Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb1467-241a-4bc5-baa6-6f363e83a78e/1/zoYdGGrf2gPTv2gjHwaqJUm9GW4.roa
File: zoYdGGrf2gPTv2gjHwaqJUm9GW4.roa (raw, json)
Hash identifier: bB7+z6c8SR0FqW76Apd/8vGhzLSoPN5ITvCLtzk+vnQ=
Subject key identifier: CE:86:1D:18:6A:DF:DA:03:D3:BF:68:23:1F:06:AA:25:49:BD:19:6E
Certificate issuer: /CN=f22219eca54ab269c8aab9b0ff416e7293829b59
Certificate serial: 0185D3F9700B86910E269764CDC4391E47AB
Authority key identifier: F2:22:19:EC:A5:4A:B2:69:C8:AA:B9:B0:FF:41:6E:72:93:82:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iIZ7KVKsmnIqrmw_0FucpOCm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb1467-241a-4bc5-baa6-6f363e83a78e/1/zoYdGGrf2gPTv2gjHwaqJUm9GW4.roa
Signing time: Sat 21 Jan 2023 10:56:57 +0000
ROA not before: Sat 21 Jan 2023 10:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35161
IP address blocks: 195.95.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:f9:70:0b:86:91:0e:26:97:64:cd:c4:39:1e:47:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f22219eca54ab269c8aab9b0ff416e7293829b59
Validity
Not Before: Jan 21 10:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce861d186adfda03d3bf68231f06aa2549bd196e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:89:95:6c:d5:3f:de:60:a1:d8:f1:64:80:15:
d3:2f:0b:d7:e5:85:dd:9e:f5:bd:44:59:df:14:c1:
d0:b7:1e:8d:10:31:3c:7e:72:b9:f7:43:fb:95:17:
68:7d:bf:23:35:e9:56:b3:0d:3c:99:89:c6:aa:22:
16:ff:d2:63:d7:3b:c1:71:d1:a8:2c:01:aa:db:59:
95:f0:c7:25:d8:33:43:d5:c3:35:35:c4:41:29:77:
e4:88:aa:a1:97:26:db:4e:0c:61:bf:c1:b2:33:89:
d5:16:be:a2:f5:bb:3b:bc:89:ad:aa:4e:7c:d4:93:
02:c8:e7:52:24:76:44:03:18:93:01:35:16:89:7e:
d7:9a:00:84:7e:ef:bd:f5:35:30:8c:03:6a:2f:b8:
55:07:47:7c:ff:fe:5e:e7:88:fa:bd:dd:41:db:79:
59:85:e9:ce:d5:57:19:96:33:c0:f9:07:04:8f:83:
3b:e2:58:24:85:60:3f:1f:56:b3:e9:98:96:fb:d9:
a0:43:7e:fb:e8:f8:58:5c:8a:2d:df:6d:d8:4f:ce:
64:7b:6c:15:c6:af:33:5a:2b:08:df:4c:e8:4c:06:
d5:6e:48:5c:1e:ac:0f:fa:0e:a4:71:0b:1b:50:2a:
9a:44:aa:3b:5f:75:e5:86:11:00:f8:0e:69:3a:2e:
cf:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:86:1D:18:6A:DF:DA:03:D3:BF:68:23:1F:06:AA:25:49:BD:19:6E
X509v3 Authority Key Identifier:
keyid:F2:22:19:EC:A5:4A:B2:69:C8:AA:B9:B0:FF:41:6E:72:93:82:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iIZ7KVKsmnIqrmw_0FucpOCm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb1467-241a-4bc5-baa6-6f363e83a78e/1/zoYdGGrf2gPTv2gjHwaqJUm9GW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb1467-241a-4bc5-baa6-6f363e83a78e/1/8iIZ7KVKsmnIqrmw_0FucpOCm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.152.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:72:43:3d:7e:a4:63:27:0a:33:f2:bf:6b:01:c5:e6:bc:c4:
2d:0b:d0:63:b7:48:75:0c:59:74:36:3b:2d:4b:bd:82:f0:47:
c8:ba:61:a7:84:aa:ef:b6:b7:a1:82:61:94:25:04:ce:75:4d:
41:63:85:b1:28:0e:f0:cb:a6:16:c1:d1:cf:bd:d8:be:3e:d3:
40:8a:a2:86:05:23:69:b2:70:05:d6:61:ad:50:f7:f3:08:0a:
d6:e8:1d:9a:d8:5e:35:71:20:1f:17:cc:8b:31:0f:2e:39:33:
3e:c1:ae:4f:44:bf:99:c9:24:cf:22:dc:c8:e6:56:4c:f7:71:
9a:5a:62:3e:03:0b:a9:b4:99:74:51:87:55:ce:2a:b9:86:42:
6d:b6:07:f6:04:8e:80:db:51:59:7f:5f:d9:59:af:ea:ef:45:
73:3b:53:b9:03:1b:74:06:c2:c5:80:bb:22:a5:09:5c:4a:73:
be:53:a3:4d:61:db:e3:8b:1e:ef:24:9e:a5:76:47:8a:be:7c:
6e:1e:f1:ab:7e:8c:6d:3b:82:9a:12:86:4b:b1:a3:13:f6:fb:
a2:2c:7a:9f:aa:08:2b:c6:23:eb:19:bd:01:f5:8e:f9:17:5a:
2d:2d:43:e5:d5:3b:b8:fe:18:13:70:63:d6:95:22:92:2b:b5:
b6:7f:68:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:19 2025 by rpki-client