Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/usihJEya7gM4d30mKXOEqeDOa2Q.roa
File: usihJEya7gM4d30mKXOEqeDOa2Q.roa (raw, json)
Hash identifier: LbMiF8CZq7qd2rhaCRYqNhOZPSMvWfFlV6Oec3UUA80=
Subject key identifier: BA:C8:A1:24:4C:9A:EE:03:38:77:7D:26:29:73:84:A9:E0:CE:6B:64
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0DBEAEBF
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/usihJEya7gM4d30mKXOEqeDOa2Q.roa
Signing time: Fri 24 Jun 2022 06:47:19 +0000
ROA not before: Fri 24 Jun 2022 06:47:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 195.180.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230600383 (0xdbeaebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 24 06:47:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bac8a1244c9aee0338777d26297384a9e0ce6b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fc:e2:b3:1f:58:49:27:c1:f6:36:ab:49:af:
9b:68:63:44:c0:3b:05:41:e3:c6:25:d5:32:91:f3:
78:7d:01:76:f8:9c:a0:fa:62:4c:0e:c3:38:9f:e4:
6a:8c:39:91:e5:6c:06:c8:4f:3a:c3:de:9e:73:00:
26:d5:54:21:28:c1:30:4c:fb:e3:d5:c1:2e:82:52:
c6:d2:01:52:c1:26:da:13:be:2d:e7:98:6d:dd:70:
4f:c6:76:7a:60:da:a6:33:e5:81:c4:ce:3a:fc:3c:
1a:a1:01:e8:c4:cd:75:e6:e8:1e:5c:90:a3:01:60:
e6:63:25:35:89:bd:9e:d9:0b:58:6b:e4:68:39:e5:
bb:bd:bf:af:19:85:b2:31:47:cb:21:89:11:56:6b:
ed:69:c1:2c:8e:19:5f:ba:71:05:6c:02:8c:c7:29:
ff:fc:59:e9:26:5d:f7:fa:53:61:62:1c:69:74:cc:
1d:87:29:b5:66:53:27:52:5c:46:91:b0:71:db:64:
30:0f:89:40:15:52:c8:95:81:f0:b3:be:bc:aa:1c:
a8:f8:e6:49:3c:cd:d0:dd:c4:e7:c1:14:cc:67:f6:
4c:c9:df:a9:41:d4:f8:7e:79:0c:3c:9c:a0:a6:2e:
ff:81:7c:73:2d:a5:54:3a:f8:fd:67:b6:22:89:e7:
60:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C8:A1:24:4C:9A:EE:03:38:77:7D:26:29:73:84:A9:E0:CE:6B:64
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/usihJEya7gM4d30mKXOEqeDOa2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.138.0/24
Signature Algorithm: sha256WithRSAEncryption
62:3d:0c:9b:85:13:88:ed:3a:f4:5e:63:c3:ed:67:9a:25:fd:
25:3d:0e:02:6a:f3:9b:3a:22:33:e6:46:26:0f:60:5b:19:1b:
07:1d:a7:8c:44:17:ae:96:08:7c:d5:64:dd:1a:73:50:89:90:
71:1f:d9:d9:a4:cb:cc:f5:9b:5e:48:a4:fe:f3:cd:70:e8:d3:
8a:5c:0a:97:97:c1:df:af:16:21:0b:c3:2f:d9:b4:86:e6:80:
3c:a8:de:0e:95:9f:f2:9a:98:81:5c:b9:f8:21:41:0d:2d:76:
79:b7:f6:cb:d3:f4:4b:03:d8:60:67:96:41:4f:a5:33:0e:84:
2f:55:6f:d8:2c:3e:d9:99:45:ab:97:9d:ad:f0:0f:2b:0d:18:
a0:b8:70:8a:27:45:86:bc:63:6e:e3:64:0a:41:26:53:a1:5f:
5f:c6:3e:71:c6:2f:7b:5b:96:3b:2d:60:27:a3:6a:28:98:44:
13:a7:a8:eb:28:89:44:82:ec:f8:ec:87:dd:ef:6e:e7:b2:86:
ae:db:7d:06:17:7e:e6:dd:e6:23:1e:69:f8:41:72:b0:13:c7:
b5:2e:3d:8a:bd:fc:09:0b:2d:d4:c8:a1:8f:8c:8d:88:91:05:
91:5a:b9:76:46:8b:4e:ef:8b:e6:49:78:e5:61:3a:8f:01:44:
b5:76:cd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org