Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/4cffef-9a97-4546-bddd-bb3cc7c944ad/1/HeYEciRP7Z7ZTQm_6ynVLouofik.roa
File: HeYEciRP7Z7ZTQm_6ynVLouofik.roa (raw, json)
Hash identifier: 0V/w5mF2Qz50EsIgDr6AyshEazIhWg9G3HRg6C+xVCg=
Subject key identifier: 1D:E6:04:72:24:4F:ED:9E:D9:4D:09:BF:EB:29:D5:2E:8B:A8:7E:29
Certificate issuer: /CN=0bd7e70c005f556a8254e7b12b0eb3d3314d45e2
Certificate serial: 0182640014F1C04C841B5C80C49BB2DF0E00
Authority key identifier: 0B:D7:E7:0C:00:5F:55:6A:82:54:E7:B1:2B:0E:B3:D3:31:4D:45:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C9fnDABfVWqCVOexKw6z0zFNReI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/4cffef-9a97-4546-bddd-bb3cc7c944ad/1/HeYEciRP7Z7ZTQm_6ynVLouofik.roa
Signing time: Wed 03 Aug 2022 13:58:23 +0000
ROA not before: Wed 03 Aug 2022 13:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35024
IP address blocks: 195.225.34.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:64:00:14:f1:c0:4c:84:1b:5c:80:c4:9b:b2:df:0e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bd7e70c005f556a8254e7b12b0eb3d3314d45e2
Validity
Not Before: Aug 3 13:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1de60472244fed9ed94d09bfeb29d52e8ba87e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0c:a1:db:74:9a:e6:72:92:18:73:d7:ae:eb:
44:05:9a:ad:22:16:08:29:7e:47:f1:76:9f:6c:69:
3f:e1:11:72:16:2c:db:c9:35:80:e3:a2:a9:42:1f:
a3:cf:3f:d8:83:e7:b3:c0:b5:d9:19:5a:fa:ea:f4:
ad:6e:a0:64:93:32:08:8b:aa:7f:16:66:c3:ef:5e:
45:b8:8d:0b:96:78:ab:90:4a:76:8f:15:75:4d:3c:
46:06:a9:5c:36:45:28:a4:53:31:e1:f7:99:6f:51:
db:b1:9f:c3:98:83:15:93:8e:a6:db:70:f6:1b:f9:
d3:81:d6:f6:6a:19:92:52:10:0f:14:81:4b:c9:0b:
05:c4:9d:05:7a:6a:e4:71:57:80:3e:56:03:ff:fd:
84:f9:15:d8:d7:01:71:76:b9:64:a7:db:35:73:3d:
96:1c:25:dc:e2:9e:a2:42:f9:db:e0:b5:7b:bb:08:
d4:4e:11:2f:23:bb:6d:81:5a:a8:ed:05:56:d1:fe:
48:40:01:f2:11:7d:53:20:d1:38:73:cd:0d:3c:82:
a6:47:61:82:a0:04:e2:75:30:7c:65:f7:1b:64:21:
84:11:12:30:bd:e8:19:2d:c4:87:4c:38:4f:5a:a0:
2c:7d:11:cb:61:dc:9c:03:45:39:9b:4b:2e:88:85:
d2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E6:04:72:24:4F:ED:9E:D9:4D:09:BF:EB:29:D5:2E:8B:A8:7E:29
X509v3 Authority Key Identifier:
keyid:0B:D7:E7:0C:00:5F:55:6A:82:54:E7:B1:2B:0E:B3:D3:31:4D:45:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C9fnDABfVWqCVOexKw6z0zFNReI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4cffef-9a97-4546-bddd-bb3cc7c944ad/1/HeYEciRP7Z7ZTQm_6ynVLouofik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4cffef-9a97-4546-bddd-bb3cc7c944ad/1/C9fnDABfVWqCVOexKw6z0zFNReI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.34.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:fd:37:89:ee:ee:56:08:1e:f1:67:31:c7:1a:62:ef:11:ca:
58:db:25:8a:9e:de:86:b9:8e:8f:e5:df:21:ac:36:10:9a:df:
60:16:92:d0:48:74:5c:e6:43:51:c6:f8:b5:e8:c5:a9:1e:02:
6d:18:a9:24:50:40:78:58:50:46:d3:69:d4:98:d9:df:ae:f9:
c6:0e:89:01:8f:f8:62:13:f4:89:94:12:2c:26:e9:d7:be:bf:
22:67:79:64:7c:0e:58:7e:a8:43:31:0a:5a:9e:26:40:d2:90:
87:19:a3:91:96:09:58:45:12:08:db:c2:ce:22:38:dd:cc:07:
f1:c0:dc:36:da:4a:21:f5:bb:19:ea:2d:b1:b8:96:3b:e9:b8:
d9:d2:f9:20:68:11:5e:01:93:aa:ed:c1:74:ce:77:c8:26:1a:
fa:03:f3:d0:6f:be:f5:90:d1:f0:c3:41:a0:f1:a9:ee:0f:90:
1f:50:cf:82:78:27:5a:1f:1c:ce:1a:20:b8:18:04:e9:16:b3:
9c:5f:65:af:fd:a6:92:e0:bf:b5:b6:87:68:0b:7b:1f:4a:0f:
58:31:42:55:18:54:5a:a6:02:be:44:ad:b0:4e:4d:4a:34:35:
0b:71:b4:6e:20:c9:12:1c:8c:18:90:ec:6a:ac:ec:a5:e5:e8:
38:f3:8f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:44 2024 by rpki-client on console-ams.rpki-client.org