Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wD-0afBje0rjLLGc1tt4dPfjGf4.roa
File: wD-0afBje0rjLLGc1tt4dPfjGf4.roa (raw, json)
Hash identifier: cy54g9YbHwNu9TAS55DIor7FnU3jNmY90qCrzP0iU9g=
Subject key identifier: C0:3F:B4:69:F0:63:7B:4A:E3:2C:B1:9C:D6:DB:78:74:F7:E3:19:FE
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D89F4D9
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wD-0afBje0rjLLGc1tt4dPfjGf4.roa
Signing time: Tue 07 Jun 2022 07:41:25 +0000
ROA not before: Tue 07 Jun 2022 07:41:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134176
IP address blocks: 195.252.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227144921 (0xd89f4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 7 07:41:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c03fb469f0637b4ae32cb19cd6db7874f7e319fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e1:e3:b6:5f:7f:6b:01:bf:a7:c3:87:8b:28:
4f:eb:8f:9b:2e:0f:06:7c:ea:c7:89:cf:60:22:4f:
78:e3:f1:61:11:18:7c:9a:ad:38:35:ca:31:e6:a4:
84:8f:3f:39:e8:cc:6e:8b:af:35:a2:44:38:8c:0c:
cf:82:7b:2a:3b:ed:d6:57:b1:e0:bd:94:bb:bc:28:
94:c3:97:be:0e:99:ab:ea:bc:93:0e:1c:5a:c2:03:
ff:b5:6e:4e:29:d5:bb:ec:f9:f6:80:1b:b6:b1:b4:
ff:98:2e:96:02:13:5e:26:16:ac:a2:dc:15:7d:c0:
52:8e:f2:76:75:70:f9:3c:32:b9:36:ec:c5:14:2a:
bf:44:56:e8:04:ba:45:fb:64:6f:e5:58:13:ef:d2:
c6:29:8e:59:3d:66:c0:d5:e8:2e:4b:96:9d:05:a7:
24:ff:84:bc:62:a3:95:5b:df:62:ab:2f:33:9f:b8:
3c:f6:46:0e:01:d5:5e:85:51:5c:17:a5:ac:b8:df:
66:ad:ca:3b:5c:55:e2:79:1f:ac:d7:7b:07:7a:87:
3f:95:f1:59:ea:f6:43:c7:5c:81:9c:e8:60:33:03:
38:a2:af:f8:3e:a0:dc:a1:39:56:eb:15:27:b0:01:
37:dd:37:07:dc:49:d2:56:fa:70:cb:12:a4:64:66:
05:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3F:B4:69:F0:63:7B:4A:E3:2C:B1:9C:D6:DB:78:74:F7:E3:19:FE
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wD-0afBje0rjLLGc1tt4dPfjGf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:66:50:3a:f0:1a:e3:da:32:5a:6a:d8:7a:88:18:b6:60:04:
3a:cc:97:3e:5b:e1:3c:41:9f:b2:0c:11:ea:e4:ef:a0:a9:4c:
dd:1f:04:69:eb:80:22:fb:33:f8:05:bb:f6:9f:8e:6a:e8:2b:
d2:2c:15:f9:9d:d4:2c:a6:64:3a:95:a7:a9:87:c0:d7:db:61:
d7:76:ad:74:16:a9:17:e3:7b:bf:5e:de:dc:74:15:5f:d9:02:
86:31:3f:65:29:cf:d7:dd:cf:1a:2c:10:66:31:f1:17:27:0f:
3f:5f:64:08:df:88:5e:9e:92:72:9f:ab:4e:0e:a1:13:d3:a9:
ca:9c:2f:9e:13:05:d8:ca:94:a5:c1:25:52:58:7a:17:d6:66:
f7:f0:4b:a6:26:e2:23:d9:f3:a3:df:24:44:32:9f:1f:3f:41:
47:8a:ad:60:38:26:da:1e:db:13:5b:ce:cb:4f:c4:2b:68:7f:
70:d1:9c:71:9c:ec:c8:07:1c:04:1b:26:0a:4c:95:71:c2:6c:
59:e0:ef:e3:f1:f7:6b:af:d3:f5:94:d6:4e:d4:dd:57:66:1b:
f6:dd:e3:c4:e2:1a:28:a4:9e:46:04:42:d8:1e:85:11:89:86:
9a:d0:61:e9:f2:92:96:ce:fd:7b:61:15:90:95:b5:aa:7b:f6:
69:fc:15:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org