Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/DC6h9NaWhoAbwdaBAj-dBWMZ8ak.roa
File: DC6h9NaWhoAbwdaBAj-dBWMZ8ak.roa (raw, json)
Hash identifier: ndYttDU9hZXQVTg4CSJk2h02t72Z7y/U3Odg4AlPVnc=
Subject key identifier: 0C:2E:A1:F4:D6:96:86:80:1B:C1:D6:81:02:3F:9D:05:63:19:F1:A9
Certificate issuer: /CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Certificate serial: 0203D2
Authority key identifier: 16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/DC6h9NaWhoAbwdaBAj-dBWMZ8ak.roa
Signing time: Fri 11 Mar 2022 14:58:54 +0000
ROA not before: Fri 11 Mar 2022 14:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132050 (0x203d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Validity
Not Before: Mar 11 14:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c2ea1f4d69686801bc1d681023f9d056319f1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:41:a3:5b:bc:88:23:90:36:79:47:97:4a:cd:
9f:db:4c:f4:cf:f4:03:4a:76:8a:16:cc:ec:2f:30:
5d:af:35:0e:0c:b5:4e:a1:97:70:d0:91:6d:cc:91:
03:ed:5a:e0:ff:dd:99:5e:1b:e2:27:8f:5b:df:91:
ce:bc:ad:83:f9:fe:57:e2:d5:4c:70:a6:fb:dc:d8:
41:3f:4b:ab:0f:e9:ab:92:d6:21:bf:bc:a5:1b:70:
c2:f3:a1:2e:55:58:d3:1f:22:bf:26:e6:bc:b4:fc:
d7:27:39:32:d5:5e:48:18:86:fe:cf:3a:1d:27:69:
8b:84:72:d4:2e:5d:1c:94:00:ee:68:b6:6c:ec:dd:
24:ff:30:2f:3d:ce:9b:2b:b1:ff:be:62:e8:9e:06:
13:a8:67:78:5a:4f:f3:17:bb:9e:1e:f1:0c:3e:50:
47:6c:67:9c:ad:07:f2:0f:0d:9a:94:4e:e4:ad:7f:
f2:96:92:1f:18:66:3f:fb:b3:6f:0f:55:43:62:6e:
e4:b1:73:01:4e:71:c1:52:51:39:07:36:40:fa:88:
a9:f5:ae:db:ac:b8:5c:02:86:6b:4a:36:42:b7:76:
5f:ca:60:85:90:c7:a9:18:b3:91:c6:14:39:66:2f:
87:38:bd:c7:30:de:b6:65:da:84:6e:1a:52:cc:d4:
3c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:2E:A1:F4:D6:96:86:80:1B:C1:D6:81:02:3F:9D:05:63:19:F1:A9
X509v3 Authority Key Identifier:
keyid:16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/DC6h9NaWhoAbwdaBAj-dBWMZ8ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/Fl-HY_uPLn_S87k4BEhPq076ub0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.120.0/24
Signature Algorithm: sha256WithRSAEncryption
43:60:7d:a9:e4:b2:2a:99:08:27:9e:d6:a5:27:9e:c2:60:c0:
1a:d9:f2:fc:d8:b3:27:0b:1a:bc:eb:a1:69:2a:64:cc:fa:ee:
c6:5c:92:fc:f4:09:2a:68:c2:be:8e:77:a7:ac:55:b4:47:b6:
d5:cb:5e:a7:07:1d:ef:ad:72:6e:dd:35:6b:b2:6a:f8:11:dd:
37:2c:18:f3:9d:c5:2c:26:68:70:02:5b:78:89:6a:4f:21:f1:
3b:6f:6e:c8:cf:35:69:22:c3:ab:90:ce:ba:c9:75:fb:72:33:
cc:90:24:85:e9:62:4d:4e:48:da:c4:08:93:31:c9:04:40:b0:
d7:75:7d:70:ee:32:59:e5:19:4a:7a:2d:b1:8d:54:20:f8:ea:
af:46:c3:5b:cf:19:31:c6:cc:aa:fc:63:e9:5c:1d:da:2f:ae:
68:73:23:8f:53:cf:cb:df:79:cd:f0:59:8a:b8:d2:ee:23:c7:
ed:e9:0e:ea:5f:b8:2c:99:dd:6b:36:bd:2e:e5:a5:70:b6:6d:
61:5f:18:03:65:87:49:ee:fa:35:85:32:2b:cf:71:be:c6:a4:
b2:b6:33:03:82:40:d3:05:56:64:4a:12:5b:1a:b4:50:e1:55:
47:47:7a:fe:80:48:2d:63:4c:d8:5d:81:e1:26:71:28:b0:03:
07:da:4b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:54 2023 by rpki-client on console-fra.rpki-client.org