Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/8a115b-3859-4759-85ae-fb853c65334a/1/3MO1s9WJ4cNXBrfwg5_CXdWmZN4.roa
File: 3MO1s9WJ4cNXBrfwg5_CXdWmZN4.roa (raw, json)
Hash identifier: zegSZY+lzi4eKm20C3af5u3bp8U7VyM9K7vdLbHOQhU=
Subject key identifier: DC:C3:B5:B3:D5:89:E1:C3:57:06:B7:F0:83:9F:C2:5D:D5:A6:64:DE
Certificate issuer: /CN=861c67bdb6d8c230fcdb427a9f71b80135872fc2
Certificate serial: 01832267FDFF2FCCA078896E927BE6A44A09
Authority key identifier: 86:1C:67:BD:B6:D8:C2:30:FC:DB:42:7A:9F:71:B8:01:35:87:2F:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhxnvbbYwjD820J6n3G4ATWHL8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/8a115b-3859-4759-85ae-fb853c65334a/1/3MO1s9WJ4cNXBrfwg5_CXdWmZN4.roa
Signing time: Fri 09 Sep 2022 13:19:44 +0000
ROA not before: Fri 09 Sep 2022 13:19:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 195.140.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:67:fd:ff:2f:cc:a0:78:89:6e:92:7b:e6:a4:4a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=861c67bdb6d8c230fcdb427a9f71b80135872fc2
Validity
Not Before: Sep 9 13:19:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc3b5b3d589e1c35706b7f0839fc25dd5a664de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:63:90:7d:33:37:8a:85:f4:94:ba:bb:ef:
7c:fa:f8:02:20:69:f4:84:98:b7:43:4c:25:16:00:
83:c6:c8:fc:8d:c9:d1:52:79:78:54:bd:49:dc:49:
9b:94:99:7f:a1:5a:2b:0b:92:80:82:56:cd:50:8f:
98:a5:70:4d:66:eb:b0:0a:c8:58:0e:7d:f1:d5:59:
50:29:36:dd:62:80:c7:dd:b1:e4:3b:e7:1b:27:e6:
bd:8e:92:d5:c9:5c:7b:2e:0f:e0:7a:40:fb:15:89:
ee:85:25:76:cd:fd:3a:b9:1b:0a:b4:73:4c:6c:aa:
99:d9:0d:49:89:84:23:b2:d1:ee:68:3c:fe:33:7c:
29:0d:fa:0c:2d:5d:30:46:ef:8a:89:33:69:86:88:
14:c4:df:f5:1a:92:22:ca:48:d2:f0:6c:eb:9b:ca:
e8:78:fc:25:32:96:90:5c:04:a5:d3:a3:73:38:9c:
16:f6:15:88:98:a4:48:3d:96:dc:48:9b:10:64:1d:
8c:83:cf:d4:7f:72:e8:c3:69:ec:36:ce:ab:13:8c:
54:2d:d9:7c:df:af:53:6a:6f:1f:7d:13:2f:fd:f5:
90:5e:fa:b7:0e:66:60:b6:bb:b5:83:45:22:7b:18:
d7:c5:c6:f9:e7:35:bf:0a:22:bc:3a:b0:4f:92:bc:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C3:B5:B3:D5:89:E1:C3:57:06:B7:F0:83:9F:C2:5D:D5:A6:64:DE
X509v3 Authority Key Identifier:
keyid:86:1C:67:BD:B6:D8:C2:30:FC:DB:42:7A:9F:71:B8:01:35:87:2F:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhxnvbbYwjD820J6n3G4ATWHL8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/8a115b-3859-4759-85ae-fb853c65334a/1/3MO1s9WJ4cNXBrfwg5_CXdWmZN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/8a115b-3859-4759-85ae-fb853c65334a/1/hhxnvbbYwjD820J6n3G4ATWHL8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.140.240.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:51:83:13:e9:5f:a5:d0:d3:80:a5:75:a6:6a:71:be:a0:56:
5d:19:e5:87:77:45:75:02:9f:e7:08:a8:96:c7:fb:12:3f:3d:
47:4a:4a:a0:47:d3:2e:f3:8f:e5:19:12:20:d3:5a:2d:5f:a5:
8d:cf:10:db:95:75:3e:b2:80:8b:99:79:6c:68:2b:1c:2d:86:
b3:5b:ef:c6:78:9c:74:f7:b4:34:f6:1c:76:bc:4b:c4:d4:93:
0a:78:c2:f5:6e:ea:00:6c:c7:c3:3f:a1:15:d2:20:c4:b9:6b:
83:c8:36:8b:9b:f9:2a:bd:17:5f:45:91:8e:dc:32:7a:de:98:
96:70:c5:9f:09:55:bb:7f:3b:7a:5c:ee:b7:1f:c7:8b:da:a6:
03:b2:9c:e0:fd:68:0c:fd:89:4a:0f:93:96:aa:7b:cf:5c:09:
5d:39:bd:db:50:63:c9:c4:05:53:d3:b0:a1:0a:6a:6f:db:8b:
fc:ca:4d:c4:1f:19:63:f7:a7:f7:70:3c:f6:19:13:a4:48:9b:
68:de:38:0a:8f:85:a0:78:fc:78:c4:15:23:71:ae:6b:d0:db:
d2:a9:21:aa:27:c5:40:98:1e:01:e1:71:8d:ad:7e:30:88:f9:
32:ba:c0:c0:25:e6:1b:04:09:bc:f0:91:58:47:5a:17:6e:e0:
b8:3e:38:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:42 2024 by rpki-client on console-ams.rpki-client.org