Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/DBHlkj7Za_m23lF3JtmYcjIIyi4.roa
File: DBHlkj7Za_m23lF3JtmYcjIIyi4.roa (raw, json)
Hash identifier: hHxOHEfgdTqRBgQRq4+aDe7NgLvlV11tdG2d1gLurNE=
Subject key identifier: 0C:11:E5:92:3E:D9:6B:F9:B6:DE:51:77:26:D9:98:72:32:08:CA:2E
Certificate issuer: /CN=fdf4b621eeb739d24fc92ad78d2776da7b870027
Certificate serial: 0156D3C7
Authority key identifier: FD:F4:B6:21:EE:B7:39:D2:4F:C9:2A:D7:8D:27:76:DA:7B:87:00:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_fS2Ie63OdJPySrXjSd22nuHACc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/DBHlkj7Za_m23lF3JtmYcjIIyi4.roa
Signing time: Sat 19 Feb 2022 18:29:26 +0000
ROA not before: Sat 19 Feb 2022 18:29:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 188.95.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22467527 (0x156d3c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdf4b621eeb739d24fc92ad78d2776da7b870027
Validity
Not Before: Feb 19 18:29:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c11e5923ed96bf9b6de517726d998723208ca2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:69:65:fb:02:5d:3b:cd:05:dd:2d:29:ad:5f:
76:88:67:6b:07:aa:ed:a8:4b:87:e1:1e:10:b1:7c:
f5:17:3f:ea:91:1a:d5:a2:0d:41:a5:d9:12:38:d3:
6e:e2:44:38:5f:a4:79:a5:dd:79:59:e0:44:7a:be:
d8:90:cd:12:76:8b:7d:90:14:40:79:c8:20:bb:31:
d8:3c:05:1b:70:92:06:f3:e1:bf:a5:3c:28:db:c1:
e9:a3:ff:b4:32:07:4d:1e:a0:7d:77:23:7c:cd:98:
de:e3:31:78:1b:16:48:fa:73:b4:ca:91:c1:84:da:
3b:7b:d9:2d:14:7a:31:e7:30:1c:9d:f7:74:f5:5c:
13:3c:b8:3e:8d:b1:47:53:5d:45:80:6a:1b:66:87:
c4:a8:32:7b:a3:3b:57:02:bd:40:e6:cf:3b:c6:ee:
b7:09:88:2f:63:90:9d:bb:3f:31:fb:7b:b4:ae:04:
7e:03:86:c7:5d:47:19:77:ac:a3:53:23:cc:f2:6f:
b7:0e:18:37:57:33:13:d1:9f:58:84:1e:fe:dd:30:
a1:d5:43:61:1a:0f:a1:9e:04:2f:c9:09:db:9f:fa:
59:09:73:5c:9c:6c:80:50:d9:58:da:ce:d5:18:41:
c1:e2:8f:e5:b1:99:34:67:9a:52:91:ef:2c:74:b7:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:11:E5:92:3E:D9:6B:F9:B6:DE:51:77:26:D9:98:72:32:08:CA:2E
X509v3 Authority Key Identifier:
keyid:FD:F4:B6:21:EE:B7:39:D2:4F:C9:2A:D7:8D:27:76:DA:7B:87:00:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_fS2Ie63OdJPySrXjSd22nuHACc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/DBHlkj7Za_m23lF3JtmYcjIIyi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/_fS2Ie63OdJPySrXjSd22nuHACc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.70.0/24
Signature Algorithm: sha256WithRSAEncryption
83:fb:f5:6f:31:8d:6e:4b:17:36:dd:02:93:bc:76:c2:78:bc:
d4:c9:e8:87:99:36:80:6a:db:97:ce:ef:03:10:3d:5e:01:32:
58:d5:75:b5:44:b2:0a:25:14:92:a5:b7:31:18:dc:85:c2:26:
19:93:0d:d4:38:bc:22:2d:8c:58:af:8b:85:9d:c2:90:ec:62:
1d:ba:fd:4f:ab:0f:e8:00:68:59:40:49:17:3a:4d:f3:a2:14:
36:3a:37:3d:70:72:82:2b:bf:22:e2:d1:b6:6e:d5:d4:72:f5:
fc:43:57:ed:40:d3:50:59:bf:f3:31:9a:bd:1a:f0:72:0c:63:
2d:0a:c5:5e:ff:9f:f0:b3:5a:d4:60:e2:ee:c6:1e:7a:cd:c5:
61:7f:22:00:3a:ba:b1:9b:09:06:e5:91:d2:79:b7:8b:03:22:
34:8f:82:e0:69:29:a2:be:8d:42:4a:8f:22:84:a2:1e:3f:19:
16:41:c9:8d:61:57:22:6e:1a:5d:06:41:c2:fd:1c:ed:43:b0:
06:f3:b9:0d:33:2b:8a:53:44:21:77:7f:ab:94:5d:f9:10:f1:
c4:26:0e:49:d7:1e:55:2e:2f:19:9d:a7:12:42:b7:3f:b9:a4:
0c:f6:88:3b:67:02:4a:73:ee:31:f9:8a:bf:5a:83:42:53:91:
a9:c1:02:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:21 2023 by rpki-client on console-ams.rpki-client.org