Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/6ad9b8-9f0e-4ad0-a220-3ac3b6737042/1/cVCzy7KfmJnoE7IQjAvvRdlu4Fc.roa
File: cVCzy7KfmJnoE7IQjAvvRdlu4Fc.roa (raw, json)
Hash identifier: 3ByvNNCnbOX6tmWpwThU26Y6i+NS445pNK30X7+35uI=
Subject key identifier: 71:50:B3:CB:B2:9F:98:99:E8:13:B2:10:8C:0B:EF:45:D9:6E:E0:57
Certificate issuer: /CN=af0f5a9bd2ad1e96865f00d08522b9aad3e91a4d
Certificate serial: 03B169DC
Authority key identifier: AF:0F:5A:9B:D2:AD:1E:96:86:5F:00:D0:85:22:B9:AA:D3:E9:1A:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rw9am9KtHpaGXwDQhSK5qtPpGk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/6ad9b8-9f0e-4ad0-a220-3ac3b6737042/1/cVCzy7KfmJnoE7IQjAvvRdlu4Fc.roa
Signing time: Sat 01 Jan 2022 04:02:08 +0000
ROA not before: Sat 01 Jan 2022 04:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39528
IP address blocks: 195.60.225.0/24 maxlen: 24
195.60.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61958620 (0x3b169dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0f5a9bd2ad1e96865f00d08522b9aad3e91a4d
Validity
Not Before: Jan 1 04:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7150b3cbb29f9899e813b2108c0bef45d96ee057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1d:27:1e:1e:bd:8d:0f:d9:83:8c:89:e0:7b:
9a:bd:02:1a:01:db:23:5c:b8:ac:7d:9c:ff:f6:57:
73:42:1f:54:63:cc:97:38:d5:ab:54:8e:6d:d5:65:
08:27:27:de:75:19:ec:57:31:04:70:77:07:0b:9b:
39:17:eb:0b:5d:87:a9:73:74:59:c0:12:3f:6f:e5:
d6:59:72:23:4d:07:a0:1c:fd:c3:a9:3d:99:bf:a2:
55:ed:4e:e1:ef:00:20:87:25:39:bd:bf:4b:32:ab:
5b:17:60:73:b7:ca:47:8c:9d:a0:86:fa:90:a1:b1:
66:55:a9:1d:38:1a:a6:d7:af:3e:24:1b:06:a2:c2:
d2:eb:4b:92:17:0b:e5:cd:57:3d:e5:a0:ff:fa:78:
c5:69:d1:34:23:b9:9c:39:67:27:99:45:38:c5:2f:
2a:17:5e:7c:29:e8:38:f5:f3:62:63:cc:7b:fb:d0:
f7:d6:63:30:a7:28:1d:6c:24:8f:c0:ce:b1:ff:2e:
dd:a9:57:30:27:f3:30:87:dd:5a:20:4a:b8:64:a2:
a2:22:07:58:1e:bb:76:e4:d5:a5:a1:7c:c9:17:dc:
f4:34:69:06:05:cf:58:16:e1:09:bb:9e:d4:89:00:
f5:c9:52:f4:81:25:c0:43:a9:c6:3e:f8:30:c7:76:
6c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:50:B3:CB:B2:9F:98:99:E8:13:B2:10:8C:0B:EF:45:D9:6E:E0:57
X509v3 Authority Key Identifier:
keyid:AF:0F:5A:9B:D2:AD:1E:96:86:5F:00:D0:85:22:B9:AA:D3:E9:1A:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rw9am9KtHpaGXwDQhSK5qtPpGk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/6ad9b8-9f0e-4ad0-a220-3ac3b6737042/1/cVCzy7KfmJnoE7IQjAvvRdlu4Fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/6ad9b8-9f0e-4ad0-a220-3ac3b6737042/1/rw9am9KtHpaGXwDQhSK5qtPpGk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.224.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:1b:fa:15:fd:d2:26:5a:16:0c:82:c1:11:02:e9:55:ce:7b:
f0:c2:d8:2d:33:28:9b:8f:86:70:3c:bc:2b:72:33:cc:2b:50:
e1:ac:b4:56:04:c5:30:37:59:0c:fb:41:1e:1f:85:d4:6d:26:
bc:3e:98:d5:9c:c8:2f:5c:83:48:68:da:a3:2c:b9:15:c5:08:
b4:ac:25:d2:ae:a3:ae:2b:2d:a7:ee:f1:b7:e5:2b:63:12:56:
b1:96:55:cb:e6:e7:0c:fd:b6:98:65:e8:6b:74:c6:17:79:a7:
7b:dc:de:23:4f:02:e2:4a:8d:96:16:76:77:4d:38:fc:eb:2d:
c1:20:d4:87:69:a7:c7:1b:42:d9:24:44:41:06:d2:95:ee:c3:
67:c8:0b:4d:ed:75:1c:9f:b6:70:72:0d:6c:07:e4:43:e7:1f:
08:c4:40:f9:32:7f:14:89:ac:7c:9c:9f:a1:13:17:3c:92:5e:
2b:36:cb:5b:4a:d4:16:5f:ef:d6:d1:db:c7:73:69:22:6d:f6:
15:b4:3f:77:8f:d2:02:cc:0a:ca:f5:ca:5c:a5:cb:0c:3e:ae:
f4:f5:fc:c6:42:a1:e8:44:b4:45:3a:12:0d:92:9f:8d:26:e5:
35:1c:34:28:38:ef:b9:a0:85:86:31:aa:fc:1d:91:ec:5b:e1:
dd:34:c0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:31 2025 by rpki-client