Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/I-sH3nj5elhKYb7xsEAwu1yu4uw.roa
File: I-sH3nj5elhKYb7xsEAwu1yu4uw.roa (raw, json)
Hash identifier: KfDgaOVzUjgwZF5LY4eSxv2BBrmh7hU2NIW6kdnDG1A=
Subject key identifier: 23:EB:07:DE:78:F9:7A:58:4A:61:BE:F1:B0:40:30:BB:5C:AE:E2:EC
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D781699
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/I-sH3nj5elhKYb7xsEAwu1yu4uw.roa
Signing time: Tue 31 May 2022 06:28:05 +0000
ROA not before: Tue 31 May 2022 06:28:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 195.180.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225973913 (0xd781699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 31 06:28:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23eb07de78f97a584a61bef1b04030bb5caee2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:04:59:07:c8:56:ce:15:99:76:cd:c4:24:
54:99:ef:b7:38:dc:85:c5:92:81:16:49:74:6b:2c:
36:b9:dc:db:35:4e:ef:8b:99:7a:d4:5f:5f:da:38:
69:5a:1a:ff:0b:db:20:4b:60:b6:23:b5:41:3c:b6:
32:a1:11:75:b3:75:aa:38:d6:41:4a:49:79:60:74:
97:f2:22:5c:99:ce:80:19:1d:b6:fb:73:81:97:5c:
ae:a5:28:02:e6:70:24:aa:2c:0f:44:92:22:c8:30:
57:4e:74:8a:ef:7d:56:41:24:4b:b1:4a:ac:72:f9:
74:43:d7:67:11:0f:bd:c4:7d:73:89:ad:a2:8b:35:
51:db:89:31:37:f5:e3:2a:76:e5:b4:9b:ea:45:97:
1d:19:78:30:03:25:e4:69:fa:4a:71:f1:07:3a:3f:
bc:f4:a0:35:50:76:18:25:9a:9b:9e:d9:32:1b:9f:
8f:a5:62:a0:e6:72:cc:83:56:3c:27:cb:90:29:2f:
7f:66:23:44:1a:ab:2d:c3:bf:09:c7:36:7d:67:20:
0c:61:8e:43:ee:44:e0:21:a7:2d:dc:ab:0a:1c:5f:
63:1f:63:69:45:59:ff:c5:0e:b1:a5:6e:78:75:7b:
b3:75:e2:d5:31:13:8f:ba:0f:45:78:6b:a9:2b:28:
59:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EB:07:DE:78:F9:7A:58:4A:61:BE:F1:B0:40:30:BB:5C:AE:E2:EC
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/I-sH3nj5elhKYb7xsEAwu1yu4uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.178.0/24
Signature Algorithm: sha256WithRSAEncryption
03:28:a6:49:02:04:05:b2:df:47:9d:99:57:69:46:0f:1d:7a:
91:7d:ff:80:5a:d2:38:8e:5d:fd:b2:9e:55:e0:88:f9:ac:cc:
ba:d8:09:cd:c4:f7:17:55:24:e7:7d:d9:09:f4:a6:a0:25:8f:
41:d4:8b:b6:a7:e1:fd:3d:a8:72:3e:06:54:2b:12:72:cb:41:
35:e0:95:3a:05:11:d6:06:11:d3:a2:fe:3d:ba:fe:3c:91:3e:
56:26:12:b9:b2:65:a1:47:cf:f1:de:38:38:6b:38:cd:44:b8:
60:36:79:bb:13:6c:52:7a:bc:d7:12:e3:4d:5f:f4:92:93:04:
41:cb:e1:19:a8:61:d5:4e:44:3c:66:55:b3:b0:ac:cb:5c:d2:
53:55:fb:87:15:be:4c:1f:de:b2:4f:6b:ac:89:6e:03:f1:f7:
cc:b9:49:7f:e5:09:2e:67:9f:f3:8a:79:c2:76:ff:53:4c:7f:
3a:5e:c9:28:50:62:11:fc:5b:a9:ac:d0:c2:a6:3a:b1:d1:70:
a0:d8:50:31:69:a1:a5:4e:1e:46:1b:05:35:03:1b:77:78:93:
c1:d3:58:dd:02:84:9b:a3:25:d5:f6:94:13:f5:63:fa:42:1d:
e0:38:c6:7e:1b:3d:34:89:42:cd:8f:91:60:d4:ab:0e:a2:2a:
d7:d5:08:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org