Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/p5u6YV00pKrrUYLh_s-OnJtHWlE.roa
File: p5u6YV00pKrrUYLh_s-OnJtHWlE.roa (raw, json)
Hash identifier: IAwUT0yraN4Y+M5JxvugEag2m0BST4Elh8OpcZIWNxg=
Subject key identifier: A7:9B:BA:61:5D:34:A4:AA:EB:51:82:E1:FE:CF:8E:9C:9B:47:5A:51
Certificate issuer: /CN=d8062e4cc26f2df76ef308ce7a6e3c8344c9d031
Certificate serial: 01226D
Authority key identifier: D8:06:2E:4C:C2:6F:2D:F7:6E:F3:08:CE:7A:6E:3C:83:44:C9:D0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AYuTMJvLfdu8wjOem48g0TJ0DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/p5u6YV00pKrrUYLh_s-OnJtHWlE.roa
Signing time: Thu 27 Jan 2022 09:36:40 +0000
ROA not before: Thu 27 Jan 2022 09:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.64.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74349 (0x1226d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8062e4cc26f2df76ef308ce7a6e3c8344c9d031
Validity
Not Before: Jan 27 09:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a79bba615d34a4aaeb5182e1fecf8e9c9b475a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:38:11:5e:08:e1:90:c4:89:d4:73:ce:fc:8a:
fc:4d:53:65:ec:3a:99:7f:6c:57:3d:f4:62:c4:f5:
36:e6:22:9c:55:5d:98:a2:87:75:16:e3:b2:de:12:
b8:ec:95:85:ab:e0:ac:86:b4:b6:cb:de:39:ee:ef:
71:e9:18:b8:ef:90:08:bc:0c:61:22:f2:02:fa:ac:
d2:e3:9a:22:c8:f3:c7:77:5d:74:16:67:37:0c:9f:
df:15:d7:82:59:a9:c1:a2:0f:98:8f:74:c5:ea:2c:
12:ca:94:65:46:af:62:b9:8a:2e:05:5c:cb:47:22:
fa:21:46:7e:77:9e:49:6f:d7:b9:19:24:64:c4:3d:
8a:2c:af:3a:ad:38:dc:81:43:68:d4:6c:09:96:03:
fd:f7:da:1b:49:72:42:08:61:11:97:60:b9:5a:e6:
0c:b9:69:e7:9a:83:2d:80:2a:b6:d2:f2:86:9e:a5:
d7:1c:2c:93:ae:49:60:8d:b1:c6:70:a9:b9:28:97:
2e:5b:20:dc:fa:27:ac:72:87:8a:5f:c1:02:42:2f:
3b:ae:1a:40:8d:52:e1:91:af:18:f8:10:e8:78:09:
44:5d:90:77:42:4e:f7:a4:89:89:17:22:76:38:eb:
79:08:a0:f0:84:d1:e4:3a:cb:82:5a:e0:52:4e:97:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9B:BA:61:5D:34:A4:AA:EB:51:82:E1:FE:CF:8E:9C:9B:47:5A:51
X509v3 Authority Key Identifier:
keyid:D8:06:2E:4C:C2:6F:2D:F7:6E:F3:08:CE:7A:6E:3C:83:44:C9:D0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AYuTMJvLfdu8wjOem48g0TJ0DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/p5u6YV00pKrrUYLh_s-OnJtHWlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/2AYuTMJvLfdu8wjOem48g0TJ0DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.114.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ad:b6:8f:9b:02:f2:8f:cd:92:ae:93:58:42:a9:b3:40:23:
55:c5:48:fb:9d:94:c6:80:a0:1a:01:bb:87:66:e9:6a:69:a2:
bf:90:fe:cd:04:77:df:1a:cf:27:92:b5:20:94:a5:ed:a6:6b:
97:f7:53:d4:1a:b0:ab:5c:5a:ef:2e:6e:76:15:80:2a:8c:08:
6c:d8:dd:f1:d3:90:f5:17:bf:1c:43:3a:b7:86:80:d1:29:a9:
c2:11:4b:e7:76:c3:89:1a:eb:45:86:f8:f8:f5:7a:d9:f5:1a:
26:92:64:2a:64:3f:cf:85:a0:97:72:68:98:ff:29:03:3a:01:
df:1e:6f:a5:0c:29:6f:78:2e:ec:66:a6:d7:63:22:d3:bc:d1:
2c:be:7f:6c:ed:bb:a0:3a:ed:3d:e7:66:23:ba:b4:b2:3b:97:
85:3f:11:a5:eb:c3:c5:b6:ac:17:31:17:2e:0e:53:0d:8d:fc:
ed:7a:a0:52:df:61:ba:4e:ae:fa:34:da:d3:4f:25:bd:60:36:
e0:b4:c2:9f:14:e3:b2:16:5e:b8:59:91:58:6e:60:35:8f:1a:
ed:8a:88:eb:3d:39:1c:d5:a4:56:7a:4f:f9:11:21:11:27:df:
c3:63:5b:67:2a:db:35:60:93:12:19:c1:63:63:7c:43:f9:78:
0e:f6:d7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:44 2023 by rpki-client on console-fra.rpki-client.org