Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/bR_s7fBtGWoNYyeoZMPS1uIU_WA.roa
File: bR_s7fBtGWoNYyeoZMPS1uIU_WA.roa (raw, json)
Hash identifier: OY8FYaVFPrTfLFz+P4Xj9aEOGyys6sEilJuyen87HKU=
Subject key identifier: 6D:1F:EC:ED:F0:6D:19:6A:0D:63:27:A8:64:C3:D2:D6:E2:14:FD:60
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AB0BE8A
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/bR_s7fBtGWoNYyeoZMPS1uIU_WA.roa
Signing time: Sat 01 Jan 2022 12:00:25 +0000
ROA not before: Sat 01 Jan 2022 12:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57886
IP address blocks: 195.214.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179355274 (0xab0be8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d1fecedf06d196a0d6327a864c3d2d6e214fd60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:25:5f:45:56:e5:57:25:46:c8:bf:bf:c6:97:
97:b5:4c:8a:7d:00:ed:ec:27:ac:3a:83:14:6e:14:
22:19:3e:1e:97:bd:f4:a5:46:b7:d2:32:c6:9d:e2:
13:f8:3c:4c:d5:8e:8e:07:0e:13:9f:6e:8e:1f:56:
7a:77:b2:48:35:3c:f2:98:08:fb:74:47:4c:bf:84:
7b:bd:c3:20:a0:fd:89:c1:8c:11:89:a3:4e:f6:de:
4d:b3:20:cc:97:45:54:d5:c0:f2:40:3a:f9:b4:33:
1a:b8:ab:90:71:a3:5a:c7:25:67:fa:55:97:18:b1:
37:78:b8:c3:51:fc:6f:8d:87:4b:fd:02:53:3a:3d:
db:99:da:13:49:f4:b8:29:42:a4:5c:4d:92:2e:af:
7b:81:52:75:80:60:0a:cf:36:89:51:de:fd:41:a2:
c6:4a:3d:36:2d:b3:3b:dd:79:ea:2b:8d:5f:1a:b4:
59:04:80:2d:b7:57:2f:ac:c4:a1:c4:43:c4:1f:53:
49:60:30:79:10:34:ba:e9:5f:8c:b7:45:14:18:81:
19:40:89:57:2b:e0:ae:3f:ac:8e:22:d7:9a:78:07:
34:13:5d:92:ea:b3:a0:5d:eb:3c:f6:67:ef:96:89:
d8:2a:ac:21:22:64:89:ce:2a:f4:19:75:df:58:c9:
38:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1F:EC:ED:F0:6D:19:6A:0D:63:27:A8:64:C3:D2:D6:E2:14:FD:60
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/bR_s7fBtGWoNYyeoZMPS1uIU_WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.160.0/24
Signature Algorithm: sha256WithRSAEncryption
87:1b:fb:06:0f:ed:e9:ab:ec:ec:e4:14:c3:50:a3:94:27:a9:
fe:2a:93:35:c8:7d:a5:38:d7:73:84:95:66:9b:89:c0:b9:07:
7a:0c:85:44:25:71:0e:a9:9e:15:f1:35:67:97:9e:38:aa:8e:
de:9d:05:57:38:c0:be:ec:82:9a:1b:85:c6:e3:b5:83:6e:1b:
36:b6:82:a2:11:94:79:aa:ad:66:85:69:c7:d5:a2:fd:09:e4:
f7:bd:d9:5f:70:69:2e:89:65:ff:b6:41:91:80:65:51:ad:1c:
b4:c0:3f:89:85:8d:06:f7:b5:a2:99:20:12:32:e6:3a:37:e9:
19:bf:98:09:5a:b1:f6:75:f9:5f:52:21:11:e2:d8:14:43:67:
de:11:52:ac:72:ed:b4:55:77:aa:2e:5f:56:3d:38:a6:fe:59:
b7:a6:36:37:96:70:11:77:51:9b:33:96:a2:f6:1b:4f:52:53:
1a:ed:4d:57:16:92:f9:7d:d1:f4:83:2c:a4:06:8a:16:a6:66:
7b:5f:7d:95:12:ad:72:55:c5:4d:bf:94:8f:74:8b:43:4e:88:
01:98:72:e2:d0:18:f1:1e:58:0a:46:7e:5f:33:06:c0:f3:82:
83:00:1e:4a:d8:d9:61:38:99:48:b4:a0:67:12:e7:ed:b1:e5:
97:03:fd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org