Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/F1hOHUXuqY-Ge3NkYOYnX41Cb7w.roa
File: F1hOHUXuqY-Ge3NkYOYnX41Cb7w.roa (raw, json)
Hash identifier: WHHDrBUmoXP5tQNcnwGqToCuG/BroxnX21hPBX0W4LY=
Subject key identifier: 17:58:4E:1D:45:EE:A9:8F:86:7B:73:64:60:E6:27:5F:8D:42:6F:BC
Certificate issuer: /CN=7698c999e7f0493ee36634e892b37c9f3bf9407d
Certificate serial: 0910D2B2
Authority key identifier: 76:98:C9:99:E7:F0:49:3E:E3:66:34:E8:92:B3:7C:9F:3B:F9:40:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpjJmefwST7jZjTokrN8nzv5QH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/F1hOHUXuqY-Ge3NkYOYnX41Cb7w.roa
Signing time: Sat 01 Jan 2022 04:56:52 +0000
ROA not before: Sat 01 Jan 2022 04:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35627
IP address blocks: 195.160.166.0/24 maxlen: 24
195.160.166.0/23 maxlen: 24
2001:67c:5c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152097458 (0x910d2b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7698c999e7f0493ee36634e892b37c9f3bf9407d
Validity
Not Before: Jan 1 04:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17584e1d45eea98f867b736460e6275f8d426fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:98:16:16:2d:3c:18:46:54:7f:b1:62:11:da:
20:1b:36:18:0e:1e:74:28:10:4e:e0:0a:70:62:ec:
89:d5:2f:03:14:8e:1a:22:db:3b:6b:51:4a:ed:01:
81:8a:3a:9f:2d:12:3c:85:4e:8c:39:a6:7b:5f:2e:
30:55:3c:40:ba:9b:3e:56:23:af:6e:b8:59:0a:f0:
8c:24:fb:4f:0a:17:17:5a:65:a1:dc:c3:c7:22:61:
fe:d5:34:a5:a0:5f:80:53:9c:d1:e3:17:94:e1:50:
7e:64:05:17:41:e5:c1:c5:9f:7d:da:00:36:de:88:
e1:d2:7b:11:93:23:64:32:b8:10:00:d0:de:1d:84:
fe:c0:fb:39:8b:42:25:7a:a2:70:c7:ae:43:65:13:
f0:96:71:c4:29:a2:aa:69:d6:11:b2:4f:ff:d8:e8:
e5:bd:06:68:d7:07:69:cb:f5:32:2c:91:1b:c5:ba:
d7:f7:35:75:5e:2b:72:c6:36:1f:d3:b0:1f:00:ca:
c0:8c:33:41:e3:98:12:06:a1:2f:be:e2:aa:30:db:
e9:e6:e4:eb:dd:e9:d4:3f:8e:3a:ab:8f:2e:94:6e:
7b:64:09:5c:63:d1:85:b4:ea:54:77:eb:82:6f:5a:
7d:de:e6:47:be:d8:31:07:c2:9e:f9:6c:0a:fc:58:
3e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:58:4E:1D:45:EE:A9:8F:86:7B:73:64:60:E6:27:5F:8D:42:6F:BC
X509v3 Authority Key Identifier:
keyid:76:98:C9:99:E7:F0:49:3E:E3:66:34:E8:92:B3:7C:9F:3B:F9:40:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpjJmefwST7jZjTokrN8nzv5QH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/F1hOHUXuqY-Ge3NkYOYnX41Cb7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/dpjJmefwST7jZjTokrN8nzv5QH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.160.166.0/23
IPv6:
2001:67c:5c::/48
Signature Algorithm: sha256WithRSAEncryption
29:38:35:60:e5:8d:b5:42:5d:63:17:cd:d1:e3:1f:8c:c4:05:
25:ec:1e:ac:21:cf:4c:08:98:4d:fa:c2:59:94:ab:7d:39:31:
a1:b7:03:ec:75:fa:4e:f6:c2:9c:5b:a5:84:10:74:ee:a0:be:
39:a5:be:3c:40:cb:cb:61:40:6c:32:74:71:f2:a5:42:e3:f5:
4a:74:64:29:a6:e8:6e:5a:ff:e6:48:93:e5:ab:79:ae:e2:cc:
f8:85:a1:4f:9b:af:fc:0a:87:80:0c:fe:22:6d:0e:bb:c1:de:
88:fe:4c:2a:f9:9e:de:fa:c3:d4:d7:de:33:d9:2a:18:ab:57:
a0:44:5c:ca:81:44:1b:c2:6b:5c:7c:1c:70:5c:20:d0:54:eb:
1c:8b:5e:12:a6:3f:8a:22:b0:2e:0c:49:c4:9b:3e:88:9d:5e:
a6:42:9a:dd:0a:a5:bf:06:6c:4c:c4:3d:87:99:27:70:d1:f2:
eb:77:ac:0c:5e:f1:d2:6a:20:77:59:e3:ca:19:4a:b7:5b:77:
93:f9:b1:08:7b:76:5e:80:ea:74:9e:63:a0:a6:d3:f7:da:86:
57:10:71:7b:b9:66:f5:fa:6d:6f:58:74:31:27:c3:9c:e3:e2:
5f:74:aa:26:79:cb:83:b1:c6:80:32:b4:2f:06:55:fc:96:28:
d0:d6:18:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:41 2023 by rpki-client on console-ams.rpki-client.org