Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3db9a9-abef-4ed7-b392-9ae3dfe97481/1/_4tCxxBllRgg8OxpsQLQRUDZKpA.roa
File: _4tCxxBllRgg8OxpsQLQRUDZKpA.roa (raw, json)
Hash identifier: vSqdXHPGh3Z1HtYBn5LnHC8aLPme8csvcTJ8T7HfP58=
Subject key identifier: FF:8B:42:C7:10:65:95:18:20:F0:EC:69:B1:02:D0:45:40:D9:2A:90
Certificate issuer: /CN=d61eb53cb56718df0d9476cd984aac4432b90f6c
Certificate serial: 04100A
Authority key identifier: D6:1E:B5:3C:B5:67:18:DF:0D:94:76:CD:98:4A:AC:44:32:B9:0F:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1h61PLVnGN8NlHbNmEqsRDK5D2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3db9a9-abef-4ed7-b392-9ae3dfe97481/1/_4tCxxBllRgg8OxpsQLQRUDZKpA.roa
Signing time: Mon 02 May 2022 15:08:31 +0000
ROA not before: Mon 02 May 2022 15:08:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33821
IP address blocks: 195.28.176.0/24 maxlen: 24
195.28.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266250 (0x4100a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d61eb53cb56718df0d9476cd984aac4432b90f6c
Validity
Not Before: May 2 15:08:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff8b42c71065951820f0ec69b102d04540d92a90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:28:da:68:01:a4:c7:3c:3e:2d:56:88:71:
29:0c:b0:b8:3d:f2:f2:14:03:cc:7d:d0:ef:74:94:
76:89:b2:67:5e:6c:75:4f:4f:07:d6:d4:19:b4:b8:
40:59:ed:41:c1:de:ce:48:a1:7f:23:75:85:5a:60:
86:20:5a:1f:b1:05:c7:41:32:15:9d:bf:28:1f:39:
87:b2:f5:92:02:97:41:b5:00:13:b0:a5:4a:c8:d0:
c8:a2:ee:d1:2c:0b:14:32:42:e7:a1:b9:ab:c0:7d:
49:c5:c6:07:2d:4e:1a:da:15:e7:6a:63:25:82:df:
52:b5:53:63:19:b4:08:6f:fb:9d:4e:1b:47:11:f8:
6e:60:de:e0:7b:52:7e:2f:65:7d:b6:b0:13:9c:0c:
98:31:3a:8c:27:82:b2:1c:c6:3e:7e:18:55:3f:02:
18:00:25:03:85:d6:b8:15:d2:fb:12:ea:39:42:66:
46:64:06:7c:90:84:69:4a:43:0f:45:e5:31:d6:a6:
fa:33:4f:53:2d:af:6a:59:59:c6:5d:fe:20:37:39:
43:24:ea:9e:5f:f7:34:90:70:45:78:2b:51:1e:42:
52:c2:71:15:ec:2a:42:ca:d1:7c:56:4c:1b:ab:97:
b1:39:9b:ff:86:bd:29:58:bd:c4:91:f1:8d:38:98:
72:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8B:42:C7:10:65:95:18:20:F0:EC:69:B1:02:D0:45:40:D9:2A:90
X509v3 Authority Key Identifier:
keyid:D6:1E:B5:3C:B5:67:18:DF:0D:94:76:CD:98:4A:AC:44:32:B9:0F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1h61PLVnGN8NlHbNmEqsRDK5D2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3db9a9-abef-4ed7-b392-9ae3dfe97481/1/_4tCxxBllRgg8OxpsQLQRUDZKpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3db9a9-abef-4ed7-b392-9ae3dfe97481/1/1h61PLVnGN8NlHbNmEqsRDK5D2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.176.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:86:d6:80:85:e4:99:c6:2a:f0:09:aa:d7:e8:62:d0:55:68:
ef:74:85:2c:7e:1b:13:53:50:cc:02:fe:e5:be:1e:30:42:43:
22:c5:ef:12:44:b0:d6:56:24:35:1a:1d:ee:9b:dc:b9:4a:1c:
aa:39:6f:88:53:c2:82:b2:2a:9c:86:ca:a2:14:58:44:84:1c:
70:a1:6d:63:9e:ee:b6:86:a5:32:f6:6f:88:54:22:65:9b:b2:
b1:d5:83:ea:9d:b0:54:d5:a9:d5:46:b4:3f:f8:5f:d4:06:cb:
12:cb:ca:5f:e9:22:08:ff:fe:3b:10:80:dd:1f:57:8e:64:56:
a5:70:ea:bf:52:fb:94:df:b1:ef:35:8f:4c:6f:d3:95:92:fc:
f4:c2:bf:9d:69:fc:79:f4:43:3f:a8:8f:e4:81:bb:88:b6:4a:
d3:3f:38:aa:fe:b0:76:f8:34:2f:1c:f4:07:9b:28:b5:84:66:
be:40:2c:a7:85:73:05:05:c8:fa:69:25:d3:c1:a6:c5:f3:ea:
7a:fd:03:fb:8f:52:f0:3c:49:56:07:18:54:96:a0:33:84:99:
5d:85:0d:af:e2:c8:db:6d:69:49:85:64:35:d5:46:11:84:13:
58:01:3d:e4:7e:c1:e7:e9:fc:ba:4e:f3:cb:ca:2c:5f:4d:af:
e6:83:d7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-ams.rpki-client.org