Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7q-7QjoyptU4ragw7MQsPZirkUk.roa
File: 7q-7QjoyptU4ragw7MQsPZirkUk.roa (raw, json)
Hash identifier: MFMhsUmW6N2yqV8HxJmNxCi40zl4p/T+L5vaB7yhh7c=
Subject key identifier: EE:AF:BB:42:3A:32:A6:D5:38:AD:A8:30:EC:C4:2C:3D:98:AB:91:49
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CED861B
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7q-7QjoyptU4ragw7MQsPZirkUk.roa
Signing time: Tue 19 Apr 2022 13:44:48 +0000
ROA not before: Tue 19 Apr 2022 13:44:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.195.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216892955 (0xced861b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 19 13:44:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeafbb423a32a6d538ada830ecc42c3d98ab9149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:de:3f:d0:86:a3:39:55:0c:fa:da:1c:cf:d6:
39:da:78:ac:dc:a1:ba:a4:7b:82:d2:42:e2:28:72:
fd:96:e1:32:b1:ea:ad:f5:3c:98:2e:ac:b2:3a:7b:
82:2f:75:6f:ae:2a:59:d2:ba:f8:3b:72:47:ab:ea:
9d:01:f9:7c:e4:20:bc:72:b9:fd:02:7d:ac:84:fc:
01:36:9d:22:bc:a9:85:ac:c1:78:02:ea:e9:79:4a:
87:11:81:c7:9f:52:82:3c:76:d7:eb:e2:80:9c:b5:
69:7a:1b:ac:c6:f7:08:56:38:eb:98:3a:49:2e:ae:
f9:cb:67:cd:a7:31:9f:29:d2:6d:30:82:44:04:4e:
e5:d4:96:b8:94:84:d2:68:40:c8:76:9d:02:cb:81:
06:8a:eb:68:a8:c4:04:46:4d:3b:6e:04:cd:2e:07:
7e:c7:c5:4e:c9:c3:f4:6d:59:a6:90:08:73:5e:93:
ab:25:4f:8d:3b:ee:6b:5d:ad:ef:ef:e2:52:23:c0:
98:e5:c3:59:19:ef:94:4b:5c:67:24:1d:80:e9:54:
13:bf:4a:49:ec:76:cb:ef:c3:36:c9:aa:b3:9b:f9:
31:b2:79:64:32:7b:45:bb:51:04:85:3d:8c:0a:25:
c9:5e:94:ea:1b:ae:c4:9a:36:1e:61:b5:fc:6d:57:
27:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:AF:BB:42:3A:32:A6:D5:38:AD:A8:30:EC:C4:2C:3D:98:AB:91:49
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7q-7QjoyptU4ragw7MQsPZirkUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.101.0/24
Signature Algorithm: sha256WithRSAEncryption
52:99:11:06:8f:86:0e:eb:f8:95:2f:67:01:49:8d:4e:d9:78:
5e:68:36:81:9f:e5:22:6b:a7:8f:4f:a0:28:9a:dd:de:2d:5d:
50:b6:98:4e:54:b2:10:3e:df:33:4f:d4:9d:50:ba:0e:e0:85:
12:3b:46:81:08:7a:3a:5e:11:ea:df:93:4f:56:2b:28:37:a2:
a0:56:ce:6b:5e:97:d0:46:2d:10:a9:90:c5:a8:1a:8c:58:da:
20:21:6f:df:2b:d4:e2:f3:78:b8:d3:ec:5c:09:b2:28:7c:5d:
b9:a9:12:ce:9c:c4:c7:85:fe:d9:0e:24:5c:c6:67:5c:a5:85:
82:a8:c1:dc:8c:be:b5:6d:96:5c:2a:08:3c:d1:ca:88:f8:af:
2d:4c:dd:59:55:c2:dd:80:55:ce:23:3c:0d:68:b9:f0:c0:12:
d9:cb:63:ee:99:51:21:18:bd:37:a5:48:27:fd:73:68:69:f0:
cf:de:93:68:93:91:2b:a3:07:95:91:d9:57:bf:3c:bb:0a:2b:
e5:e6:47:99:a1:fc:bf:24:59:6f:b9:a6:38:61:f1:00:f8:61:
74:3a:40:b1:1f:bd:58:32:02:93:c3:6e:a2:41:a9:fd:2f:b6:
26:f7:f7:35:d5:17:a2:52:68:8a:27:2c:cf:a3:1a:4d:cc:0a:
24:4b:5c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org