Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/k7rss230xs1Wsh41Uu4AISBitVs.roa
File: k7rss230xs1Wsh41Uu4AISBitVs.roa (raw, json)
Hash identifier: Z3SHgzYPt+ODqlobFFfmByo0yUKf2MWTzG7R2lj8218=
Subject key identifier: 93:BA:EC:B3:6D:F4:C6:CD:56:B2:1E:35:52:EE:00:21:20:62:B5:5B
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D897CCA
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/k7rss230xs1Wsh41Uu4AISBitVs.roa
Signing time: Tue 07 Jun 2022 07:41:24 +0000
ROA not before: Tue 07 Jun 2022 07:41:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38047
IP address blocks: 195.252.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227114186 (0xd897cca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 7 07:41:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93baecb36df4c6cd56b21e3552ee00212062b55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:24:4c:9e:08:3d:f1:f1:36:7d:2f:4f:fe:58:
e1:a2:1d:4d:95:5c:67:d9:e1:fb:5c:e6:7c:d8:a1:
4f:7b:a3:45:ac:3e:6d:01:a3:5d:7a:33:6f:6b:4b:
b3:c2:0f:e5:cb:6e:db:ee:f3:75:6d:22:ea:b7:6f:
ed:dd:8b:6e:0a:47:aa:49:36:1b:9c:d1:b6:41:3d:
d2:14:89:e3:fd:c6:29:6e:eb:e9:84:e2:cc:35:d7:
99:d6:bb:e8:c9:32:a1:c7:40:ca:62:cd:b3:ae:ab:
10:f7:f1:2b:42:fa:a2:1b:fc:0c:b1:c7:10:fa:ef:
b5:76:c7:dd:29:ed:3e:7e:9d:68:a8:75:dc:9c:a8:
c2:b8:c9:7a:63:6f:bc:77:b0:fc:92:3f:ac:91:33:
f8:0d:7d:f4:ae:9b:60:0c:6e:70:29:e0:57:90:94:
71:09:dd:8e:22:af:2f:d2:f6:59:83:5a:60:ae:ec:
21:65:a9:55:5c:0e:2f:81:f7:a7:c6:61:bb:1b:00:
e8:ed:7b:a6:6b:33:41:eb:84:7b:d1:eb:d4:3a:7a:
0b:f8:b6:fa:83:14:02:a2:88:da:89:d1:29:40:d5:
67:dd:17:b4:7e:d5:e8:03:76:24:8c:f9:66:6f:3d:
9f:0e:83:97:ac:1f:60:f7:42:d2:5b:54:08:1d:e9:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BA:EC:B3:6D:F4:C6:CD:56:B2:1E:35:52:EE:00:21:20:62:B5:5B
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/k7rss230xs1Wsh41Uu4AISBitVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:2c:a1:73:11:92:f2:76:88:64:68:1d:39:07:fe:d3:6c:82:
71:df:d1:0e:e1:ba:22:3b:83:9c:96:de:05:e0:68:c3:80:ce:
71:5d:9c:a5:6c:a1:8d:10:03:fd:e3:b5:f5:54:3e:e7:59:6b:
6c:bd:df:41:86:99:6f:67:b6:e8:12:6b:16:a7:81:eb:70:cc:
7b:f1:b6:d6:69:ed:3f:12:bf:97:2d:35:68:1a:5d:73:37:40:
74:d3:02:fa:c8:62:a5:01:77:9e:80:ab:d4:ca:5c:34:db:11:
8c:d9:17:8e:93:95:a2:e1:ab:fd:99:7e:8e:2d:55:30:a4:17:
1c:42:88:09:49:c8:53:89:ef:99:68:ef:da:f1:4c:7d:39:73:
f6:3a:f5:8b:eb:73:0e:db:1d:89:98:10:5b:fe:d3:6d:1c:ed:
43:0a:03:f1:8e:0a:32:76:c7:af:a0:80:d3:ce:10:4f:be:3b:
87:9e:b8:42:21:33:c0:9a:48:24:f5:b6:88:de:4f:68:1b:88:
31:ee:5c:d9:57:a0:35:17:13:ce:16:09:14:68:d7:01:d1:68:
48:e9:5d:b4:2e:79:11:c3:89:b5:4c:bc:20:6c:70:e3:bb:ed:
8f:cd:09:7c:b8:33:0a:c4:35:5f:de:69:f0:c7:24:65:0e:c8:
f3:04:db:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org