Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8GhVtFfy6nAYGtpDFiy51opiE5Q.roa
File: 8GhVtFfy6nAYGtpDFiy51opiE5Q.roa (raw, json)
Hash identifier: RqV9w4xMGccaDbJKPCVD+guRT5gtH4sWASrV4O0ZEW8=
Subject key identifier: F0:68:55:B4:57:F2:EA:70:18:1A:DA:43:16:2C:B9:D6:8A:62:13:94
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0B9DA637
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8GhVtFfy6nAYGtpDFiy51opiE5Q.roa
Signing time: Sat 01 Jan 2022 05:51:46 +0000
ROA not before: Sat 01 Jan 2022 05:51:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35478
IP address blocks: 195.252.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194881079 (0xb9da637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 1 05:51:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f06855b457f2ea70181ada43162cb9d68a621394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:b0:9f:de:0e:0c:82:d1:d2:4d:8e:70:b3:
cb:cf:a3:85:ed:0a:7a:23:9f:a6:42:49:9b:33:d3:
55:7e:d3:7f:71:e5:c2:f1:17:b6:cc:c2:2b:d2:90:
f9:17:b7:1f:3b:f2:0c:2a:75:c5:d2:7b:6a:b5:84:
ff:6e:33:93:ba:84:eb:1b:a5:c2:5f:8b:24:d5:fb:
d6:64:69:c9:5b:80:6f:71:41:47:84:b1:7f:7e:aa:
54:62:e5:7b:29:9f:e4:dd:9f:b0:e6:9c:57:34:a8:
5a:52:ba:67:ad:f2:f4:de:43:32:1c:6f:38:d6:a9:
c3:b9:82:ba:97:d5:e5:18:01:8a:52:f6:44:87:81:
d5:01:ed:1d:7e:ad:a0:cc:20:2b:8b:6c:9c:b5:95:
d6:96:fe:dd:37:60:b4:77:12:4e:80:9d:d4:db:ae:
78:1a:af:10:61:3a:eb:b1:7e:49:cf:02:00:89:db:
98:ea:d6:6f:84:c3:d1:7d:50:8a:66:79:c1:8d:da:
1c:db:3f:6f:41:4e:d0:6b:cd:37:b2:dc:6f:be:35:
54:71:e8:ef:5e:2a:e5:68:4f:33:2e:df:55:a0:47:
ec:8a:b1:ac:31:01:dd:05:56:23:f9:21:ed:b0:21:
b6:0b:42:3e:ed:f2:22:2c:6f:50:7b:cd:7b:ac:59:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:68:55:B4:57:F2:EA:70:18:1A:DA:43:16:2C:B9:D6:8A:62:13:94
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8GhVtFfy6nAYGtpDFiy51opiE5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.176.0/20
Signature Algorithm: sha256WithRSAEncryption
44:d7:41:18:b1:6e:84:9d:36:4e:ed:a0:c2:6c:5e:c5:77:57:
66:bf:97:5c:02:81:00:22:30:d5:d5:ee:26:73:42:b6:29:03:
30:0d:09:d8:6a:c1:78:a1:b1:21:5f:dc:f2:25:ff:e5:b9:a9:
ba:99:e0:5f:53:57:a4:bf:d8:c7:2b:be:14:b1:4e:84:e3:10:
ed:d7:88:ee:94:15:2c:f7:d5:fa:b3:7c:4a:c5:5f:0f:4e:8b:
af:a8:d8:b0:47:a3:55:fe:0d:57:7c:4b:e0:25:49:42:a6:f0:
a6:a7:2b:a7:1b:b7:93:95:be:14:49:d2:c3:9c:66:eb:5f:4b:
dc:cd:27:ea:43:92:b6:12:28:98:34:53:f1:f8:5b:ce:83:79:
5d:5c:88:cb:a9:db:b8:fa:fd:ea:24:ec:a9:a8:07:57:32:f2:
a8:48:f3:ca:d2:fb:ea:c9:b8:cb:60:8a:86:52:26:5e:2d:7c:
e2:2d:83:8a:db:12:07:d4:7c:68:38:68:b4:00:bf:46:c7:4a:
4c:44:b0:58:42:f5:a9:0d:71:15:28:99:ce:a1:b6:d6:2d:79:
f5:c0:0e:1c:18:af:a2:0b:2a:e6:22:3c:31:9a:c5:f2:01:61:
11:61:58:bd:93:74:77:c1:5b:2b:61:85:ed:1d:df:ce:a5:8e:
f9:47:e3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org