Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Tb8oy7zXd2FGfi9sVwF-ampLmFs.roa
File: Tb8oy7zXd2FGfi9sVwF-ampLmFs.roa (raw, json)
Hash identifier: HDz0vPQ5RxGjFrqrPD8y1LLlHhdhicDaOwb/nVsRED8=
Subject key identifier: 4D:BF:28:CB:BC:D7:77:61:46:7E:2F:6C:57:01:7E:6A:6A:4B:98:5B
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 018504D44D311A3363047A2CBFDC58E63458
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Tb8oy7zXd2FGfi9sVwF-ampLmFs.roa
Signing time: Mon 12 Dec 2022 05:35:00 +0000
ROA not before: Mon 12 Dec 2022 05:35:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3330
IP address blocks: 195.16.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:04:d4:4d:31:1a:33:63:04:7a:2c:bf:dc:58:e6:34:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Dec 12 05:35:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dbf28cbbcd77761467e2f6c57017e6a6a4b985b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3b:fe:75:6e:4c:2f:d3:ef:a9:09:bc:c7:eb:
d4:81:0f:85:e8:c6:99:3e:7e:3b:e4:e3:8a:c0:f3:
e7:ae:73:05:07:63:5e:0d:7b:c4:02:34:f4:43:59:
4e:67:ba:02:4b:83:0f:c5:e4:1f:04:e2:ef:2f:21:
7a:8c:25:7f:3a:a2:97:fe:1e:7b:83:e2:51:c7:dc:
97:cd:81:7c:d5:9e:5c:7e:f4:7d:41:23:c6:47:65:
97:1a:44:72:97:8a:97:54:60:e3:75:f1:eb:6e:0b:
2d:b1:95:52:0a:58:1c:a9:2d:05:00:5b:54:07:e9:
9c:a2:0e:c4:0f:17:f6:ca:06:62:3c:d9:fa:2e:a9:
33:d8:8d:41:b2:8d:c0:22:28:68:bb:6a:98:a6:6a:
07:c2:46:05:07:0a:52:f5:84:1d:61:bf:3b:19:17:
9f:4a:73:64:9f:38:9b:c1:ee:54:29:62:50:5a:55:
e5:09:09:15:a1:a7:53:bb:27:85:08:4d:b6:b2:45:
43:45:22:48:99:93:7b:05:87:e2:8b:98:ce:35:56:
d7:67:05:1f:62:be:af:1b:d7:9b:1f:88:a2:5c:27:
cf:6e:c9:1d:1c:fb:11:64:c7:3d:79:2d:c3:5d:59:
e0:35:96:a5:4c:04:ef:9e:d6:d2:4c:55:14:30:d5:
63:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BF:28:CB:BC:D7:77:61:46:7E:2F:6C:57:01:7E:6A:6A:4B:98:5B
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Tb8oy7zXd2FGfi9sVwF-ampLmFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.244.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:63:ee:44:17:4e:5b:8b:22:13:22:ab:41:b3:12:48:2e:de:
0f:97:57:2a:67:8f:1b:a0:34:73:48:c3:06:36:d6:b1:36:41:
f1:af:a0:4b:0e:25:cb:6f:88:88:9d:da:77:ca:7d:ff:bd:e8:
2c:e1:33:f1:97:8c:19:f1:e2:cf:30:c7:61:03:4c:b4:90:54:
d0:79:3a:6d:23:6d:83:7d:a2:2f:f9:33:5b:87:17:d6:39:91:
29:9f:2b:e7:e7:84:4b:a0:d8:18:05:1e:68:cc:a4:90:62:24:
38:22:33:7e:e2:09:7d:44:7a:20:f3:4f:e4:b0:73:4b:07:38:
80:50:d3:d8:97:51:44:60:40:d4:9f:4e:b2:8d:12:14:4d:bc:
00:ad:14:e4:53:df:42:b5:b8:1d:5f:7c:14:de:47:e1:51:51:
2f:f6:67:1a:70:cb:c7:8b:af:66:65:e6:d6:a6:e8:e4:e9:a1:
57:3c:a2:b9:40:37:4a:5e:fd:a1:ea:a0:42:93:7b:a1:01:53:
14:2a:5c:3f:18:6a:b3:65:f9:67:d6:aa:c4:70:92:de:f4:e7:
ba:55:cd:18:e9:fb:8b:ca:f9:ec:0f:a6:85:87:9f:3b:75:6f:
04:62:af:9b:05:a4:a5:b2:9d:c1:77:f4:c4:70:2d:af:53:59:
0b:c7:ca:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org