Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/0-t9YwBVJv3XDTz3YfNI-GiduFc.roa
File: 0-t9YwBVJv3XDTz3YfNI-GiduFc.roa (raw, json)
Hash identifier: Qe4ktB8psgAIYCpTtbtdsBD10PSVHDR4r4vf/SNr53E=
Subject key identifier: D3:EB:7D:63:00:55:26:FD:D7:0D:3C:F7:61:F3:48:F8:68:9D:B8:57
Certificate issuer: /CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Certificate serial: A5BFD1
Authority key identifier: 3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/0-t9YwBVJv3XDTz3YfNI-GiduFc.roa
Signing time: Sat 01 Jan 2022 02:55:42 +0000
ROA not before: Sat 01 Jan 2022 02:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31064
IP address blocks: 195.16.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10862545 (0xa5bfd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Validity
Not Before: Jan 1 02:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3eb7d63005526fdd70d3cf761f348f8689db857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:16:7d:f8:f4:d4:3f:f8:b5:28:fb:76:7a:
6f:60:46:59:df:2b:bc:d8:55:0b:45:f7:ea:f8:ed:
8a:af:76:80:3b:4a:2f:a1:a2:ad:b7:8d:16:88:ad:
a4:cc:15:07:b3:59:a2:b7:96:25:7f:70:c3:25:68:
2f:fa:06:eb:6e:1d:8f:34:98:52:a8:b0:8d:df:e2:
68:e6:6f:92:a2:da:50:ee:6e:a7:55:2a:4f:cc:6a:
5f:ce:95:41:1b:9b:16:60:63:f3:f1:c1:44:36:96:
68:ea:a0:2e:cc:d8:f1:c1:b5:d2:74:09:d7:98:83:
d0:b4:f4:0c:1c:17:ed:75:b0:46:a7:db:be:4b:88:
8b:79:86:0f:81:b3:c3:46:bd:77:41:4c:43:76:51:
ed:ed:89:50:58:7b:9b:c1:e0:84:ff:13:c0:1b:0d:
d6:67:8d:4b:f5:25:e3:53:ca:af:df:0a:f8:cb:bc:
c2:fd:96:05:03:bb:33:29:6c:d9:89:96:b7:82:01:
9e:f8:54:0b:c9:12:bf:0c:b0:62:a5:0a:03:d1:29:
ff:d8:65:cc:4b:35:9f:53:e4:45:f3:a7:7f:69:4c:
72:ba:91:fc:ba:54:6e:2b:1c:26:b0:bf:a4:30:dd:
0b:4f:64:c8:64:bf:14:9e:3e:7a:93:ea:4d:c9:b1:
4a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:EB:7D:63:00:55:26:FD:D7:0D:3C:F7:61:F3:48:F8:68:9D:B8:57
X509v3 Authority Key Identifier:
keyid:3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/0-t9YwBVJv3XDTz3YfNI-GiduFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/OuFF_jt5sr9oqtvgB9721yrvKsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.84.0/22
Signature Algorithm: sha256WithRSAEncryption
e0:42:ec:8d:d5:58:53:7c:c9:30:2f:b7:eb:86:85:d8:54:58:
3d:9c:1e:44:b3:f1:d5:6f:9a:a9:de:0d:a6:5f:c0:4e:30:b0:
6e:13:dd:4a:e0:ff:3f:86:4a:57:c9:9d:f6:c4:c9:04:1a:0e:
8a:9e:53:a8:7c:06:f3:76:51:02:c7:e5:67:92:87:b5:41:11:
f9:20:ec:8d:dc:7a:f7:28:6b:ad:18:1a:93:09:eb:38:0a:cd:
e3:10:ae:d8:d1:7d:7f:c4:43:a8:b0:45:cf:c4:13:9b:fc:dd:
8d:ff:17:d1:3d:b7:ee:40:73:a8:d2:2c:b5:73:3a:2e:c5:fc:
c8:b5:50:3f:14:f4:63:67:21:16:73:b4:1e:25:ea:49:c7:50:
b6:58:91:81:72:52:ed:f9:9b:61:88:16:28:b8:67:33:85:7d:
78:bd:e8:a6:2b:d5:b6:b6:d1:99:98:b6:29:bb:be:19:6e:3d:
7d:88:9a:5c:97:a7:58:32:d3:f6:4b:0f:a3:ad:51:bf:7f:89:
ff:a3:2c:91:51:30:d0:4e:4e:a0:2c:1b:6c:eb:f5:8d:aa:bd:
9e:27:39:89:f2:4a:60:f9:75:cf:f6:9c:7a:3f:db:a1:0b:e7:
01:d4:81:48:02:df:6a:69:c8:2a:ae:5d:87:d3:3d:f7:df:aa:
b4:26:1a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-fra.rpki-client.org