Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/cdRO_HIwsJOeCrfaTp5bvHot7xE.roa
File: cdRO_HIwsJOeCrfaTp5bvHot7xE.roa (raw, json)
Hash identifier: aS8gLdKeSOHQxy6Ym2S1qn/qTpAdYwi4k5+kzsD/6Sc=
Subject key identifier: 71:D4:4E:FC:72:30:B0:93:9E:0A:B7:DA:4E:9E:5B:BC:7A:2D:EF:11
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F813834
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/cdRO_HIwsJOeCrfaTp5bvHot7xE.roa
Signing time: Sat 01 Jan 2022 08:05:03 +0000
ROA not before: Sat 01 Jan 2022 08:05:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56994
IP address blocks: 195.208.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260126772 (0xf813834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71d44efc7230b0939e0ab7da4e9e5bbc7a2def11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:dd:64:fa:bb:4a:0e:10:0c:fa:35:a9:6e:b1:
9d:29:f9:68:65:22:ed:51:85:16:48:69:52:3d:36:
f0:8f:e4:54:e3:ce:45:6b:34:f9:e7:33:b3:0a:44:
c3:d8:1f:d4:f8:f2:68:83:1e:c0:6d:1a:8a:b3:df:
ea:ff:dc:e6:cf:28:59:0c:05:c2:32:3c:92:29:f2:
b9:67:42:ae:5c:76:b7:96:de:23:e7:67:50:02:82:
a2:04:a4:06:18:32:ac:c4:c2:2e:87:a4:0f:57:c2:
30:d5:44:25:f2:80:16:00:93:b2:1f:1d:d8:30:75:
6c:c2:92:6c:7f:80:ba:cd:a3:ae:e2:00:90:89:e5:
80:1b:06:99:f6:4c:10:53:94:55:80:1e:97:0b:39:
ef:18:73:2c:d6:be:87:eb:45:a7:25:09:14:8e:92:
d0:df:90:27:62:a1:76:65:b0:b2:c4:cc:98:ff:5e:
46:bc:cb:d3:48:21:a1:bd:8a:7e:da:4f:21:d5:6b:
c1:5e:1f:3b:88:95:1f:27:3f:02:27:3f:83:de:06:
e1:22:78:3f:ae:0a:c7:7e:be:cb:5b:68:c4:24:76:
a5:b9:f8:14:74:c3:26:0a:0b:41:19:02:b0:ec:56:
e0:08:8c:f3:8d:6f:93:5c:d1:a2:cb:9d:9d:a1:43:
e8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D4:4E:FC:72:30:B0:93:9E:0A:B7:DA:4E:9E:5B:BC:7A:2D:EF:11
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/cdRO_HIwsJOeCrfaTp5bvHot7xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.184.0/22
Signature Algorithm: sha256WithRSAEncryption
45:34:ea:c8:50:0f:cb:da:83:ff:c1:4a:bb:8b:0e:b5:6f:d9:
15:6b:a0:68:95:17:af:a9:60:e0:54:4d:48:70:b2:25:b0:19:
95:1a:5e:96:dd:7f:0c:95:dd:c6:97:38:58:d2:ce:b3:2b:68:
c5:4b:da:02:80:60:0e:6c:51:bd:31:26:0d:de:e6:3b:43:19:
ce:46:86:2e:e4:bf:82:ef:58:59:0f:c4:2a:63:6f:63:21:43:
2c:80:52:43:81:37:38:0b:48:d7:2d:ff:9d:17:d7:bb:c2:e8:
91:8f:47:dd:fd:3d:e2:28:b8:3e:4a:49:af:a4:98:9e:9b:ce:
d3:72:c0:7f:38:db:31:1f:aa:e7:66:43:32:da:a0:5d:af:d5:
76:fb:17:64:48:cf:74:17:e8:98:06:f6:71:09:be:c8:d2:9c:
2b:69:29:8b:5e:f7:78:c1:c5:0d:e1:8e:d6:a6:8c:ab:e2:20:
53:4b:09:9f:e0:b1:99:b8:44:1e:a8:25:3b:6b:6c:87:80:c8:
96:f5:25:ce:ca:3f:af:26:e1:99:ff:54:96:41:4a:8f:b7:ce:
23:3c:08:6c:af:4d:b6:c8:03:d8:c1:4a:de:4e:71:59:e6:68:
d8:99:9c:bb:98:d4:f4:32:5d:1d:5b:b7:87:a9:b6:b6:ee:5e:
64:d5:39:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org