Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xmaXpIHH-jcW7m6it67pJGOml0I.roa
File: xmaXpIHH-jcW7m6it67pJGOml0I.roa (raw, json)
Hash identifier: ic0aBR+vLYDupAnXcrJ8ydVhhym0FxNReX7/fDUKNdU=
Subject key identifier: C6:66:97:A4:81:C7:FA:37:16:EE:6E:A2:B7:AE:E9:24:63:A6:97:42
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0183A6DC68B5AB3EF00BF9D00E72948EFA32
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xmaXpIHH-jcW7m6it67pJGOml0I.roa
Signing time: Wed 05 Oct 2022 06:36:45 +0000
ROA not before: Wed 05 Oct 2022 06:36:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 195.180.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:dc:68:b5:ab:3e:f0:0b:f9:d0:0e:72:94:8e:fa:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Oct 5 06:36:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c66697a481c7fa3716ee6ea2b7aee92463a69742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e5:96:8e:81:86:17:7e:58:57:a7:8f:8b:94:
89:d6:8b:41:ea:c1:30:0a:f5:68:3a:5e:d8:e4:1e:
2e:96:41:1b:0d:c6:b2:2a:f7:90:68:cf:65:7e:bf:
ad:d8:27:c1:d1:0f:fd:85:ee:ee:12:f3:44:08:1f:
14:89:67:5f:4d:fa:dd:83:a2:f3:70:d4:29:72:a3:
25:76:54:42:d1:50:6a:47:3e:e3:43:1c:48:0a:34:
e6:7f:00:21:35:94:47:01:40:f1:c7:2b:fe:92:85:
35:96:2f:04:e3:64:c3:8d:5f:da:b9:a6:47:7e:c9:
b8:d4:68:c6:c4:99:c8:20:88:5e:74:0e:a5:f1:71:
5a:4a:6e:11:cd:01:2a:69:05:ff:db:08:a5:c3:38:
93:6e:47:49:25:d4:c1:b0:73:fa:0d:69:1b:c4:18:
f3:7a:dc:6a:f1:49:dc:9a:cd:38:1e:84:8f:a9:d3:
85:fb:5c:c3:8d:69:5d:36:a5:c9:f8:62:58:59:0f:
a7:af:b8:a3:02:a0:b9:24:11:05:02:c2:52:63:0d:
c5:ba:e0:02:84:d5:cf:4e:09:3c:9d:a2:c1:9e:2f:
cb:d0:18:76:98:fb:ab:36:77:aa:d6:a3:59:b7:34:
6a:5d:52:ac:98:d8:3c:da:6b:6a:ef:74:06:82:a6:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:66:97:A4:81:C7:FA:37:16:EE:6E:A2:B7:AE:E9:24:63:A6:97:42
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/xmaXpIHH-jcW7m6it67pJGOml0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:35:fa:fb:84:e5:05:da:c8:c2:e0:e8:51:85:a4:f0:4f:36:
38:81:9d:50:7d:fd:2a:84:ba:94:70:3d:b1:90:19:02:b5:d8:
b1:81:be:3c:0d:79:0d:82:1a:7d:ca:06:ba:90:2a:59:6e:ea:
f5:48:66:69:8d:ef:18:05:6b:bb:3b:d2:07:18:ed:7c:29:ab:
52:91:ba:5b:28:02:c5:e0:06:0c:87:16:46:36:d3:31:92:3c:
96:1f:85:ac:c2:5f:18:61:65:dd:da:97:f7:53:0a:c0:58:ad:
fd:d4:ec:00:cb:32:c3:3e:a1:aa:84:b9:55:19:9f:3e:08:e1:
83:4c:dd:63:3b:44:c5:5e:d5:1c:f0:e3:3e:6b:56:4f:c9:1e:
54:13:a9:1e:38:56:ae:b4:98:0f:56:bc:88:59:37:5c:56:ff:
f3:f5:95:ec:4a:7e:e4:9a:d0:04:59:c3:77:e5:8d:04:9e:91:
7e:57:05:60:1a:30:fa:94:30:5f:e2:87:41:a8:1a:51:8c:56:
8e:0e:5a:9a:17:8b:a3:cc:77:48:ed:7f:89:53:01:c0:c7:d5:
d8:6e:97:01:53:ce:90:27:55:63:54:5a:07:2a:89:9d:b1:0c:
9f:40:78:1b:c6:43:57:e5:25:4d:d5:af:a8:a8:c6:63:8e:cf:
c6:db:e5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org