Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9059c8-bbd8-4f6e-a60e-ef26c344ef01/1/h12uvLLNcGRDF0kaO8FHzTrZpXI.roa
File: h12uvLLNcGRDF0kaO8FHzTrZpXI.roa (raw, json)
Hash identifier: uZp+HbijB9uoXIPzWcU/BgzAasoYcugQCQzo+RUIzA0=
Subject key identifier: 87:5D:AE:BC:B2:CD:70:64:43:17:49:1A:3B:C1:47:CD:3A:D9:A5:72
Certificate issuer: /CN=0f54f9e0a7a9eaeeacbc5b10310235b7fd0eed03
Certificate serial: 02E51E7D
Authority key identifier: 0F:54:F9:E0:A7:A9:EA:EE:AC:BC:5B:10:31:02:35:B7:FD:0E:ED:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D1T54Kep6u6svFsQMQI1t_0O7QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9059c8-bbd8-4f6e-a60e-ef26c344ef01/1/h12uvLLNcGRDF0kaO8FHzTrZpXI.roa
Signing time: Sat 01 Jan 2022 14:04:06 +0000
ROA not before: Sat 01 Jan 2022 14:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199901
IP address blocks: 195.62.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48569981 (0x2e51e7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f54f9e0a7a9eaeeacbc5b10310235b7fd0eed03
Validity
Not Before: Jan 1 14:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=875daebcb2cd70644317491a3bc147cd3ad9a572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:94:ba:4f:02:f5:4c:77:ed:04:23:42:3d:
52:e5:64:e1:90:3e:4c:46:e6:b6:92:bb:41:92:4d:
55:07:e4:52:6b:87:ec:d8:59:a6:cc:99:48:4c:76:
fd:e9:da:d8:eb:f6:a2:33:11:f6:c1:da:7e:5c:bc:
8f:89:a6:d8:34:ad:01:75:ed:1e:28:c0:9a:bd:af:
74:d7:0e:bc:af:14:12:a6:97:11:ba:82:8e:a2:6b:
d6:5d:c6:61:1f:9b:47:ac:4f:9c:23:c5:40:d5:ee:
67:9e:60:a2:25:6b:96:ed:67:63:79:71:46:12:7d:
ea:43:c0:d7:d3:02:43:98:ef:94:36:df:a3:3f:ff:
1d:01:0b:1d:34:d2:bc:28:f0:47:23:0d:2d:73:04:
44:ad:8f:c5:45:c1:85:bd:a2:83:66:03:6e:25:9e:
a5:47:63:21:0f:f3:86:51:2c:68:34:58:0f:3a:a3:
e1:91:65:ff:4b:6e:ca:b4:5f:25:92:53:dd:c9:a5:
bb:43:c4:fd:1b:80:e0:11:39:30:2a:61:3b:a3:5b:
54:50:cf:0d:cd:ed:51:7b:2a:73:44:99:d3:6b:09:
98:86:43:eb:29:35:1b:05:51:6c:90:cf:23:ea:16:
0a:a0:f0:f6:95:d1:0f:f2:b3:71:93:fd:3a:ad:c2:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5D:AE:BC:B2:CD:70:64:43:17:49:1A:3B:C1:47:CD:3A:D9:A5:72
X509v3 Authority Key Identifier:
keyid:0F:54:F9:E0:A7:A9:EA:EE:AC:BC:5B:10:31:02:35:B7:FD:0E:ED:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D1T54Kep6u6svFsQMQI1t_0O7QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9059c8-bbd8-4f6e-a60e-ef26c344ef01/1/h12uvLLNcGRDF0kaO8FHzTrZpXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9059c8-bbd8-4f6e-a60e-ef26c344ef01/1/D1T54Kep6u6svFsQMQI1t_0O7QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:36:5b:ed:83:71:1c:a1:dd:f9:f4:08:0b:93:af:a6:81:51:
32:6d:66:87:cf:7a:6b:5a:67:fc:55:7f:2e:d5:16:ff:c3:fb:
5c:9c:e7:4e:98:e9:f2:42:92:db:33:72:5a:9a:93:c3:f0:dd:
86:ce:7f:b8:1d:33:e3:90:59:f4:8b:b8:3e:f8:c9:17:93:14:
14:43:46:12:88:b2:19:f2:6d:58:25:22:57:ee:18:5f:af:75:
5e:c4:d1:cb:12:01:fa:0d:72:a9:c9:d9:6e:92:7a:cf:0c:f5:
ad:a3:50:6a:a6:a5:53:45:09:0d:68:3a:e3:f3:0c:ee:eb:b9:
19:1d:e2:66:91:45:b9:34:d2:9d:38:2a:fe:64:9b:c1:20:18:
c9:60:3f:3b:27:c9:b8:c7:41:8e:8d:d0:f6:0c:a9:b1:ec:a3:
c2:53:e7:9f:2a:25:cf:8c:a5:84:c0:2c:9a:d6:33:77:58:16:
e5:70:1a:31:6e:31:07:c2:97:20:72:f7:bd:fd:7b:2e:10:d1:
4b:b6:3b:7e:8d:70:c6:74:db:fc:67:03:09:4f:d4:3b:bf:4c:
74:f3:e1:7c:32:17:2c:a9:4c:48:dd:eb:6e:6e:7d:58:14:40:
3e:26:af:8b:78:61:4e:59:10:55:c7:db:c7:ac:2d:50:83:6c:
da:9c:5c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org