Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/grfX3DMIoV0U81zePLsaLG98SSc.roa
File: grfX3DMIoV0U81zePLsaLG98SSc.roa (raw, json)
Hash identifier: 4Jby8leUlmgxxjWqqPRl9MRFp1a0dqq5kKlRCJaaT84=
Subject key identifier: 82:B7:D7:DC:33:08:A1:5D:14:F3:5C:DE:3C:BB:1A:2C:6F:7C:49:27
Certificate issuer: /CN=c9da2ff5a77e78eec3033dda5749a4a8c1e55164
Certificate serial: 01821F83BD0B5A29935B27B4B66D60374C3C
Authority key identifier: C9:DA:2F:F5:A7:7E:78:EE:C3:03:3D:DA:57:49:A4:A8:C1:E5:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydov9ad-eO7DAz3aV0mkqMHlUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/grfX3DMIoV0U81zePLsaLG98SSc.roa
Signing time: Thu 21 Jul 2022 06:48:23 +0000
ROA not before: Thu 21 Jul 2022 06:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:83:bd:0b:5a:29:93:5b:27:b4:b6:6d:60:37:4c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9da2ff5a77e78eec3033dda5749a4a8c1e55164
Validity
Not Before: Jul 21 06:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82b7d7dc3308a15d14f35cde3cbb1a2c6f7c4927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e5:d5:39:a6:86:5d:85:d4:0a:6f:d1:7a:38:
8f:55:bf:3b:e5:4b:e1:3b:7e:2d:a4:c8:d5:cc:3e:
5d:5a:4c:71:fb:a9:0c:06:55:37:3c:80:c1:f2:55:
01:71:1e:64:ff:0a:d9:12:a6:45:81:43:4e:10:13:
e8:96:8c:86:ea:8b:75:04:2e:a3:84:99:2d:53:d1:
a9:4a:69:80:2f:dc:cd:07:43:cc:ae:09:9e:29:c5:
b6:2a:49:6e:d1:10:db:c2:f7:be:d5:57:d4:ee:f6:
f1:20:5b:7e:75:57:f5:2b:51:17:3b:d6:53:43:21:
62:d3:1a:4f:84:1d:1a:ea:08:0d:cb:0a:6e:e9:95:
f3:85:bb:b1:a1:a1:5a:43:36:ea:74:69:11:d2:83:
86:ab:be:33:89:ea:67:07:5a:11:48:25:66:10:a2:
11:cf:90:f8:f0:c1:a1:78:c9:62:90:89:6e:5a:fd:
5c:b2:ee:ca:c2:40:8c:20:2a:5c:06:1b:30:66:44:
8c:80:21:2f:a4:5e:8d:0a:64:b0:53:51:ef:bb:a4:
be:78:3b:a7:d1:ff:aa:1c:15:c0:16:e6:f2:ea:da:
83:69:f2:e0:28:df:c7:b7:78:b9:1c:67:a5:29:61:
73:8b:87:4e:af:ce:df:a8:fb:18:e4:28:46:19:d7:
2d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B7:D7:DC:33:08:A1:5D:14:F3:5C:DE:3C:BB:1A:2C:6F:7C:49:27
X509v3 Authority Key Identifier:
keyid:C9:DA:2F:F5:A7:7E:78:EE:C3:03:3D:DA:57:49:A4:A8:C1:E5:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydov9ad-eO7DAz3aV0mkqMHlUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/grfX3DMIoV0U81zePLsaLG98SSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/ydov9ad-eO7DAz3aV0mkqMHlUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.115.0/24
Signature Algorithm: sha256WithRSAEncryption
53:fc:ef:37:42:1a:56:72:fd:df:1e:c2:44:15:85:4d:a5:d6:
f4:13:1f:44:a6:44:da:97:db:c7:a9:a1:02:67:fe:4e:ed:b4:
9a:cd:1b:3c:26:19:62:34:ab:e3:63:fe:ff:b5:b8:9b:9e:ef:
7b:44:05:32:f1:b5:b3:e9:1f:b4:a5:af:2c:d4:4c:68:3f:82:
b0:41:8c:e8:8a:a0:42:74:c8:a5:ec:46:5f:97:cf:a6:e8:3f:
ff:1a:b7:8d:4b:78:82:ca:81:54:d9:36:c7:be:82:7c:98:9e:
b2:97:c4:13:83:3d:50:7c:38:60:5e:be:e5:07:eb:34:d9:cd:
bf:b6:03:da:72:c8:32:2c:e0:e9:d3:f2:01:bc:14:1a:c9:7e:
12:a1:a8:af:4b:0e:2e:43:d1:09:62:8f:5c:df:a5:30:88:3d:
2e:03:b7:83:ab:ef:80:f1:8a:73:ee:d8:3a:1b:87:5e:0a:cc:
14:b6:c9:7e:5b:c3:02:7e:49:5b:73:3f:54:0d:05:e0:dc:e3:
09:44:d1:5c:36:23:03:df:94:e7:8f:19:40:f1:21:dd:2d:3a:
0a:aa:c6:74:7b:1b:20:bb:fd:58:a5:6e:a2:11:14:d2:51:16:
bd:0e:ad:6d:1e:f7:9c:ac:e0:6d:98:aa:48:88:9c:93:9f:a5:
88:4c:cf:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:42 2023 by rpki-client on console-ams.rpki-client.org