Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/oD3HGqUKZnA_iMIQ-DmkqViP6cQ.roa
File: oD3HGqUKZnA_iMIQ-DmkqViP6cQ.roa (raw, json)
Hash identifier: UY5ktGXivISeNmVUP3nN3g2H/3zKNaKbm0pH8hkEJIg=
Subject key identifier: A0:3D:C7:1A:A5:0A:66:70:3F:88:C2:10:F8:39:A4:A9:58:8F:E9:C4
Certificate issuer: /CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Certificate serial: 03C6BAC0
Authority key identifier: 0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/oD3HGqUKZnA_iMIQ-DmkqViP6cQ.roa
Signing time: Sat 01 Jan 2022 11:53:53 +0000
ROA not before: Sat 01 Jan 2022 11:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210162
IP address blocks: 195.7.8.0/24 maxlen: 24
195.7.9.0/24 maxlen: 24
195.7.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63355584 (0x3c6bac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Validity
Not Before: Jan 1 11:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a03dc71aa50a66703f88c210f839a4a9588fe9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:88:7e:45:f8:6b:77:e5:c5:bf:65:b0:ad:01:
69:66:f8:4c:8c:80:b8:9d:b2:7a:04:fe:59:01:3e:
cd:44:5f:32:ff:12:c4:c9:58:cb:c0:c4:81:fc:46:
b4:13:88:5d:96:06:5e:6a:f3:2e:d5:5c:99:96:6a:
3f:b2:22:59:ed:ab:9d:45:11:12:7d:30:ed:4f:6c:
be:ec:5a:88:46:f9:78:6b:c0:b5:e7:3d:73:d4:55:
dd:ed:5f:73:de:3c:b1:9f:b1:ca:17:37:29:d5:88:
70:a2:52:2e:99:96:7a:af:98:87:bd:04:9b:2c:62:
8d:f3:3c:b7:ca:4b:8e:f8:1c:12:ff:c7:20:1a:7d:
14:62:34:be:d1:cc:2e:f2:e9:15:61:5d:86:e0:55:
e7:51:aa:8e:37:1e:e5:64:9c:e1:fc:36:1a:52:0e:
1c:99:7b:dc:95:75:ec:74:cd:06:8a:1c:6a:98:9b:
7e:e7:e7:b2:18:f3:c5:0c:57:1d:fc:20:c5:c6:49:
98:4b:48:ad:01:b2:e6:64:98:db:c9:5d:b6:a9:7b:
d9:7f:fb:65:5c:02:2c:0e:10:0c:5a:ae:41:6e:c0:
6a:41:bb:50:4a:7b:ee:fc:cd:b6:de:7d:7e:4e:2e:
20:0c:ac:49:62:45:3b:74:59:ab:79:37:ba:3d:f7:
f6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3D:C7:1A:A5:0A:66:70:3F:88:C2:10:F8:39:A4:A9:58:8F:E9:C4
X509v3 Authority Key Identifier:
keyid:0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/oD3HGqUKZnA_iMIQ-DmkqViP6cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.8.0/23
195.7.11.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e3:82:3b:0f:63:b2:40:e3:a3:ef:2a:90:15:d9:1a:d9:d6:
83:6d:55:9f:e9:9f:00:d3:15:d8:b5:59:f6:cc:2b:d7:d1:a8:
59:1b:e4:39:07:ef:1f:08:ec:81:f3:84:e5:29:f5:af:99:a3:
ed:d8:d2:5c:15:fe:c5:ab:2d:dd:c0:c3:c2:79:e0:2d:c3:2f:
1c:f3:52:82:ff:00:b1:68:b3:91:28:e6:3f:d8:49:2d:24:cd:
1a:a1:94:5d:47:4f:b7:37:e0:69:37:11:ad:7d:a8:61:c3:4f:
eb:88:a3:3f:e7:16:f0:6e:f5:f8:e8:29:26:49:d9:72:78:4f:
7b:30:ca:b1:e7:71:98:86:e9:36:fb:f3:e4:48:c3:7c:68:c3:
4d:2f:37:59:d8:c9:9f:62:d9:54:c9:ee:14:2d:55:e7:5f:24:
b9:95:10:05:a6:ea:06:0e:18:39:c7:af:d8:f0:13:83:29:80:
86:c0:54:7f:05:d9:c8:ee:db:e4:64:fb:d6:0b:4c:c0:e7:a8:
74:e3:54:46:30:c6:3f:fb:03:b2:03:0d:97:0b:7e:d4:fc:a4:
5a:a1:3d:fe:50:0b:84:09:11:ae:00:e0:90:f8:fe:88:3b:4d:
5a:78:80:5c:18:e8:0f:63:79:0f:de:91:5b:b2:46:95:bb:88:
3d:19:b7:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:46 2024 by rpki-client on console-ams.rpki-client.org