Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/OWPBjmu3VcuN3INBBN5xiUscc_I.roa
File: OWPBjmu3VcuN3INBBN5xiUscc_I.roa (raw, json)
Hash identifier: VnJ58zuFT+Im5Ybz+Y7cXy5M+cqAv+LulAGrf/KpJy4=
Subject key identifier: 39:63:C1:8E:6B:B7:55:CB:8D:DC:83:41:04:DE:71:89:4B:1C:73:F2
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 3947E49D
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/OWPBjmu3VcuN3INBBN5xiUscc_I.roa
Signing time: Sat 01 Jan 2022 03:53:05 +0000
ROA not before: Sat 01 Jan 2022 03:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50148
IP address blocks: 195.130.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961012893 (0x3947e49d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3963c18e6bb755cb8ddc834104de71894b1c73f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f5:6a:a2:65:9f:9c:d1:71:75:d0:11:67:df:
01:ab:0a:02:24:b7:7f:99:2b:5c:48:8e:b7:29:76:
37:84:19:24:cf:b1:2a:89:54:44:09:16:39:71:c3:
4c:bb:07:d0:59:66:63:b2:85:bb:8b:45:0b:60:79:
f6:d4:8c:12:ab:8a:56:54:30:8a:85:60:af:67:44:
e8:fe:8c:5d:fb:9b:4a:8d:8f:7a:d7:3a:ef:a7:08:
a9:30:63:7c:63:5e:eb:2b:0e:f0:d1:94:fc:a7:81:
ca:72:cf:c0:05:7a:09:8b:6b:73:ce:ae:bc:62:35:
7a:70:e9:22:51:b4:08:e8:74:82:cc:4f:a4:56:8b:
1c:90:3f:91:86:c2:44:39:79:8f:d4:03:31:8a:2e:
8b:77:58:33:c0:e3:d0:85:1d:f0:3b:b9:d5:d8:f8:
65:2f:e3:11:8c:1f:1d:c1:4f:9e:c4:5b:10:72:7b:
e2:02:8c:b8:44:90:5c:0b:b6:3f:19:b5:29:3f:64:
9a:61:f4:ca:4c:9c:0f:b7:86:e0:a2:f4:14:7d:bc:
a0:58:7e:9f:d7:53:86:05:79:f5:26:b0:c3:8c:a4:
f8:bd:75:6b:94:88:78:5a:25:bc:64:ef:b7:78:26:
08:65:4d:52:b0:3a:12:4f:31:2d:4f:9f:38:49:a2:
05:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:63:C1:8E:6B:B7:55:CB:8D:DC:83:41:04:DE:71:89:4B:1C:73:F2
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/OWPBjmu3VcuN3INBBN5xiUscc_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f8:06:af:dd:80:6c:75:b3:7e:79:91:25:49:bd:cc:8b:67:
57:b5:a7:cc:36:5e:50:fd:c4:b6:7f:b2:99:13:9f:dc:5a:36:
66:90:c3:b1:2f:ec:ce:76:87:95:df:c1:bb:cb:20:bf:51:6c:
6f:d7:17:34:95:42:72:ff:c2:2f:2c:28:5c:39:a9:f0:39:e3:
7f:d5:07:5f:0e:24:53:99:47:b8:cd:75:9f:ed:ca:d5:3f:86:
b6:03:af:ca:d1:cd:d0:45:78:bf:de:95:51:d8:3e:a6:e6:04:
3b:f3:5b:ad:74:3b:2d:82:34:0f:d6:25:1f:59:df:2b:f2:23:
20:f1:0d:2f:ec:81:dd:d6:18:ac:61:e8:e2:b6:a9:64:03:6d:
4e:b5:9d:1d:7f:60:da:0e:fe:66:3b:76:52:1e:49:ec:11:fd:
43:2e:ea:2d:4c:1d:70:dd:4c:09:cb:45:a2:b3:8e:d2:9c:d5:
54:ae:68:ca:e0:fd:d2:df:8e:0d:68:af:0e:06:aa:66:b5:4f:
2a:63:34:e4:73:e2:cd:c9:a0:ea:1a:99:a5:b3:37:05:a7:d9:
89:46:43:e2:d0:9c:7d:6e:51:9c:09:27:2e:8b:82:e4:45:db:
48:a5:52:33:57:60:1d:7d:07:75:4f:bb:be:48:e7:d0:b5:60:
7c:c3:ae:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:19 2025 by rpki-client