Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/AruSDmvJKm0bMWmstQChlJmL4y8.roa
File: AruSDmvJKm0bMWmstQChlJmL4y8.roa (raw, json)
Hash identifier: y7HJLpcJOMtjAjpM2q7nbQNrMlECLPsvtJjP1EoMgy0=
Subject key identifier: 02:BB:92:0E:6B:C9:2A:6D:1B:31:69:AC:B5:00:A1:94:99:8B:E3:2F
Certificate issuer: /CN=fb4edb6baa24285394f7f1df4f6fb2ac289e82d5
Certificate serial: 018326EB6E49BC0992F7035AEBA81862E274
Authority key identifier: FB:4E:DB:6B:AA:24:28:53:94:F7:F1:DF:4F:6F:B2:AC:28:9E:82:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-07ba6okKFOU9_HfT2-yrCiegtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/AruSDmvJKm0bMWmstQChlJmL4y8.roa
Signing time: Sat 10 Sep 2022 10:21:46 +0000
ROA not before: Sat 10 Sep 2022 10:21:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 195.64.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:eb:6e:49:bc:09:92:f7:03:5a:eb:a8:18:62:e2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb4edb6baa24285394f7f1df4f6fb2ac289e82d5
Validity
Not Before: Sep 10 10:21:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02bb920e6bc92a6d1b3169acb500a194998be32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9c:ef:47:3c:f5:fa:08:81:ac:ce:eb:81:32:
d5:51:d7:37:5a:1e:22:54:6b:f6:9f:14:6a:e9:0b:
d2:d3:85:2b:0b:f3:4c:37:70:52:95:83:e3:f6:27:
14:b3:c2:ae:b9:e6:5e:6b:c7:a5:39:fd:53:56:d7:
2c:cf:aa:f5:f7:83:4e:c5:06:de:ec:c0:1f:36:10:
e5:46:c8:19:31:e1:19:3e:31:04:c0:b3:77:06:23:
99:5a:ab:e0:80:6b:da:b9:18:7c:03:4f:b0:9c:4c:
79:44:55:49:72:62:f8:e7:77:d5:10:f2:dc:4b:3c:
02:29:1f:eb:d9:57:ce:98:52:77:99:f8:51:f8:d9:
f8:4c:13:6b:e2:4d:94:fd:40:bb:25:0e:ed:b1:6c:
a7:c9:15:72:b6:83:ef:7b:09:8f:8c:ac:36:db:17:
ef:de:30:0c:d1:18:e1:66:d7:28:79:03:94:8d:5d:
50:96:f4:ff:a4:a9:c2:3c:b8:20:e3:5d:9b:27:d6:
33:cb:ee:61:65:b5:7c:87:37:74:4a:3e:fb:4a:39:
33:84:3c:b8:c5:d2:cb:70:fc:9d:50:11:a6:8a:69:
2e:07:87:f8:10:ac:dd:60:4c:dc:94:f4:9f:23:3e:
da:30:4e:22:73:f8:97:41:14:3b:8a:60:75:8c:9d:
c5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BB:92:0E:6B:C9:2A:6D:1B:31:69:AC:B5:00:A1:94:99:8B:E3:2F
X509v3 Authority Key Identifier:
keyid:FB:4E:DB:6B:AA:24:28:53:94:F7:F1:DF:4F:6F:B2:AC:28:9E:82:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-07ba6okKFOU9_HfT2-yrCiegtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/AruSDmvJKm0bMWmstQChlJmL4y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/041b0c-f791-4a5c-8e77-01a066f6f693/1/1-07ba6okKFOU9_HfT2-yrCiegtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.108.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f2:2c:92:29:4c:87:eb:47:c1:28:75:39:e6:f0:24:2e:47:
f3:f1:aa:2a:70:b3:9c:69:91:6a:82:5a:50:d5:04:f7:da:68:
63:ce:1b:32:d2:7b:1f:1d:3b:e2:76:5b:c7:b8:6d:6a:84:1b:
a4:d3:03:80:2c:13:0f:a4:26:07:b6:5e:ac:16:9c:93:59:d0:
53:34:41:c2:81:a4:52:c2:b4:bd:95:87:18:11:4f:41:10:df:
f9:1d:d3:d1:2c:73:67:93:ef:93:3c:ce:95:81:52:78:55:58:
33:4c:d1:dc:3f:14:15:49:e4:23:69:aa:4f:13:1d:19:cd:8f:
bc:5f:29:82:c5:f0:b5:dc:2f:e1:c6:37:5f:fe:0f:29:e5:a3:
11:cd:e3:5d:6f:d9:87:a7:35:dd:dc:8c:09:e4:2e:37:56:1a:
e5:9b:e5:a7:db:67:fb:9f:af:74:62:35:b2:b1:ff:9a:3a:8c:
14:7f:d8:68:90:b9:76:cc:32:11:03:8c:a1:a2:0a:f1:ab:68:
48:93:27:90:5d:29:ac:1f:5f:8b:27:66:79:bf:9c:c2:ea:e4:
e9:19:1a:b6:67:dc:24:dc:6c:a6:d7:15:d2:14:db:a0:c8:bf:
c6:8f:eb:b2:7c:85:38:8f:56:37:20:82:22:04:f7:67:5c:f6:
10:9f:b8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:05 2023 by rpki-client on console-fra.rpki-client.org