Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CidAmGhjnjlg2WG0X3XeTy1CiX0.roa
File: CidAmGhjnjlg2WG0X3XeTy1CiX0.roa (raw, json)
Hash identifier: MVfuVbBkSB6aeQAViW5Z2rYGgi63SwTUklPeW4+inF0=
Subject key identifier: 0A:27:40:98:68:63:9E:39:60:D9:61:B4:5F:75:DE:4F:2D:42:89:7D
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D694782
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CidAmGhjnjlg2WG0X3XeTy1CiX0.roa
Signing time: Thu 26 May 2022 19:59:14 +0000
ROA not before: Thu 26 May 2022 19:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42962
IP address blocks: 195.180.150.0/23 maxlen: 24
194.163.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225003394 (0xd694782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 26 19:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a27409868639e3960d961b45f75de4f2d42897d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:1a:66:b3:72:3b:15:78:75:0d:5c:6d:9d:e2:
63:71:13:49:06:d0:74:3a:90:c3:88:0a:47:f3:ef:
1c:d9:29:80:c3:8f:9a:58:12:c8:b7:38:65:8d:d3:
d2:bb:86:27:ec:36:1e:54:88:49:c1:43:64:1b:d7:
c8:05:83:d1:08:11:11:43:76:c8:06:27:a7:05:3f:
d0:a9:70:21:1a:c7:b8:95:ab:62:6d:58:b6:be:92:
62:15:f9:45:b9:60:2f:99:bc:22:4c:f5:57:26:99:
19:e1:8f:ba:66:a0:d7:f6:50:f5:9b:4f:91:8e:3b:
ce:a9:f5:c8:c6:34:6d:58:c9:16:f4:42:d4:1d:99:
35:02:f4:8c:ba:cf:37:ea:7d:3f:35:ca:57:51:71:
94:da:74:54:3e:c3:4c:c7:d2:bc:88:26:a2:0f:a6:
5b:b3:d4:58:32:60:af:62:23:b3:80:56:19:4d:1e:
40:d4:06:da:8c:ee:f3:c6:b3:4d:75:c0:36:18:0f:
98:5e:33:56:97:fa:e2:9f:4a:63:5c:20:47:50:c4:
61:08:38:ca:db:bc:ee:ad:b6:d2:14:e0:73:9e:37:
da:e1:cb:9b:68:d9:a1:db:48:5c:ca:0c:1d:b7:b3:
4e:aa:5a:c9:aa:b5:fd:28:ee:fa:ed:44:dd:f2:02:
c5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:27:40:98:68:63:9E:39:60:D9:61:B4:5F:75:DE:4F:2D:42:89:7D
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CidAmGhjnjlg2WG0X3XeTy1CiX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.80.0/22
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
51:ee:d4:79:38:26:03:c3:3a:5f:a1:40:12:2c:5e:96:ad:cc:
d4:05:b4:18:8c:5c:94:30:5a:6a:e8:9a:20:18:b2:c3:af:81:
4a:b5:de:08:a0:7d:50:f6:eb:13:d3:8e:78:f9:aa:7a:06:59:
c3:90:4a:4c:7d:af:89:2b:2b:28:45:90:ac:a2:aa:59:e4:02:
c5:76:ef:b5:e0:25:f0:71:20:f0:9d:38:e4:da:3c:93:87:9c:
11:ef:59:8f:3c:f4:2e:07:f0:b2:3e:73:f4:10:a0:28:f5:82:
af:59:b1:b7:b8:24:b0:34:8c:df:8f:67:fb:6e:1f:64:45:a2:
c4:30:de:4e:22:d7:4b:f9:73:ad:cc:3f:5f:59:cd:fd:50:c0:
5a:4c:c7:b4:6e:35:54:d5:f1:f3:48:a6:e8:03:3a:88:08:94:
a0:f8:f3:1a:ce:57:26:ba:3b:bf:ad:70:03:e7:48:5a:f7:ad:
1f:89:04:61:ce:1c:48:ad:f4:81:17:65:3f:56:da:7e:f2:dd:
ce:e6:40:ee:a3:63:82:61:79:a9:64:8b:68:ce:75:9d:3d:02:
d8:a1:9b:cf:8c:81:48:ab:36:fe:a9:47:e1:33:0c:4e:1d:b9:
ee:1d:c2:11:58:83:b8:a3:f0:66:ad:79:14:7f:57:67:41:f0:
73:97:df:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org