Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/D2etpTNNu335I2kmwDejEisx2TY.roa
File: D2etpTNNu335I2kmwDejEisx2TY.roa (raw, json)
Hash identifier: 37XtUZaVkrpOTCoI6J2eouwKYhNmYnNG6rcd2Q9SQcQ=
Subject key identifier: 0F:67:AD:A5:33:4D:BB:7D:F9:23:69:26:C0:37:A3:12:2B:31:D9:36
Certificate issuer: /CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Certificate serial: 018355FE91BFC9CD786DB418CD549D044AB7
Authority key identifier: 3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/D2etpTNNu335I2kmwDejEisx2TY.roa
Signing time: Mon 19 Sep 2022 13:44:50 +0000
ROA not before: Mon 19 Sep 2022 13:44:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 195.211.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:55:fe:91:bf:c9:cd:78:6d:b4:18:cd:54:9d:04:4a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Validity
Not Before: Sep 19 13:44:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f67ada5334dbb7df9236926c037a3122b31d936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:bc:0e:16:90:c5:b3:a8:30:77:86:48:54:
50:98:d0:75:af:86:af:a1:ac:80:c6:32:98:fc:2e:
85:2d:f0:80:18:d9:1f:67:17:8d:3e:64:32:76:fb:
8e:e5:5c:fe:f3:d0:fa:7a:71:27:14:7d:d0:66:9c:
5d:2e:78:0d:0e:a5:b9:8b:7d:e8:7d:48:de:f0:15:
97:67:11:98:9d:75:06:ce:d3:93:df:56:4e:20:eb:
77:71:42:cb:72:2b:93:7c:c9:2d:0c:6e:a2:ba:79:
ad:6b:1a:4b:4a:b6:98:b6:af:8e:54:7b:e8:ff:a6:
3d:89:1b:c0:11:6c:c2:0f:a8:42:01:e0:42:20:84:
84:46:1e:1a:41:2c:63:8d:4e:a3:e9:eb:0a:34:79:
f3:e4:24:b8:05:ad:a6:d5:8b:e2:9d:59:a9:b0:90:
2c:cb:e1:54:48:09:c1:a6:51:7c:76:97:ba:1d:dd:
88:8b:5b:f6:b5:fc:37:55:cf:b0:f9:36:fa:f1:cd:
6a:e7:f2:43:22:43:27:de:96:f8:9b:24:d1:7c:7a:
3e:a6:ec:17:3f:c1:84:d9:66:5e:14:c8:4d:be:7d:
11:71:57:7d:08:84:7f:86:3b:e8:80:3b:6c:13:12:
a0:0b:b1:2d:79:16:ed:2d:88:a7:26:8b:5f:84:64:
43:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:67:AD:A5:33:4D:BB:7D:F9:23:69:26:C0:37:A3:12:2B:31:D9:36
X509v3 Authority Key Identifier:
keyid:3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/D2etpTNNu335I2kmwDejEisx2TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/PsLCDWs6z4SALCt8oHIt63LGcLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.167.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:84:e4:3c:5b:68:50:38:be:a4:16:97:81:91:36:a3:ed:47:
27:f8:24:13:b2:02:7e:70:26:32:65:5b:20:76:e4:3f:59:77:
f8:35:5b:35:7c:86:49:76:b2:70:16:bf:29:55:23:dd:c9:90:
83:3e:bc:0c:7e:f9:61:da:1f:ee:3d:20:7b:f5:74:6c:98:18:
b6:92:c3:e8:c6:45:2a:8b:bb:42:26:ab:b8:ee:77:f5:42:3d:
d2:6c:52:47:1e:06:11:b8:19:d5:5c:e5:be:7b:42:18:65:1f:
31:47:ff:83:b0:47:e4:4a:8f:34:96:8f:60:ef:b4:18:0e:18:
d4:94:ea:06:71:df:15:c6:6a:63:6f:60:91:55:8e:0e:d4:dc:
be:98:7f:77:af:e7:e9:f8:d0:a2:55:9b:62:98:d3:b1:c7:bd:
a1:8d:30:7c:db:ca:ac:98:f4:30:cf:2b:60:53:53:dc:19:94:
4d:8f:83:aa:c7:3f:b4:c6:51:0e:80:56:da:4e:bf:1b:0b:15:
72:a8:84:f5:f6:b6:f1:35:7b:08:dd:ed:54:76:e2:66:59:53:
31:cb:12:04:30:53:e6:0d:8b:51:35:81:dc:57:f2:45:7f:09:
ab:cf:9a:d2:16:16:c3:94:55:c2:e5:16:d3:9c:c6:66:08:0a:
aa:f2:37:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org