Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xMXMjldHJ1XJ9MeW9jSLTwjBddo.roa
File: xMXMjldHJ1XJ9MeW9jSLTwjBddo.roa (raw, json)
Hash identifier: BlHkciSqbmXxZPHYTRvE9VqDW4t8XHe/5ip2tmU6HJg=
Subject key identifier: C4:C5:CC:8E:57:47:27:55:C9:F4:C7:96:F6:34:8B:4F:08:C1:75:DA
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0B9B3A51
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xMXMjldHJ1XJ9MeW9jSLTwjBddo.roa
Signing time: Sat 01 Jan 2022 05:51:45 +0000
ROA not before: Sat 01 Jan 2022 05:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6659
IP address blocks: 195.180.249.0/24 maxlen: 24
194.64.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194722385 (0xb9b3a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 1 05:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4c5cc8e57472755c9f4c796f6348b4f08c175da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:14:be:f1:89:55:40:c7:3f:58:b0:f1:64:
99:77:85:74:8c:f3:4f:eb:e5:00:69:92:c7:45:f3:
33:6e:d9:57:86:9c:5c:70:fd:8c:05:bb:fc:5d:a4:
6e:65:ee:4e:b4:ec:86:68:2b:0c:4f:fa:b7:37:cc:
3d:db:5e:ce:68:fe:d0:9f:ad:ad:5f:f8:7d:2b:29:
e9:27:0c:db:b6:1f:70:20:82:ab:f5:2a:20:74:44:
fe:7e:83:09:97:39:53:d6:a8:f3:41:6b:93:bb:1a:
dd:03:d8:d4:54:42:45:ce:e3:32:e0:a0:f3:8b:fa:
3a:1f:59:cf:9f:d6:54:93:f0:c5:ea:43:81:1d:54:
6b:f8:b0:2e:cd:e5:6b:ca:4d:1f:3d:4e:e4:65:80:
74:f8:75:89:23:20:e6:80:e4:ca:66:5f:52:f0:fd:
72:ed:ec:8e:d0:7d:6b:96:6d:0e:b7:92:f7:ff:2a:
dc:9a:1f:6f:89:73:f7:5b:a4:18:5a:fe:c5:cc:d8:
23:8e:ad:0c:e4:b3:74:36:3d:6d:55:ea:e9:4e:59:
bc:22:65:96:71:89:b0:64:6f:af:7b:aa:fa:08:6d:
79:f4:ae:88:49:1f:02:80:4b:c8:b5:7e:25:6c:58:
75:07:51:4c:ce:7f:f2:ac:4c:3c:23:83:95:99:fb:
78:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C5:CC:8E:57:47:27:55:C9:F4:C7:96:F6:34:8B:4F:08:C1:75:DA
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xMXMjldHJ1XJ9MeW9jSLTwjBddo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.31.0/24
195.180.249.0/24
Signature Algorithm: sha256WithRSAEncryption
28:01:65:fb:8a:9c:f4:33:e0:ea:45:dc:a8:83:93:68:7d:cd:
c6:7a:7b:a4:18:8f:c8:3f:3a:be:93:e8:98:52:ac:70:f3:ab:
9c:8a:f3:5f:21:52:f3:9c:28:fb:89:18:65:d1:f0:71:45:f0:
a0:b9:eb:e5:a1:92:73:26:ac:e4:3b:cc:ff:80:cd:02:9b:0e:
59:66:56:00:89:fe:96:c4:d0:a2:1c:b4:69:13:a4:09:d6:d8:
28:0c:89:f7:af:2a:c8:28:76:d9:d0:d9:0f:d8:d8:59:b2:6c:
db:d2:d2:fc:75:ab:22:d4:13:ff:d5:76:79:91:6a:74:c2:a9:
05:39:45:ac:4a:b3:56:5d:e4:41:73:75:42:34:f9:60:87:38:
6c:81:a7:a5:c5:15:d0:52:6a:fd:94:69:26:18:e5:85:83:37:
b0:a4:78:c4:09:d7:97:c6:61:2d:58:da:1e:99:f6:19:6f:90:
77:99:a9:9c:c1:c8:cb:ca:f6:d3:eb:09:49:2c:42:d0:17:4e:
eb:13:75:6a:6d:02:af:7f:16:3b:a3:b7:ea:ee:bd:d2:4f:45:
1a:bf:58:dc:fc:23:f2:44:3b:c5:f2:56:93:b0:06:fe:86:9a:
44:24:2d:d7:ee:17:4a:8f:0e:ee:ed:f5:da:05:d0:59:6c:fb:
c5:d2:11:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org