Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/cf2f87-8197-4600-a3ab-576ce4101483/1/SenbltCmp5JFvIa0c4xSUw_wJiA.roa
File: SenbltCmp5JFvIa0c4xSUw_wJiA.roa (raw, json)
Hash identifier: MZUiTeV4B880xMooQ0Q/wMkbZ90f3/HFk/Pnol6dwpk=
Subject key identifier: 49:E9:DB:96:D0:A6:A7:92:45:BC:86:B4:73:8C:52:53:0F:F0:26:20
Certificate issuer: /CN=95ed1b93d3bce6b6afcde9020b80167b85c68f5b
Certificate serial: 844E7E
Authority key identifier: 95:ED:1B:93:D3:BC:E6:B6:AF:CD:E9:02:0B:80:16:7B:85:C6:8F:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/le0bk9O85ravzekCC4AWe4XGj1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/cf2f87-8197-4600-a3ab-576ce4101483/1/SenbltCmp5JFvIa0c4xSUw_wJiA.roa
Signing time: Sat 01 Jan 2022 03:57:52 +0000
ROA not before: Sat 01 Jan 2022 03:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41634
IP address blocks: 193.239.232.0/24 maxlen: 24
195.96.151.0/24 maxlen: 24
2001:678:b30::/48 maxlen: 48
2a12:1e01::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8670846 (0x844e7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ed1b93d3bce6b6afcde9020b80167b85c68f5b
Validity
Not Before: Jan 1 03:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49e9db96d0a6a79245bc86b4738c52530ff02620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:42:32:ce:b5:1e:44:8a:f0:3d:e5:e3:3a:f3:
75:20:14:4a:38:61:a7:f2:d9:b4:3f:51:bd:c4:f5:
cf:f7:f5:b2:e4:9f:09:cf:05:e9:00:ec:d3:de:ca:
59:07:47:14:b6:bf:ef:ef:47:ce:72:31:dd:3a:cc:
c2:38:1b:e4:f6:0c:bb:f7:1d:2e:cb:8c:a9:b5:b1:
09:80:81:31:45:44:83:25:cf:5a:8b:af:4a:11:11:
8b:ee:2d:bc:7d:97:f9:ed:b8:1b:32:0b:01:b4:dc:
24:c9:45:54:3f:86:d7:4f:08:5d:74:ae:63:ea:fd:
b7:43:85:40:7c:d1:bc:02:d5:82:6c:17:da:22:3a:
63:9a:6b:89:9b:33:80:c5:9e:b7:e1:64:3b:0e:6a:
b9:61:69:9f:f4:56:7b:c1:02:99:28:dc:75:bf:e2:
60:db:45:66:5d:90:22:bc:81:f0:14:92:fa:f8:a9:
70:26:0d:23:cb:82:be:cb:a8:8d:29:d0:ef:c6:bc:
eb:cf:e9:4c:59:5e:25:f9:36:7d:55:42:08:e1:41:
1c:28:2d:3e:81:3c:7c:bb:0d:16:6d:e5:d7:4b:3a:
73:34:a6:72:ba:88:9c:c6:31:5e:05:48:c7:84:63:
45:83:17:01:19:14:44:4a:d1:ca:af:ca:91:56:ef:
7a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E9:DB:96:D0:A6:A7:92:45:BC:86:B4:73:8C:52:53:0F:F0:26:20
X509v3 Authority Key Identifier:
keyid:95:ED:1B:93:D3:BC:E6:B6:AF:CD:E9:02:0B:80:16:7B:85:C6:8F:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/le0bk9O85ravzekCC4AWe4XGj1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/cf2f87-8197-4600-a3ab-576ce4101483/1/SenbltCmp5JFvIa0c4xSUw_wJiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/cf2f87-8197-4600-a3ab-576ce4101483/1/le0bk9O85ravzekCC4AWe4XGj1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.232.0/24
195.96.151.0/24
IPv6:
2001:678:b30::/48
2a12:1e01::/32
Signature Algorithm: sha256WithRSAEncryption
9d:e8:47:83:63:e4:15:81:75:1c:98:c6:cf:24:99:13:13:8d:
b1:8d:28:12:f6:97:98:a7:d2:54:e8:81:57:d4:69:40:fe:64:
60:74:3f:ec:ad:c4:9c:4b:21:44:53:57:e0:cc:23:a0:21:47:
5b:fb:33:e3:ca:b4:36:3b:63:8d:24:0d:02:26:ff:03:aa:77:
25:49:59:27:6d:36:89:44:b4:97:e0:e7:ea:89:41:e3:fd:22:
da:c6:d1:08:75:c4:e3:ca:ff:7d:75:5d:36:69:06:90:1e:72:
24:09:f2:91:cf:b4:5a:12:a6:ab:7e:c8:41:56:a8:bd:ed:57:
f1:1e:d3:1b:77:f4:12:2b:a4:0c:dd:49:2f:5c:fb:37:8d:2b:
bc:77:9b:2e:9a:c2:6c:3b:46:bb:21:04:54:8e:64:19:4e:8a:
db:aa:c1:b3:37:de:93:6c:2c:ee:7e:11:4d:bb:5d:83:7a:c7:
08:cf:29:36:64:19:9f:97:82:28:48:e7:7f:8c:c0:46:70:93:
fc:a0:d9:1f:f1:49:b1:97:1a:68:70:e7:01:e3:63:03:59:76:
17:3a:44:df:a7:6b:ee:bb:09:0c:f5:35:25:09:c2:7a:c7:35:
ac:4b:62:8e:ad:5c:aa:f5:ca:76:30:70:db:e6:19:9f:13:5d:
4f:d8:c3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:22:21 2025 by rpki-client