Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rYpzoX3ThP-jpdtd90PnDCwwCqE.roa
File: rYpzoX3ThP-jpdtd90PnDCwwCqE.roa (raw, json)
Hash identifier: P2vnRiBoPmrFuHTW2Hc5rkt5b1jbNbc2b6UJcPbwpos=
Subject key identifier: AD:8A:73:A1:7D:D3:84:FF:A3:A5:DB:5D:F7:43:E7:0C:2C:30:0A:A1
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0700EC72
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rYpzoX3ThP-jpdtd90PnDCwwCqE.roa
Signing time: Sat 01 Jan 2022 03:54:10 +0000
ROA not before: Sat 01 Jan 2022 03:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52182
IP address blocks: 195.177.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117501042 (0x700ec72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad8a73a17dd384ffa3a5db5df743e70c2c300aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:a3:d8:25:b4:8b:a8:48:8e:b0:be:1f:ad:
d4:8d:cf:46:e1:55:04:03:af:63:69:10:0b:2c:5c:
2d:95:32:5b:b2:dc:e4:8b:f3:db:91:b8:30:52:8a:
25:f4:bb:3b:11:05:e3:76:b2:9f:39:46:87:7b:58:
25:0b:77:69:75:7a:73:6e:ae:e6:91:cd:83:79:bf:
ca:2c:81:ad:77:ee:83:c0:92:20:d8:7d:ba:ec:06:
06:8a:f2:4a:6e:48:76:47:3c:b3:c0:39:6d:f5:33:
c1:51:48:6b:4f:47:e5:d2:13:f3:bb:a3:9e:74:5c:
fc:43:13:a3:e4:e0:ce:1f:67:48:36:2e:b6:7a:67:
39:f6:d1:39:73:05:89:39:00:a7:2d:19:0b:6a:b2:
40:7c:20:94:2a:02:1a:37:50:02:bb:18:63:56:8a:
56:5a:cf:e1:ae:1f:78:66:aa:33:97:d8:06:54:f3:
5d:d3:9a:0e:3d:ea:15:6c:35:fc:e4:70:a0:e0:cb:
c4:eb:f8:44:0f:69:15:5a:5d:a1:8b:79:a3:cb:fe:
e0:16:c8:47:4e:ba:0e:ab:a5:74:b9:f8:69:77:3e:
2f:a1:40:67:c4:29:16:81:ea:b1:6c:16:2a:a2:9e:
22:1e:af:3a:3d:ba:53:68:4f:0c:da:d0:cc:75:44:
95:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8A:73:A1:7D:D3:84:FF:A3:A5:DB:5D:F7:43:E7:0C:2C:30:0A:A1
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rYpzoX3ThP-jpdtd90PnDCwwCqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.94.0/24
Signature Algorithm: sha256WithRSAEncryption
56:51:47:d6:56:fe:8a:fe:7f:e1:9a:c9:f2:4c:d4:4c:df:fd:
93:4d:6d:2b:b6:00:78:e4:08:0e:cb:a9:d9:79:7a:2d:ee:a0:
c1:b3:cc:61:c0:91:20:0f:90:de:17:02:86:4f:f2:e7:5b:27:
96:2c:7e:15:ce:65:88:9e:3b:29:30:c0:6a:91:8b:99:3a:89:
ad:79:78:43:4e:f3:e5:85:d7:06:a9:a4:02:7c:aa:f3:fc:15:
74:7b:cc:39:d2:4e:26:20:b1:82:ff:4f:9a:e3:aa:79:90:5e:
eb:40:72:51:c9:64:d0:f4:3a:a6:0d:46:4e:4a:39:e7:31:0a:
28:76:63:4e:37:e7:10:72:db:07:d4:f8:c1:fe:6f:8f:5a:4b:
c7:01:e8:b7:ea:2c:c8:ee:d8:ed:0b:d3:c2:66:52:ad:dd:5b:
be:69:c1:99:64:71:a6:c5:dc:b1:db:21:59:c1:81:0d:cc:b3:
38:b2:42:e0:8a:13:4f:42:a6:ad:85:92:e9:9b:1c:97:a6:fa:
d6:8a:a6:17:46:b6:b0:96:81:e6:77:12:3b:6d:31:4c:09:90:
4b:e4:8f:d2:5b:91:3c:5b:54:0d:92:10:6f:6e:9f:54:3d:de:
c4:11:14:5a:83:b8:06:35:6c:15:e8:c4:29:47:f6:f7:87:4e:
f7:aa:2f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org