Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/cDdjMk8LZ5bOutpiIqFRri5wDtY.roa
File: cDdjMk8LZ5bOutpiIqFRri5wDtY.roa (raw, json)
Hash identifier: QUcM5CIzDANPDrLK0q0Gx1+aUmx9SE6YW0NLKj+5YZc=
Subject key identifier: 70:37:63:32:4F:0B:67:96:CE:BA:DA:62:22:A1:51:AE:2E:70:0E:D6
Certificate issuer: /CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Certificate serial: C0153C
Authority key identifier: 73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/cDdjMk8LZ5bOutpiIqFRri5wDtY.roa
Signing time: Sat 01 Jan 2022 13:00:45 +0000
ROA not before: Sat 01 Jan 2022 13:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29121
IP address blocks: 195.69.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12588348 (0xc0153c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Validity
Not Before: Jan 1 13:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=703763324f0b6796cebada6222a151ae2e700ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2b:51:00:71:84:72:c6:18:98:f6:e9:79:cc:
ef:4a:ee:3d:52:b9:da:f7:74:6e:d6:e6:89:50:af:
58:50:a8:18:07:58:e9:89:92:b4:53:99:94:35:18:
f0:2a:f2:4a:75:4c:17:c2:a8:39:41:39:bb:05:94:
0b:65:58:55:3f:72:11:7f:9b:6b:97:3d:9c:68:6a:
31:86:91:ca:b9:1a:fc:ac:fe:cb:6f:8b:48:38:8e:
2e:53:0c:79:8b:6e:04:91:14:93:cc:33:c2:46:ba:
96:9c:05:40:a0:54:6a:c4:d8:71:de:bf:32:84:ed:
32:c6:d3:77:2e:fd:bc:77:4b:ae:da:27:db:37:3d:
6d:3d:92:0c:35:0a:bb:06:90:35:98:aa:1d:90:f0:
71:ee:99:8d:ad:42:2d:46:e5:55:83:27:35:ee:22:
88:f7:6f:b1:2c:75:8c:45:23:94:1a:17:d7:de:0b:
01:23:7e:8c:1c:f8:ca:45:1f:09:61:de:9e:5f:4a:
13:f2:86:49:ce:58:83:98:b0:19:02:60:3b:48:87:
04:69:46:39:04:85:b1:86:85:c2:30:5f:ae:76:f6:
44:16:4b:64:b2:cc:e8:91:5c:93:29:8e:34:82:ac:
28:1c:f5:7a:c6:93:c3:fd:73:6b:32:ad:fe:73:3b:
3c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:37:63:32:4F:0B:67:96:CE:BA:DA:62:22:A1:51:AE:2E:70:0E:D6
X509v3 Authority Key Identifier:
keyid:73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/cDdjMk8LZ5bOutpiIqFRri5wDtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/c_umgtacHRBwjte2rqojLuibkB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.96.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:e6:04:de:f8:92:ef:42:61:d3:69:0f:0e:2f:b8:93:46:5e:
b9:49:c5:d7:fe:db:31:22:10:9e:6d:ad:e7:52:70:af:13:40:
bc:c8:f5:80:58:02:d9:81:b5:a8:08:8f:ef:94:d6:47:30:9a:
16:07:4d:8c:35:a9:a4:75:e4:5c:78:73:fd:53:4d:ff:f6:ce:
cf:55:32:e8:88:85:ab:e7:78:f9:4a:95:cb:38:0c:20:2c:2c:
c1:ac:58:46:f7:85:7c:54:bd:52:45:79:08:2d:50:1d:e1:da:
90:9a:5a:b3:20:bf:e1:07:3e:e5:94:b0:2c:b8:3d:d9:bf:df:
b7:95:3f:2f:2b:d3:06:5e:1a:a9:f0:bf:f2:9d:5f:98:bd:eb:
0c:1c:3d:cc:8a:34:38:59:14:4f:0f:a0:74:84:51:65:70:42:
0d:86:38:07:83:c3:49:db:f5:97:7d:6a:76:72:8c:b7:0a:99:
5d:cc:0d:94:08:a9:77:ac:04:58:85:29:6b:c8:a1:03:27:9b:
34:d0:b5:94:a3:00:20:1b:5f:de:56:6a:6d:68:f2:a8:97:37:
b3:a7:08:31:26:be:6d:46:c7:2c:44:73:6f:49:ce:da:b4:b5:
ba:4f:68:d3:55:15:52:43:79:d4:91:e8:55:46:23:d1:c6:d2:
37:79:13:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:01 2024 by rpki-client on console-ams.rpki-client.org