Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/uQEvxE1aQK-tJCNg-Rnbjx3G5eA.roa
File: uQEvxE1aQK-tJCNg-Rnbjx3G5eA.roa (raw, json)
Hash identifier: UgHELplwZF3vOs52W50cmqm9Uyu3V+eMZPw4V5OMWoA=
Subject key identifier: B9:01:2F:C4:4D:5A:40:AF:AD:24:23:60:F9:19:DB:8F:1D:C6:E5:E0
Certificate issuer: /CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Certificate serial: 35785F4D
Authority key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/uQEvxE1aQK-tJCNg-Rnbjx3G5eA.roa
Signing time: Sat 01 Jan 2022 11:55:43 +0000
ROA not before: Sat 01 Jan 2022 11:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48967
IP address blocks: 195.93.197.0/24 maxlen: 24
95.130.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897081165 (0x35785f4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Validity
Not Before: Jan 1 11:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9012fc44d5a40afad242360f919db8f1dc6e5e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6c:c4:71:a6:b7:26:70:bb:de:e3:86:36:ea:
4f:b7:34:a0:bb:24:c2:74:21:f5:36:d2:47:35:9d:
37:fb:9c:5a:e5:0a:b3:73:fa:77:6b:1c:ab:1d:b1:
a6:56:eb:22:78:36:6e:32:06:e8:da:4a:9e:77:dc:
dd:e4:82:65:20:84:85:74:1b:9c:f8:45:3c:7a:b9:
c1:a2:b9:60:7f:e6:99:16:c9:3e:c4:d0:73:d4:f3:
46:60:66:66:77:9c:37:92:8b:1f:78:f5:07:a1:df:
e8:2b:24:54:b0:e5:81:84:26:dc:e4:1a:e9:84:05:
1d:5b:a0:99:c6:ac:80:26:69:6c:a9:62:88:15:8d:
80:45:7d:34:c1:4e:1d:41:91:fe:4d:8b:b2:ea:ff:
95:23:29:e4:e1:bd:3a:ca:64:ff:cd:99:f4:1e:01:
c3:13:08:b8:58:e5:b3:fb:9d:bd:a9:25:17:ae:17:
cc:8e:1d:0c:2a:18:80:4c:89:6a:b4:d8:93:52:5e:
b9:21:93:50:f5:c3:55:06:60:57:21:14:0d:c5:c2:
e2:d3:92:63:7f:ab:9e:93:98:b5:5d:7b:ae:55:a5:
ae:43:f4:b2:17:1c:ed:fc:6b:e6:d0:f7:7b:13:50:
21:9c:72:8a:e8:17:db:3b:a3:6f:16:25:31:c7:d3:
a6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:01:2F:C4:4D:5A:40:AF:AD:24:23:60:F9:19:DB:8F:1D:C6:E5:E0
X509v3 Authority Key Identifier:
keyid:B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/uQEvxE1aQK-tJCNg-Rnbjx3G5eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.110.0/24
195.93.197.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:67:48:e5:d6:0a:0a:13:38:de:58:d1:b2:a7:be:91:b0:7a:
4c:da:e4:a9:a3:1d:2a:d9:29:af:96:81:3d:e2:4b:e2:09:59:
20:0a:18:a4:19:c9:8c:4b:6a:69:ca:ee:08:71:a5:8d:ba:ae:
70:05:b3:f4:7a:d7:61:40:95:a6:aa:90:7a:62:4c:10:19:4b:
59:3d:d7:13:15:b1:e4:a0:2e:c0:9a:a2:37:41:ae:6d:a1:99:
1e:89:23:fe:d4:95:04:1d:cf:80:e9:b7:cf:a2:44:23:7b:3c:
91:79:a2:d3:aa:23:2b:ce:b7:14:70:b8:83:35:41:69:93:47:
4c:08:b3:f3:2d:25:04:ee:65:08:e9:61:be:e4:9e:ff:a7:69:
04:97:b3:d8:e1:33:04:16:1f:24:b7:b9:84:c0:de:ea:bb:ff:
6e:81:83:99:bd:47:da:3f:41:1b:4d:a2:23:01:28:38:fa:bb:
5d:3c:38:3a:73:0c:7f:d5:82:e0:6d:94:54:a7:48:ec:2b:9f:
11:ef:84:82:cf:60:22:35:e3:d5:15:3c:d9:ce:7d:c7:4f:28:
ad:02:68:59:75:ee:e7:97:d3:09:3c:e5:de:62:aa:0e:3b:89:
e5:22:44:fd:a4:16:0d:35:60:15:78:9b:43:c4:8a:79:d3:bc:
4b:a7:c4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:33:54 2025 by rpki-client