Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/zQWZp-Hh-fSg6KUh4npl1OKdoUI.roa
File: zQWZp-Hh-fSg6KUh4npl1OKdoUI.roa (raw, json)
Hash identifier: A6XiY4w/NXQSQI7d02hinBgX6IAX1mQYKR6JqkWnhOo=
Subject key identifier: CD:05:99:A7:E1:E1:F9:F4:A0:E8:A5:21:E2:7A:65:D4:E2:9D:A1:42
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BFD5C26
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/zQWZp-Hh-fSg6KUh4npl1OKdoUI.roa
Signing time: Sun 30 Jan 2022 15:02:59 +0000
ROA not before: Sun 30 Jan 2022 15:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42962
IP address blocks: 195.180.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201153574 (0xbfd5c26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 30 15:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd0599a7e1e1f9f4a0e8a521e27a65d4e29da142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:00:53:b8:a8:8c:ab:71:57:15:61:8e:97:
21:34:97:66:cd:e0:5c:ca:24:a9:e3:f8:ed:33:da:
6f:16:00:ce:cb:e5:1c:b8:c0:bb:02:d4:b9:b6:5b:
73:90:8d:39:43:52:f0:5b:90:cf:db:26:9f:75:16:
0b:4e:eb:73:e8:0f:6c:58:a5:4a:fc:e2:a9:b9:11:
6c:4c:2d:46:8b:15:be:52:f7:8f:9e:a8:ca:3c:8e:
31:c2:1c:4e:40:6c:0b:c9:71:09:56:d5:36:40:b1:
ad:d0:d5:cb:4e:48:13:ed:8d:9d:30:9e:9a:ef:7f:
a3:16:03:0b:28:26:d7:c4:d5:10:c1:4a:5e:70:41:
8d:08:98:14:f0:55:d1:de:f1:c1:47:d1:8a:3e:dd:
1a:cf:7f:35:01:c9:06:2a:09:39:0e:22:99:aa:17:
eb:23:20:eb:3f:b1:76:69:0d:ca:4b:70:d0:12:05:
26:19:03:01:3c:f2:df:69:e6:04:a3:8c:54:f1:1d:
1c:8b:28:b2:15:36:3b:c8:6b:ce:cd:9f:7f:c8:e9:
a1:80:56:0e:a8:f9:b2:5c:55:03:74:28:23:f3:66:
44:bc:86:03:4f:73:6d:e9:cf:6c:22:58:c8:e3:16:
cc:ea:8b:80:ee:92:e2:c2:7d:e0:c0:60:5a:08:93:
0a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:05:99:A7:E1:E1:F9:F4:A0:E8:A5:21:E2:7A:65:D4:E2:9D:A1:42
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/zQWZp-Hh-fSg6KUh4npl1OKdoUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
09:03:aa:d8:a4:7b:77:b5:1d:ac:d1:65:ef:09:60:61:9f:c1:
07:e9:32:62:d0:9d:3f:ac:6f:7f:e8:8c:03:cb:9d:57:3d:99:
45:eb:b0:28:de:96:a3:21:e8:7e:73:fa:77:7c:74:f5:b1:e5:
f9:11:4c:50:8b:fd:d7:80:5e:3d:64:91:48:b8:a9:34:a1:79:
36:37:80:9f:6b:b5:ca:8e:8f:5b:8c:4c:d2:98:4f:4d:1b:84:
b1:99:c2:0a:c2:1a:59:48:2f:65:4b:bd:e8:01:b9:de:88:b7:
e8:f8:da:e4:3d:08:ac:2e:c2:9a:3f:d3:98:33:4f:a0:3e:db:
4f:02:d6:81:32:62:9b:bb:c3:2e:23:22:46:07:13:5c:35:31:
94:ab:15:3f:4c:f1:97:45:de:37:28:6e:6a:82:6b:23:3f:de:
3a:a7:bc:1a:95:34:3b:83:9f:80:33:3c:f9:82:e2:5d:e2:94:
c0:ed:0b:d5:12:7d:04:b9:44:87:56:8a:03:bb:eb:f8:45:c2:
20:d6:61:23:0c:17:c6:14:e5:01:da:52:0e:c0:7b:70:55:26:
7c:26:70:c1:48:d9:cc:e7:78:0f:1e:75:0e:09:ed:e6:4e:e5:
20:49:df:fb:05:cc:51:43:0a:20:19:32:3e:f3:f6:b5:bc:d0:
00:7f:fb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org