Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/dd4jkqSPQj8HAdgRukXWGReOMjg.roa
File: dd4jkqSPQj8HAdgRukXWGReOMjg.roa (raw, json)
Hash identifier: Bt84FqfmwLWxOdBg8q5yuxQZs6/57v1Ar7eE5uFRLFY=
Subject key identifier: 75:DE:23:92:A4:8F:42:3F:07:01:D8:11:BA:45:D6:19:17:8E:32:38
Certificate issuer: /CN=056ad2f4ffc5872e35a429e53ef179925ff4215e
Certificate serial: 18D4B2D5
Authority key identifier: 05:6A:D2:F4:FF:C5:87:2E:35:A4:29:E5:3E:F1:79:92:5F:F4:21:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWrS9P_Fhy41pCnlPvF5kl_0IV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/dd4jkqSPQj8HAdgRukXWGReOMjg.roa
Signing time: Tue 15 Feb 2022 00:46:07 +0000
ROA not before: Tue 15 Feb 2022 00:46:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199273
IP address blocks: 195.244.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416592597 (0x18d4b2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=056ad2f4ffc5872e35a429e53ef179925ff4215e
Validity
Not Before: Feb 15 00:46:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75de2392a48f423f0701d811ba45d619178e3238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e4:58:02:6e:64:a0:61:50:f2:00:83:cd:c0:
9c:8c:32:a9:d4:ea:09:a5:72:35:ea:3d:0f:94:8e:
5f:d2:14:24:01:58:a3:51:0d:d5:bc:3b:76:99:da:
34:03:3d:5b:88:e6:27:18:9c:e1:3c:3e:6c:97:aa:
75:bb:36:d6:b2:49:20:7f:90:b0:ff:50:74:39:c7:
70:dc:04:f1:3a:eb:df:96:66:57:90:38:ad:01:f7:
79:da:60:8f:eb:d0:2b:78:24:55:65:64:39:1c:9a:
91:84:66:1e:8a:1c:18:6c:62:7c:70:30:a2:5e:7a:
86:d7:2c:51:67:33:a5:49:c1:ec:67:c3:cc:a4:8b:
09:ae:42:63:f0:47:19:7b:f2:df:14:23:aa:7b:4d:
ce:d9:17:56:e9:7d:fe:2c:26:98:d8:93:30:24:8c:
db:90:4b:20:b2:97:fe:26:0b:c1:d1:13:19:3e:81:
7c:e4:de:47:b4:25:b1:26:e8:9f:97:ef:56:eb:5d:
c9:77:b2:3b:6c:45:a7:f9:7c:db:3e:4e:6b:84:ef:
14:d6:4e:f4:3c:6f:10:50:e7:12:29:91:b1:e1:70:
33:46:f9:4a:2c:04:e9:99:b5:a6:1b:b2:fe:f9:5e:
a6:27:7d:1d:a5:c3:bf:fd:69:b2:df:de:0c:67:8c:
09:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DE:23:92:A4:8F:42:3F:07:01:D8:11:BA:45:D6:19:17:8E:32:38
X509v3 Authority Key Identifier:
keyid:05:6A:D2:F4:FF:C5:87:2E:35:A4:29:E5:3E:F1:79:92:5F:F4:21:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWrS9P_Fhy41pCnlPvF5kl_0IV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/dd4jkqSPQj8HAdgRukXWGReOMjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/BWrS9P_Fhy41pCnlPvF5kl_0IV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.239.0/24
Signature Algorithm: sha256WithRSAEncryption
88:50:4c:b0:06:4a:08:6f:bb:b2:f0:4a:a0:ca:83:f8:93:66:
51:fe:0f:6a:53:20:f0:fa:75:72:48:4e:b6:8c:ae:84:82:db:
f1:c3:36:1a:12:10:e7:bf:cd:e4:44:df:8f:e7:29:6c:f6:b5:
08:8c:7d:ba:1c:db:2e:fa:e4:14:ad:65:f2:c5:0c:f3:97:87:
84:a8:80:ab:14:51:0d:05:3d:9a:7a:04:ba:7f:75:e7:12:a5:
39:48:d8:15:59:6d:a4:c4:9e:d3:b6:b1:99:6f:c5:a9:99:e6:
a4:2f:fb:0b:32:e3:40:5c:a7:0f:2b:43:75:d0:45:35:72:42:
f6:4a:35:a9:9d:46:61:85:e3:3f:5b:c2:dd:4e:14:09:8e:1d:
c8:ba:67:0e:57:a2:25:62:40:0d:30:c5:32:ef:ce:9a:a1:5e:
72:5b:17:44:9f:b9:43:87:26:e1:69:85:5b:92:02:04:58:ad:
bf:f9:ee:75:10:bd:68:83:34:78:e9:cc:26:ce:77:e2:af:84:
f9:b6:85:04:7c:82:60:e2:2c:fa:81:4e:79:40:2d:9d:5d:0c:
8a:5d:8e:64:35:48:7d:54:81:d0:72:54:ce:79:ab:fd:de:ef:
5d:61:ae:21:94:52:02:16:74:59:00:5a:b1:fc:59:cd:5d:84:
79:8d:ff:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:47 2025 by rpki-client