Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/h-bvsWoSUTIsy3yPw_VYZ_koNJI.roa
File: h-bvsWoSUTIsy3yPw_VYZ_koNJI.roa (raw, json)
Hash identifier: 6QTy6G3rmtpSXZoN4vcSS5dFqajksKgv/IRl935iC6o=
Subject key identifier: 87:E6:EF:B1:6A:12:51:32:2C:CB:7C:8F:C3:F5:58:67:F9:28:34:92
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 01BAA1A0
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/h-bvsWoSUTIsy3yPw_VYZ_koNJI.roa
Signing time: Sat 01 Jan 2022 09:55:04 +0000
ROA not before: Sat 01 Jan 2022 09:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 194.5.0.0/22 maxlen: 22
141.98.240.0/24 maxlen: 24
141.98.241.0/24 maxlen: 24
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29008288 (0x1baa1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 1 09:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87e6efb16a1251322ccb7c8fc3f55867f9283492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:23:bb:e8:ee:55:42:d7:6e:16:98:be:bf:
21:3c:f0:0c:f9:9d:4c:ee:40:fc:91:a9:65:a6:cd:
da:0b:15:ab:d6:0a:26:6e:72:45:60:e5:a1:66:b0:
3c:67:80:27:f0:f6:d2:15:0d:32:c1:c7:ba:21:64:
d3:3c:42:9a:ed:05:7e:61:43:6f:bc:71:5e:c7:8e:
09:64:1b:f6:74:05:03:14:37:ca:88:a6:19:58:ce:
62:20:f6:a9:05:97:d4:b6:44:52:49:9f:ba:54:8d:
37:1f:bf:4f:7d:77:3a:88:21:f8:9b:24:bf:71:81:
a1:98:4a:65:eb:95:70:cd:94:33:87:ca:4d:7a:a2:
15:6c:54:81:5f:21:cb:79:de:6a:60:2f:e3:ae:89:
45:b1:ee:51:73:07:ca:27:02:a8:28:b6:c4:42:bd:
14:91:0c:9c:59:f6:09:91:6a:fd:84:24:24:a8:5e:
bb:58:31:65:99:5e:6d:8f:b0:9d:65:bc:72:60:35:
d5:c5:f5:f8:6f:2b:b6:ac:d6:37:0b:05:ad:1b:5b:
5c:98:98:48:63:44:d5:c5:1d:9b:b0:47:98:2f:d2:
76:2d:be:6a:87:4f:4b:0e:9c:20:54:7a:53:e6:02:
26:a0:55:39:a2:e0:94:27:5d:e5:6b:fa:5f:4c:8a:
63:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E6:EF:B1:6A:12:51:32:2C:CB:7C:8F:C3:F5:58:67:F9:28:34:92
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/h-bvsWoSUTIsy3yPw_VYZ_koNJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.240.0/23
193.31.72.0/23
194.5.0.0/22
Signature Algorithm: sha256WithRSAEncryption
55:a3:0f:18:41:06:49:e6:20:d0:a5:88:6b:d4:8f:03:c7:ac:
bb:ab:3a:c5:f8:5b:39:8a:03:6f:a0:c3:26:4b:25:e7:8c:c2:
65:51:fd:2c:e9:e8:e9:f9:03:9b:be:ff:ae:31:38:98:05:c1:
70:61:94:61:e6:ea:f0:e0:0b:0a:b8:a5:68:bb:c1:e5:17:de:
c2:c4:dc:04:dc:67:1c:13:c3:f4:f8:4b:6c:e2:ec:4e:a1:20:
cb:23:d3:74:e9:86:8f:36:95:a6:4d:cc:14:cd:a3:f6:06:d1:
3c:dc:e2:5e:c1:1b:df:bf:53:f8:51:a5:27:08:43:93:19:be:
d2:83:a8:0a:36:27:59:38:ff:0d:46:dc:83:16:0f:33:0c:0e:
da:d4:53:94:8f:3e:3e:c7:83:dd:ce:2c:ab:55:ab:7d:79:0a:
11:95:4a:f4:9d:56:5d:87:2f:93:11:a4:45:74:4b:91:82:63:
57:88:fb:d3:db:ba:9e:ca:25:db:e4:91:28:d0:58:a3:48:30:
b2:69:ce:24:af:8e:4e:fa:44:fe:c6:bb:70:40:1f:cb:b5:3f:
c6:54:25:ad:01:cd:ef:1a:4f:fb:00:6e:f2:61:c4:fe:c6:71:
f7:62:43:e4:ea:35:ba:28:03:4c:c7:d9:70:20:ef:a5:f5:84:
3e:44:eb:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:06 2023 by rpki-client on console-ams.rpki-client.org