Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/d2xrD03tdp040DWmsQY9psrf61k.roa
File: d2xrD03tdp040DWmsQY9psrf61k.roa (raw, json)
Hash identifier: pVhh1p1yRtA6/HiWw3A9dZmEvlN+Hvt1FPReYsT2G8c=
Subject key identifier: 77:6C:6B:0F:4D:ED:76:9D:38:D0:35:A6:B1:06:3D:A6:CA:DF:EB:59
Certificate issuer: /CN=6465ecd615f3a6c5639c51e9e3197673152078b8
Certificate serial: 035EFD8D
Authority key identifier: 64:65:EC:D6:15:F3:A6:C5:63:9C:51:E9:E3:19:76:73:15:20:78:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/d2xrD03tdp040DWmsQY9psrf61k.roa
Signing time: Sat 01 Jan 2022 15:58:06 +0000
ROA not before: Sat 01 Jan 2022 15:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24772
IP address blocks: 195.182.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56556941 (0x35efd8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6465ecd615f3a6c5639c51e9e3197673152078b8
Validity
Not Before: Jan 1 15:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=776c6b0f4ded769d38d035a6b1063da6cadfeb59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:56:54:09:14:b9:54:20:61:10:b5:e9:46:78:
8c:ee:fc:50:d6:3b:46:8c:15:e3:fd:c1:8d:93:17:
c8:6b:b7:d7:4f:07:4b:88:49:78:c9:4e:87:3e:49:
cb:75:c7:76:16:c3:8a:f6:89:8c:61:cf:17:da:8f:
5d:8f:70:41:06:60:25:1e:14:81:f8:7d:0a:08:c7:
d2:54:26:bc:ec:ad:7a:3e:3b:4d:53:0a:6e:f0:d3:
c5:b7:83:e1:b3:12:e1:84:48:76:a4:82:0b:59:68:
a6:9a:da:27:45:e9:ef:7f:0c:bb:a3:85:d3:29:87:
d9:5f:91:2a:49:7b:f0:d9:72:26:50:ee:e8:95:7a:
b6:e7:ba:46:68:b7:b1:d8:5a:03:58:88:56:91:ff:
bb:3a:cc:48:ee:26:f4:87:c6:fd:e2:cb:38:79:96:
9f:28:94:04:c7:84:75:1c:26:da:16:20:71:63:55:
3b:16:04:a5:e5:71:7a:77:33:d8:4c:27:9d:f6:d2:
88:a6:17:7a:df:8d:78:98:6d:56:87:c4:fb:b0:ae:
ef:73:5a:73:33:0a:03:f7:58:d1:59:6c:7e:70:69:
e6:76:92:ff:e2:c0:89:88:cd:40:fd:a7:93:3e:02:
96:5c:22:44:5a:4f:a9:00:22:d2:8b:3d:8f:24:a2:
85:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6C:6B:0F:4D:ED:76:9D:38:D0:35:A6:B1:06:3D:A6:CA:DF:EB:59
X509v3 Authority Key Identifier:
keyid:64:65:EC:D6:15:F3:A6:C5:63:9C:51:E9:E3:19:76:73:15:20:78:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/d2xrD03tdp040DWmsQY9psrf61k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/960404-b664-40cc-9cac-54c7c4ee5bb5/1/ZGXs1hXzpsVjnFHp4xl2cxUgeLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.30.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:94:8d:c6:c8:ef:55:dc:80:34:a8:d5:a4:75:93:4d:1a:77:
97:23:bc:c7:47:c8:10:9d:8c:39:1b:02:16:4b:58:bb:bb:bc:
24:c7:a1:f5:8b:d7:7c:5d:52:c4:1e:e7:c0:ca:e1:4c:88:53:
a8:35:8c:0d:f3:d6:3e:a5:e0:ac:38:73:9e:11:7c:e8:46:5a:
83:ad:25:da:bb:fb:9f:5f:80:d8:a4:b7:d7:4d:38:1e:93:d5:
40:1f:2c:82:ec:dc:b2:53:24:3e:68:e9:37:9b:79:8a:82:ed:
57:54:26:a3:20:bd:ce:b4:bb:e6:99:85:44:94:ed:29:31:88:
d9:5b:30:90:aa:8f:12:3b:c9:a0:f3:30:61:e8:49:7c:90:c9:
31:84:0f:16:dc:30:ce:5f:b7:00:8a:06:12:1a:39:35:88:4e:
53:e5:21:df:ac:c0:4e:58:d6:01:95:d8:fb:1a:c1:85:4f:a8:
ad:a3:63:b4:39:5a:69:2d:ec:dd:3e:4c:a1:1b:e3:b3:ff:34:
aa:de:36:19:b2:14:a9:39:b1:09:41:b0:a5:57:32:7f:e8:33:
4c:48:49:b9:c9:6e:77:d7:8a:ed:ce:87:97:58:0b:3b:c4:e2:
d1:17:e1:73:63:ea:35:92:ea:0c:15:4d:67:ff:bf:81:87:2b:
8a:a5:82:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org