Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/bQWTh7qdWFmzA7HGSUfUmUsTyd4.roa
File: bQWTh7qdWFmzA7HGSUfUmUsTyd4.roa (raw, json)
Hash identifier: MDRc2apkeGzLegufrleBvdowv76xP53Rlq5OdSxS+PE=
Subject key identifier: 6D:05:93:87:BA:9D:58:59:B3:03:B1:C6:49:47:D4:99:4B:13:C9:DE
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 393FCCC0
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/bQWTh7qdWFmzA7HGSUfUmUsTyd4.roa
Signing time: Sat 01 Jan 2022 03:52:59 +0000
ROA not before: Sat 01 Jan 2022 03:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8643
IP address blocks: 195.130.123.0/24 maxlen: 24
195.130.64.0/23 maxlen: 23
2001:648:2010::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960482496 (0x393fccc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d059387ba9d5859b303b1c64947d4994b13c9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:28:97:84:96:cb:c1:3d:33:ee:dd:ee:87:
c4:5c:01:47:b9:b8:bb:e5:b2:8a:aa:77:8d:80:1c:
c9:38:58:91:3e:24:fc:ef:84:e5:3d:52:8b:f6:8c:
4f:bb:08:8f:48:ec:e7:fc:31:8f:f2:bd:c1:cb:99:
41:8c:e7:d0:ac:00:80:22:2c:62:51:1b:f0:be:8a:
fd:5b:42:6b:37:8c:18:52:34:82:38:f6:00:dd:2d:
07:46:f7:84:64:c3:9a:85:21:cf:ee:7c:00:9d:22:
ee:44:b6:b5:ae:d7:b5:8d:8b:fe:54:41:7a:32:05:
6e:be:65:f0:16:b2:d6:79:19:a5:b9:38:a4:ec:1e:
26:6b:90:51:0a:4a:16:32:ee:9c:89:bb:74:39:f6:
df:d9:6f:d6:8c:49:cb:b1:e0:03:cc:0e:54:e5:dd:
e4:a9:59:d1:a3:6a:4a:09:98:2a:c2:58:d4:58:e1:
89:3c:db:9e:7a:fd:11:2d:6d:31:9a:6b:75:4c:e4:
79:87:7a:03:76:c6:be:6b:ea:cd:64:2e:8a:94:60:
4e:b6:c3:8f:1e:05:0c:c7:ef:1b:9a:87:ef:98:38:
54:e8:6a:4e:50:8f:17:5a:40:26:53:1a:66:67:c9:
f4:5b:bd:cf:31:0e:e1:a4:99:0f:7b:21:cd:d0:d7:
88:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:05:93:87:BA:9D:58:59:B3:03:B1:C6:49:47:D4:99:4B:13:C9:DE
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/bQWTh7qdWFmzA7HGSUfUmUsTyd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.64.0/23
195.130.123.0/24
IPv6:
2001:648:2010::/48
Signature Algorithm: sha256WithRSAEncryption
7e:47:ec:d4:6f:27:34:b1:c3:bb:5e:e2:ae:6b:df:29:27:7f:
1d:c2:f0:e1:58:a8:15:ef:e2:b3:40:99:72:46:21:e4:6f:73:
16:5d:db:e4:d6:34:b8:a2:6e:97:5d:1b:79:90:67:83:55:3a:
06:8b:c8:f4:71:51:07:96:55:fc:3c:f7:09:97:0e:97:41:50:
ca:aa:c1:8c:b9:d1:c8:96:4d:62:d8:98:c4:47:2e:97:1d:ae:
0e:c3:82:c1:d4:a9:66:90:5e:90:fc:8c:e8:d3:fa:e5:2b:37:
0c:1d:02:7c:0d:64:7e:62:99:30:70:c7:ab:ca:20:e6:cf:53:
0f:5c:78:aa:e4:62:62:eb:26:43:72:36:40:77:dc:ad:d7:1b:
67:49:96:58:44:4c:4a:fb:e6:62:ee:86:2c:69:96:f8:31:12:
89:ef:79:b5:7e:a4:8d:53:a0:31:06:aa:26:61:bc:c3:7b:66:
d9:84:b8:e1:41:ea:9c:7d:fa:77:a9:d9:3f:02:c6:ab:8b:94:
5b:7a:a9:33:77:b0:25:5a:a4:77:87:98:1e:22:f4:13:12:ba:
1c:08:b4:40:1d:c6:2e:67:e3:5c:c1:53:91:d7:93:fd:94:d7:
89:c7:de:09:fe:81:ca:ab:30:77:5c:6a:80:05:d1:36:67:ea:
a8:08:37:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:05 2025 by rpki-client