 20 Oct 2023 14:48:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197107
IP address blocks: 195.225.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4d:8e:f3:c4:b4:5f:b3:1e:e5:17:6e:30:ba:ca:aa:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e48da335b072536d58e6b7cdf4cdb16445bcbc33
Validity
Not Before: Oct 20 14:48:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5083f9373cb827d0a39788bcf639a94e5edf026e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:aa:1d:d4:c7:ea:c1:c2:c6:10:ad:02:49:
c4:c3:91:69:48:4e:63:54:a6:e8:41:e0:f6:01:3f:
68:3f:d9:ea:7b:28:90:7d:2a:3f:a7:19:bc:4e:7e:
29:cf:60:b5:2a:ad:9b:64:43:3d:37:64:76:95:df:
56:c6:e0:a3:28:8b:57:ed:1a:08:82:83:76:9e:9f:
14:dc:ae:a0:89:08:40:41:c5:0d:07:ee:55:28:6b:
5e:66:9a:67:11:49:2c:f7:6d:3e:b2:68:a4:1c:09:
fd:db:e7:19:7b:cc:4b:fc:13:7c:c6:16:e4:6c:4d:
db:e5:bf:04:6d:f1:04:e2:db:a3:02:36:4f:65:6a:
ab:b3:5f:ca:b4:51:c4:a6:41:5c:db:b8:e9:51:83:
d8:83:5a:b5:35:91:b1:62:b7:d2:27:a0:32:7b:2b:
8d:49:95:c3:4f:3b:6f:b9:24:94:f5:c6:63:43:9c:
85:8c:c0:92:78:56:a0:8d:bc:f5:79:8d:b5:4b:dc:
ef:db:ee:d6:ba:ed:68:4b:8e:03:6e:f1:e0:87:ab:
f0:75:b8:d5:67:16:28:c6:cd:2a:10:07:15:57:db:
6e:d5:9c:ad:42:9a:f7:2a:42:20:1c:41:7c:40:75:
a2:43:42:8f:65:8d:47:03:f5:08:8c:48:8a:a8:73:
b0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:83:F9:37:3C:B8:27:D0:A3:97:88:BC:F6:39:A9:4E:5E:DF:02:6E
X509v3 Authority Key Identifier:
keyid:E4:8D:A3:35:B0:72:53:6D:58:E6:B7:CD:F4:CD:B1:64:45:BC:BC:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5I2jNbByU21Y5rfN9M2xZEW8vDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/UIP5Nzy4J9Cjl4i89jmpTl7fAm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/5I2jNbByU21Y5rfN9M2xZEW8vDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.66.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:53:e3:b1:65:a5:77:64:9c:86:1c:88:c7:76:7c:2b:dd:23:
b3:82:3b:d4:d6:31:39:8e:bc:80:91:1d:41:03:d4:09:2e:b9:
b6:aa:41:6d:8e:85:91:55:8b:62:8c:ad:52:10:db:bf:fa:c4:
08:a1:63:e2:4a:55:b7:b4:61:e3:6d:fc:ff:b8:f0:57:be:1b:
5b:2a:cb:cf:b6:ca:c2:e1:e2:47:55:eb:3c:4b:ac:e9:1d:05:
b4:4c:09:3b:43:ec:52:8f:b7:d2:42:ee:9a:fb:fe:a2:bf:4a:
20:3c:81:64:53:eb:18:40:3b:7f:b0:69:18:d2:c0:17:3b:20:
df:69:80:d3:c0:6a:89:82:0e:b3:a9:53:fd:da:78:2d:7c:65:
a1:80:ce:8f:e6:33:fa:b5:06:93:bd:c6:a7:7d:02:df:0c:72:
85:ed:d0:24:41:70:6b:98:f0:92:99:70:17:7d:96:dc:9b:ca:
d6:5f:d0:e5:c2:c5:34:64:7d:ed:98:c0:40:6f:6a:d8:5b:8c:
00:85:9c:2e:48:43:e1:c3:52:24:31:3b:c9:a3:e2:c2:aa:a5:
2a:11:88:81:1a:44:70:34:3b:32:00:19:4e:66:15:a5:2a:6e:
93:83:ae:91:68:b8:a3:da:22:c3:86:b2:24:2e:f1:cf:0b:6e:
60:45:28:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:18 2025 by rpki-client