Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/Hztgxh4IFpdmOva09zwVgZY8Ixk.roa
File: Hztgxh4IFpdmOva09zwVgZY8Ixk.roa (raw, json)
Hash identifier: 9p09AaNWdPKc/HCAUt6VbwmK8s31v6al4lh6XqZkF2w=
Subject key identifier: 1F:3B:60:C6:1E:08:16:97:66:3A:F6:B4:F7:3C:15:81:96:3C:23:19
Certificate issuer: /CN=0dd6efbe54671d71a59051e29a2448cd6af8d467
Certificate serial: 0B2605BA
Authority key identifier: 0D:D6:EF:BE:54:67:1D:71:A5:90:51:E2:9A:24:48:CD:6A:F8:D4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdbvvlRnHXGlkFHimiRIzWr41Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/Hztgxh4IFpdmOva09zwVgZY8Ixk.roa
Signing time: Sat 01 Jan 2022 12:06:50 +0000
ROA not before: Sat 01 Jan 2022 12:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42888
IP address blocks: 195.130.193.0/24 maxlen: 24
2001:67c:2144::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187041210 (0xb2605ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd6efbe54671d71a59051e29a2448cd6af8d467
Validity
Not Before: Jan 1 12:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f3b60c61e081697663af6b4f73c1581963c2319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:4b:4e:1c:47:63:be:97:a2:1f:2e:92:25:
c2:a5:10:90:6f:2c:ac:f9:80:59:fc:cd:5c:08:7e:
05:64:c5:e8:66:ae:c8:c3:39:c9:48:f1:94:af:74:
c1:17:8c:33:c5:af:6e:a4:a7:21:d5:32:39:ba:a9:
a2:b5:e8:ad:43:19:4c:e9:22:d1:d5:cb:52:de:f2:
d1:f9:43:1e:8b:1d:3a:b4:78:77:49:73:f4:68:fc:
c0:f6:99:6a:0a:21:66:9f:60:d2:09:b0:6d:1e:29:
16:1e:1c:c2:31:35:f7:12:e6:52:ef:72:7b:64:d5:
ad:3b:89:58:de:cd:3e:d5:18:ad:d9:d8:08:63:f6:
d1:56:53:d1:c9:2d:d8:fb:6d:72:e6:05:b1:b9:0b:
c7:d4:bb:4c:13:7a:c9:aa:a5:2f:4a:26:9a:fc:4c:
32:7d:6e:3c:7a:fc:11:63:7b:8e:c3:4e:00:48:07:
64:f9:90:90:1a:a8:70:27:f4:ad:6f:f2:7a:9e:77:
5d:ff:1b:34:84:6f:dc:45:4b:76:52:aa:34:3f:36:
e1:d9:10:81:78:87:7e:e0:06:1a:11:63:7d:ef:0c:
99:e5:1c:6e:83:99:e8:19:48:db:63:07:9f:44:c3:
42:62:28:5b:61:5a:92:9b:33:ea:a7:a1:65:71:dd:
db:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3B:60:C6:1E:08:16:97:66:3A:F6:B4:F7:3C:15:81:96:3C:23:19
X509v3 Authority Key Identifier:
keyid:0D:D6:EF:BE:54:67:1D:71:A5:90:51:E2:9A:24:48:CD:6A:F8:D4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdbvvlRnHXGlkFHimiRIzWr41Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/Hztgxh4IFpdmOva09zwVgZY8Ixk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/DdbvvlRnHXGlkFHimiRIzWr41Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.193.0/24
IPv6:
2001:67c:2144::/48
Signature Algorithm: sha256WithRSAEncryption
41:0f:72:f9:0f:ce:d5:98:3b:eb:55:f4:c9:3d:82:9c:ac:42:
b8:93:69:47:b2:98:e0:96:31:72:1e:a5:9f:ff:62:a6:73:ef:
41:8a:ee:7d:7c:6f:27:a7:ed:2e:5d:81:82:62:51:36:de:b0:
8b:69:6f:97:cb:5b:27:1c:a2:a9:7f:6a:e2:8c:76:b2:b0:be:
3a:20:0f:5d:58:56:a7:95:f9:22:88:99:19:95:eb:69:e5:9f:
4e:b6:8b:2c:e2:db:d8:3b:da:02:ff:12:60:5a:1e:5f:fb:6e:
76:fd:7a:bc:c7:27:87:df:4e:ed:1b:16:6a:87:4f:d1:f6:e9:
96:67:c0:26:e6:cd:87:e5:b9:75:4b:12:24:7c:9a:67:4b:7b:
09:db:17:72:42:af:9c:aa:b5:bd:6a:10:94:98:0c:bd:40:a8:
fd:27:58:61:ae:c1:cc:16:2b:24:18:8a:41:bd:bc:5d:c2:98:
b7:0e:82:c5:39:98:96:06:2c:78:a8:37:db:e8:28:2a:4d:15:
db:6b:db:5a:73:8d:e6:0e:cf:de:b2:4e:82:4c:9d:99:01:d9:
29:82:8e:d8:1a:e3:d1:0c:51:c3:9d:77:65:e6:a9:49:cf:ca:
a2:6a:5d:78:27:58:2c:c9:a9:06:39:9b:c7:44:c3:ee:8d:8e:
ab:41:28:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:14 2023 by rpki-client on console-fra.rpki-client.org