Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/11cdf2-ca30-4718-ac80-f196fd0a497b/1/HZYy4oy-_t-6hr7aqwthxMA4i7w.roa
File: HZYy4oy-_t-6hr7aqwthxMA4i7w.roa (raw, json)
Hash identifier: IJ1zbLs50I0ac3bSsr64Q6IzOAeklGGznXw1cwNPIsM=
Subject key identifier: 1D:96:32:E2:8C:BE:FE:DF:BA:86:BE:DA:AB:0B:61:C4:C0:38:8B:BC
Certificate issuer: /CN=69d6048571d87eabc4bed1a7cdff83587fb89664
Certificate serial: BF76B8
Authority key identifier: 69:D6:04:85:71:D8:7E:AB:C4:BE:D1:A7:CD:FF:83:58:7F:B8:96:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/adYEhXHYfqvEvtGnzf-DWH-4lmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/11cdf2-ca30-4718-ac80-f196fd0a497b/1/HZYy4oy-_t-6hr7aqwthxMA4i7w.roa
Signing time: Sat 01 Jan 2022 12:56:32 +0000
ROA not before: Sat 01 Jan 2022 12:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41543
IP address blocks: 195.95.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12547768 (0xbf76b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69d6048571d87eabc4bed1a7cdff83587fb89664
Validity
Not Before: Jan 1 12:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d9632e28cbefedfba86bedaab0b61c4c0388bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:bd:ef:7d:23:44:5d:8c:a7:d2:74:80:5f:e8:
65:5b:03:45:45:cd:05:e3:4c:5d:92:8a:b6:d9:65:
e4:30:cb:36:69:98:a9:b9:98:85:8f:42:dd:62:5f:
8a:e0:4e:f3:27:5c:7a:6d:94:4b:21:cf:a5:7c:ce:
2b:85:ab:7c:3a:c6:b5:b6:51:1c:a8:1d:dd:24:0c:
ba:bb:43:b5:fc:a1:c3:ae:17:bd:0a:09:16:db:f2:
c5:15:47:81:d4:3c:b6:02:31:8a:be:79:e4:09:58:
fd:f1:31:ee:b7:e2:b5:d7:fa:48:34:2b:88:7b:b6:
72:fa:1a:07:09:12:50:7a:5c:c1:73:b3:75:7e:1b:
36:54:0b:d3:ba:db:95:b7:c9:a5:bb:a9:45:48:d8:
49:76:aa:c0:a9:ff:ab:0f:a8:7d:32:1c:99:9d:03:
6c:9e:c9:9e:98:36:34:cd:1f:4e:cb:2d:be:57:07:
5f:20:86:24:9c:b7:af:b4:d5:68:37:7e:7e:05:72:
e2:1a:69:d8:50:b8:14:d7:73:a8:0c:03:03:63:80:
6d:87:a1:12:37:82:be:1f:3b:e7:f6:41:8f:84:d1:
97:d5:db:b0:6f:a0:77:c7:9f:f0:6d:c3:f5:99:0d:
84:96:da:0b:c2:fc:d1:ed:43:4a:92:b2:27:f0:b7:
35:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:96:32:E2:8C:BE:FE:DF:BA:86:BE:DA:AB:0B:61:C4:C0:38:8B:BC
X509v3 Authority Key Identifier:
keyid:69:D6:04:85:71:D8:7E:AB:C4:BE:D1:A7:CD:FF:83:58:7F:B8:96:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/adYEhXHYfqvEvtGnzf-DWH-4lmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/11cdf2-ca30-4718-ac80-f196fd0a497b/1/HZYy4oy-_t-6hr7aqwthxMA4i7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/11cdf2-ca30-4718-ac80-f196fd0a497b/1/adYEhXHYfqvEvtGnzf-DWH-4lmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.158.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e2:d1:e5:4a:f8:f5:cb:b3:12:c6:db:35:7c:96:5e:d3:03:
0f:e8:b1:54:f3:44:42:de:08:3c:62:11:75:4e:62:e3:e1:e4:
5d:fd:72:a5:0c:36:e1:30:95:98:f2:34:8b:3c:6b:95:a9:39:
f2:bc:8b:1d:cf:15:c6:0a:28:5d:7a:ad:fb:2b:72:dd:3b:36:
44:1c:b4:e9:a0:51:f0:60:21:fc:78:79:b2:6b:df:83:a7:1d:
2d:e7:82:bd:fa:05:38:25:44:df:23:a6:1e:48:3a:b2:57:3f:
a0:a7:f0:51:01:6a:36:ec:ae:18:61:e9:d7:85:26:14:b5:25:
8c:ce:14:f0:f5:2d:97:b4:3e:6d:b2:59:3f:42:09:de:12:1d:
43:f4:09:79:eb:a3:f7:5e:08:2a:e7:b5:e0:eb:f2:28:76:e3:
2a:b0:0a:10:21:59:44:f9:77:eb:89:c0:c7:6d:45:3c:ec:fa:
7c:ae:83:23:03:84:96:a2:3e:68:26:ec:d5:46:de:1d:da:fa:
94:ee:05:a3:ea:b4:53:14:8b:7e:1f:4d:aa:4b:5b:4a:da:5a:
31:48:6a:60:1f:f8:53:de:82:24:19:1c:66:cd:0e:2f:8a:6b:
7d:13:ef:b7:af:fc:3b:82:9f:18:d9:c3:3f:62:a1:9f:a0:26:
1c:2a:1c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:34 2024 by rpki-client on console-fra.rpki-client.org