Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/a3e4z1yxWn8ERi6kiRLgn8KeJEg.roa
File: a3e4z1yxWn8ERi6kiRLgn8KeJEg.roa (raw, json)
Hash identifier: wEDdIV26o94PrngGe3+Ep8M2fyh4Cj0r76pbnLxOLk0=
Subject key identifier: 6B:77:B8:CF:5C:B1:5A:7F:04:46:2E:A4:89:12:E0:9F:C2:9E:24:48
Certificate issuer: /CN=9a7b9a8cd819f4a920334d7e72ec2340870d7749
Certificate serial: 018842EBBADA889F6123DA6A85980D4343D6
Authority key identifier: 9A:7B:9A:8C:D8:19:F4:A9:20:33:4D:7E:72:EC:23:40:87:0D:77:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnuajNgZ9KkgM01-cuwjQIcNd0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/a3e4z1yxWn8ERi6kiRLgn8KeJEg.roa
Signing time: Mon 22 May 2023 10:05:25 +0000
ROA not before: Mon 22 May 2023 10:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57306
IP address blocks: 195.114.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:eb:ba:da:88:9f:61:23:da:6a:85:98:0d:43:43:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7b9a8cd819f4a920334d7e72ec2340870d7749
Validity
Not Before: May 22 10:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b77b8cf5cb15a7f04462ea48912e09fc29e2448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:86:b1:39:4a:92:06:f6:bf:43:c0:9e:f6:8c:
4d:d8:42:81:b5:8c:5b:8e:68:57:ce:24:67:f4:f4:
28:19:f2:8c:47:a1:23:b4:73:bd:92:15:c7:e1:77:
b6:ad:24:06:3a:e6:db:fe:81:81:6f:c1:ee:3b:af:
92:7c:b6:fb:25:13:64:b8:b7:e5:85:b3:df:84:7f:
be:96:af:bd:5b:1d:c8:42:b1:b0:17:f7:d3:de:01:
25:db:8c:6b:b7:65:c7:6d:32:c3:7b:08:e1:a9:29:
33:04:ac:6b:a0:17:1a:aa:4c:55:04:01:82:7d:b4:
29:d3:a2:0a:56:4e:05:8b:00:8c:10:a8:d4:d6:10:
08:69:0a:63:2c:78:e1:04:25:e9:d1:c4:b1:45:af:
55:6c:2e:d8:0e:55:e6:fe:31:bd:eb:5d:c1:85:48:
30:7c:83:48:d6:c4:f8:8f:ef:f9:74:b0:b5:97:c1:
1c:5a:62:74:da:52:97:6d:58:66:16:a2:01:83:34:
b3:51:69:7f:75:3c:45:d3:13:da:45:62:c6:2b:f8:
8a:10:e1:95:51:bf:af:37:cf:8c:09:b0:57:ca:e6:
6f:9e:b3:fd:5b:2f:65:03:29:6c:a1:6e:7d:92:c8:
aa:89:32:83:ce:c6:8a:f6:c1:9e:de:d1:14:3a:61:
4f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:77:B8:CF:5C:B1:5A:7F:04:46:2E:A4:89:12:E0:9F:C2:9E:24:48
X509v3 Authority Key Identifier:
keyid:9A:7B:9A:8C:D8:19:F4:A9:20:33:4D:7E:72:EC:23:40:87:0D:77:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnuajNgZ9KkgM01-cuwjQIcNd0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/a3e4z1yxWn8ERi6kiRLgn8KeJEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/mnuajNgZ9KkgM01-cuwjQIcNd0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.104.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:23:16:e2:9c:3b:25:81:cb:e7:1d:7e:ab:60:4e:eb:4c:af:
7a:1f:53:1d:5c:cc:9d:3f:26:03:94:d7:16:f5:2c:e3:93:5a:
7d:2c:99:d9:a8:57:2b:34:5e:f5:87:9f:98:af:69:8c:73:b4:
e3:2b:a9:49:f0:f2:5a:9b:21:07:e9:7d:55:d6:14:4f:92:26:
8a:93:28:02:7c:56:8a:6f:23:7d:c6:78:43:76:5b:4c:80:cc:
4a:cf:83:ed:f8:f7:ee:ff:c8:d8:2e:06:76:26:75:43:c3:cf:
27:a8:01:d2:21:82:97:79:b6:8b:da:ac:3c:18:21:f3:b9:07:
56:83:b8:f0:11:27:68:b1:90:7f:ab:e4:6d:a1:69:87:21:54:
46:89:a2:4c:83:2b:2f:1d:99:6d:0e:f4:8d:ac:41:78:2f:36:
5d:07:f7:b0:ab:68:a9:4b:47:86:20:cf:f5:3c:88:db:6f:35:
f3:36:e1:48:a2:a8:1c:e7:3e:2d:a7:49:b4:25:d8:2b:b5:c2:
13:5d:a2:b5:7d:22:65:b3:f4:25:53:bb:ed:b4:6f:c2:06:3c:
c2:2e:f8:eb:a0:12:2d:c5:51:ab:ce:e4:4f:7a:c6:39:31:1d:
07:ee:c9:51:e0:25:ce:1b:06:93:08:19:c3:a5:2a:88:ed:08:
db:fd:5a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:59:39 2025 by rpki-client