Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/b7e78d-67d5-45af-b448-175383e82ef2/1/QdgqFHxM15UIOggOcQux5ulIGlk.roa
File: QdgqFHxM15UIOggOcQux5ulIGlk.roa (raw, json)
Hash identifier: y1FHLUHNKC7XHWNF94S0H8o5bkNCkyENXH3TEahGsF0=
Subject key identifier: 41:D8:2A:14:7C:4C:D7:95:08:3A:08:0E:71:0B:B1:E6:E9:48:1A:59
Certificate issuer: /CN=866dee727e83997c0203c0f718d33b93d77d821d
Certificate serial: 010C80
Authority key identifier: 86:6D:EE:72:7E:83:99:7C:02:03:C0:F7:18:D3:3B:93:D7:7D:82:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hm3ucn6DmXwCA8D3GNM7k9d9gh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/b7e78d-67d5-45af-b448-175383e82ef2/1/QdgqFHxM15UIOggOcQux5ulIGlk.roa
Signing time: Fri 11 Mar 2022 14:57:59 +0000
ROA not before: Fri 11 Mar 2022 14:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68736 (0x10c80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866dee727e83997c0203c0f718d33b93d77d821d
Validity
Not Before: Mar 11 14:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41d82a147c4cd795083a080e710bb1e6e9481a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cd:51:44:01:24:93:75:3d:7b:46:dd:19:a1:
5b:82:2f:a6:3d:f4:19:7c:45:9c:09:80:97:58:b1:
2e:d6:c2:b0:d7:71:82:5e:01:72:4e:7c:0f:fd:52:
25:13:6e:ef:ec:11:42:a3:8a:ee:45:59:f3:a7:cb:
16:63:fd:c5:9a:27:31:ee:f0:36:17:24:5e:dc:7c:
50:cc:05:12:bd:f1:44:d7:01:45:51:35:5f:d6:f2:
8f:ed:4d:db:40:09:fa:9b:65:26:d3:f3:b3:c4:cc:
1c:a9:cf:ec:bd:a8:cf:50:da:9a:87:5a:ea:e3:82:
b6:74:28:e2:80:a5:11:d1:de:15:c1:d6:4d:16:9a:
fa:cc:72:61:8a:a1:b7:79:9b:a3:cb:0e:7c:ad:14:
d7:ee:2c:12:13:a9:9e:2b:ba:dc:3d:9b:a1:93:85:
b7:76:80:60:c5:bd:ab:3f:d4:4d:fe:47:c8:be:81:
24:b4:06:d9:33:e3:2f:5f:3b:91:79:c5:3f:85:21:
41:92:bc:3f:d7:db:8f:78:02:59:26:ca:a0:ce:4f:
dd:a1:e9:76:7c:81:19:7b:a2:e2:b0:ef:1f:99:2c:
91:b9:84:3d:b7:e9:bc:30:49:9a:6b:d4:37:23:cf:
92:91:f5:42:51:69:6b:ad:46:f5:24:0f:34:42:3d:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D8:2A:14:7C:4C:D7:95:08:3A:08:0E:71:0B:B1:E6:E9:48:1A:59
X509v3 Authority Key Identifier:
keyid:86:6D:EE:72:7E:83:99:7C:02:03:C0:F7:18:D3:3B:93:D7:7D:82:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hm3ucn6DmXwCA8D3GNM7k9d9gh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b7e78d-67d5-45af-b448-175383e82ef2/1/QdgqFHxM15UIOggOcQux5ulIGlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b7e78d-67d5-45af-b448-175383e82ef2/1/hm3ucn6DmXwCA8D3GNM7k9d9gh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6a:52:a9:76:9d:4f:0e:9c:3b:e7:7c:fd:85:90:a3:25:cd:
7e:a0:0f:63:3e:e4:37:ee:c8:d6:29:85:b3:62:c0:01:83:85:
b4:a1:e9:fd:9a:40:c7:c4:ae:52:21:ec:1e:04:b8:2a:66:b8:
eb:ed:aa:a7:53:a4:5c:c6:bb:37:11:73:47:c9:25:c6:dc:9d:
71:be:64:5e:b6:b3:61:f6:d4:82:c2:f6:2f:84:99:cd:3e:60:
72:d6:7f:70:27:ee:e1:91:56:0d:85:9f:70:a5:42:b0:f9:29:
91:af:a1:2a:86:f9:81:69:3c:5b:a6:62:16:db:a9:99:bb:b8:
61:30:ee:7d:3b:71:9f:17:08:84:fa:34:89:e9:ee:be:07:94:
13:89:f4:70:5e:7c:90:a8:43:b1:c0:2b:53:71:c7:1f:ad:8a:
7c:5f:e8:71:93:67:2b:16:d9:5a:1f:4e:fe:cd:81:c0:67:89:
94:7a:8f:9e:25:30:ab:1b:b2:23:c7:ff:66:ab:f6:d7:a8:0e:
9d:77:0b:ef:b4:94:f2:9d:fa:19:95:3b:76:50:cc:ac:3e:6c:
e5:8d:6b:d9:a6:43:ad:b2:b1:76:17:7b:10:3d:72:38:84:49:
c6:86:c3:36:12:2a:80:11:7d:0a:79:7a:74:d6:d8:cd:e6:73:
67:71:71:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:34 2023 by rpki-client on console-fra.rpki-client.org