Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/1eMzTuNdtn4l6QM-ruZi0gHiVxI.roa
File: 1eMzTuNdtn4l6QM-ruZi0gHiVxI.roa (raw, json)
Hash identifier: M5f5VF4WAkMtNDBJ8Vdg5XEePIGOev86olvCAyVL2CA=
Subject key identifier: D5:E3:33:4E:E3:5D:B6:7E:25:E9:03:3E:AE:E6:62:D2:01:E2:57:12
Certificate issuer: /CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945
Certificate serial: 018AA7B5E44C51437937905642781C9ADAA9
Authority key identifier: BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/1eMzTuNdtn4l6QM-ruZi0gHiVxI.roa
Signing time: Mon 18 Sep 2023 09:53:50 +0000
ROA not before: Mon 18 Sep 2023 09:53:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44837
IP address blocks: 195.66.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:b5:e4:4c:51:43:79:37:90:56:42:78:1c:9a:da:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945
Validity
Not Before: Sep 18 09:53:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5e3334ee35db67e25e9033eaee662d201e25712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:18:9d:0b:5e:21:95:66:12:1b:79:0b:42:90:
12:f1:9e:52:a3:75:68:5b:44:6c:78:9d:22:e4:aa:
ec:51:da:8a:5b:88:1f:c8:25:12:c7:88:ca:c5:07:
09:f2:e4:b2:f2:e6:a4:58:82:66:d0:3f:95:bd:87:
c4:ce:98:ed:06:c7:e0:98:7f:4d:5f:a3:b7:03:17:
26:18:8b:5a:71:0e:1e:d2:5a:f7:a2:3f:95:0b:ce:
2f:08:80:d3:51:dc:6f:2b:6b:fd:a9:b5:d6:3b:71:
9c:a9:c9:f4:ef:6e:1b:e5:40:45:2f:12:96:93:f9:
d1:47:26:25:06:c5:9f:ec:12:81:84:22:cc:38:9b:
57:44:f1:11:0c:b6:06:33:04:d5:01:8f:4c:05:17:
23:6d:10:71:2c:1a:a9:ad:52:63:e8:7e:e5:15:76:
fa:73:02:16:22:0e:84:3d:4a:5f:61:59:84:2f:d8:
af:47:85:ee:20:46:45:25:e6:bc:c7:d8:e6:10:a5:
2a:20:62:41:dd:2e:aa:72:a1:d9:d4:2b:2e:e7:f1:
f9:01:85:4c:e6:a2:f7:38:83:be:56:d9:1d:7b:03:
63:b7:c2:ac:2b:45:5b:36:12:48:b4:84:4b:33:c7:
fb:64:59:6f:cf:5d:0f:36:54:3d:27:88:8a:6b:30:
25:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E3:33:4E:E3:5D:B6:7E:25:E9:03:3E:AE:E6:62:D2:01:E2:57:12
X509v3 Authority Key Identifier:
keyid:BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/1eMzTuNdtn4l6QM-ruZi0gHiVxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.105.0/24
Signature Algorithm: sha256WithRSAEncryption
28:2a:96:5f:dd:42:36:e2:99:af:9d:95:d8:15:df:53:72:dd:
2d:78:b2:22:1a:45:09:0f:77:f8:3f:41:3c:eb:7e:99:cc:2f:
e6:0e:e5:4c:33:1c:88:49:f5:ff:c3:8a:95:7a:6d:fc:bc:f9:
90:10:93:b8:e0:6f:38:ed:a8:41:a2:ff:16:0a:c2:d0:d9:31:
59:0a:1f:71:36:94:51:18:93:46:a1:27:89:ec:38:c3:a7:cb:
62:3a:c6:64:4c:20:16:da:2f:c9:98:2e:cd:d2:15:2b:59:6e:
b9:82:27:f0:74:ea:b0:9a:90:f2:65:ca:0b:c9:90:0e:05:39:
c5:44:d3:7e:1e:2e:ff:76:57:d6:79:86:42:77:f8:8b:23:0c:
77:57:dc:df:2f:db:da:15:1e:09:af:21:e8:a3:74:f8:76:94:
ad:d9:72:9b:0a:3d:7c:90:ae:f7:db:2a:f2:58:9a:03:3b:83:
95:be:69:8c:98:6c:cf:63:45:bf:2e:97:7c:0a:5f:ae:df:4e:
78:0f:12:c3:8d:26:eb:5c:af:1c:63:a1:cf:4e:ab:17:df:a6:
61:dc:ca:6a:78:57:70:b0:de:5b:02:21:19:0f:90:e4:63:ce:
71:0e:05:6e:f5:b9:cf:b6:8a:e8:69:43:72:35:54:db:bd:d8:
1d:07:2a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:00 2025 by rpki-client