Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/RhZhSSFAD3QHk1s8vHtIsst18fM.roa
File: RhZhSSFAD3QHk1s8vHtIsst18fM.roa (raw, json)
Hash identifier: xavl5v+1olYrih4kc3N4tCLovmV06XvWIYEnIaozeIw=
Subject key identifier: 46:16:61:49:21:40:0F:74:07:93:5B:3C:BC:7B:48:B2:CB:75:F1:F3
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018335BE57CB3730EE92D86C11D3B476AEA8
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/RhZhSSFAD3QHk1s8vHtIsst18fM.roa
Signing time: Tue 13 Sep 2022 07:26:50 +0000
ROA not before: Tue 13 Sep 2022 07:26:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209243
IP address blocks: 195.22.157.0/24 maxlen: 24
194.146.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:be:57:cb:37:30:ee:92:d8:6c:11:d3:b4:76:ae:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Sep 13 07:26:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4616614921400f7407935b3cbc7b48b2cb75f1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e6:60:98:bd:4c:23:9a:ef:09:8c:86:34:a0:
7c:30:3c:f3:ac:72:c2:c1:de:10:d6:17:4e:0c:a4:
43:1a:d0:14:69:d4:e2:2a:b7:9e:9d:ce:0d:30:aa:
6c:7f:98:33:49:a0:ec:96:6c:a2:20:20:3a:0a:76:
d8:d4:2b:51:a1:49:87:f0:cf:df:0a:aa:c5:7c:09:
45:59:bd:31:45:cc:2b:d7:82:cc:07:78:9a:ff:b6:
a4:68:7c:28:f9:b7:32:ea:6d:70:d8:3d:ce:83:02:
4e:c5:2e:e4:e7:f6:42:9b:d0:a0:93:b0:e0:36:6c:
70:17:57:b6:d1:24:53:28:57:19:04:21:ca:0d:f4:
a0:36:2e:ec:38:f6:19:e8:6e:cf:36:a0:5c:e5:10:
13:cd:4e:04:c4:ee:c3:10:2e:04:44:d2:62:fa:0d:
df:85:46:5a:7b:4c:57:11:59:a0:45:eb:4f:70:a2:
a5:8b:85:8f:4b:cc:8c:2e:2a:23:f0:77:4d:d5:fc:
b1:55:a3:98:a3:c2:9d:b9:2a:7e:8c:ba:68:f4:8c:
08:84:ad:2c:fd:a8:5b:94:68:9e:0c:5d:6c:01:2b:
86:4c:e1:6f:0d:3b:e1:7e:76:e7:d8:68:f9:8c:76:
5a:85:ac:15:e2:23:c7:69:29:d4:76:2d:2c:de:b3:
40:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:16:61:49:21:40:0F:74:07:93:5B:3C:BC:7B:48:B2:CB:75:F1:F3
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/RhZhSSFAD3QHk1s8vHtIsst18fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.49.0/24
195.22.157.0/24
Signature Algorithm: sha256WithRSAEncryption
65:3d:54:b3:39:bd:ae:46:43:84:cf:56:72:75:6d:a9:18:b5:
26:3a:23:b7:ff:21:bb:b4:e4:54:ba:1c:1b:4b:14:40:54:0f:
3e:d8:fa:d4:d2:10:52:5b:5a:03:84:21:0d:78:0e:d5:68:5e:
3a:a8:fe:e9:5b:fd:c0:5d:93:d3:0e:7b:40:e2:e7:79:a2:25:
8a:f8:3f:8f:48:59:ab:1d:b2:ec:72:ee:67:52:a4:d3:79:c1:
39:54:68:55:88:30:e6:8e:8b:45:6b:70:f8:d3:ab:99:63:3f:
9d:bd:da:a9:5f:a0:8e:f2:d8:d5:65:1a:ac:6c:fd:3b:bc:02:
3d:5b:6e:72:79:9a:79:e5:e6:ee:72:41:1d:11:cc:e2:7b:26:
92:56:d8:bd:5f:43:44:72:19:20:39:91:f8:ff:d9:09:0a:d8:
1a:aa:9c:d0:4a:b8:ec:a8:74:f4:8f:c7:d6:51:7c:fe:7b:be:
17:de:b2:c9:d1:05:4c:56:79:79:24:73:b7:78:38:ec:98:7c:
df:6e:41:cb:0f:71:e3:21:cb:8d:23:ff:e2:0a:8e:28:68:44:
55:3f:47:75:ad:b8:0d:82:c3:54:e6:e5:50:1c:3d:84:22:89:
ef:3a:08:d7:f5:cc:01:15:66:03:83:07:6a:0d:11:7b:b7:f0:
61:53:13:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org