Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/8HXvYtq5_s6Zk8-yyD_s_2Pvq-A.roa
File: 8HXvYtq5_s6Zk8-yyD_s_2Pvq-A.roa (raw, json)
Hash identifier: yO3rtk9tk2FQWvKSDFGsZQT5pIxnq3Hjt4ER4lB6pk0=
Subject key identifier: F0:75:EF:62:DA:B9:FE:CE:99:93:CF:B2:C8:3F:EC:FF:63:EF:AB:E0
Certificate issuer: /CN=44f885220f1719f5837cb5a36fa62f3f537e8e3f
Certificate serial: 03997E4C
Authority key identifier: 44:F8:85:22:0F:17:19:F5:83:7C:B5:A3:6F:A6:2F:3F:53:7E:8E:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPiFIg8XGfWDfLWjb6YvP1N-jj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/8HXvYtq5_s6Zk8-yyD_s_2Pvq-A.roa
Signing time: Sat 01 Jan 2022 05:59:30 +0000
ROA not before: Sat 01 Jan 2022 05:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51222
IP address blocks: 195.54.37.0/24 maxlen: 24
195.54.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60390988 (0x3997e4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f885220f1719f5837cb5a36fa62f3f537e8e3f
Validity
Not Before: Jan 1 05:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f075ef62dab9fece9993cfb2c83fecff63efabe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:10:27:f0:fe:79:05:18:23:3f:6a:f9:20:ff:
2b:2f:f3:50:50:07:88:fe:e1:cf:88:d5:86:1a:d3:
19:92:b4:98:66:49:7f:b5:19:79:06:77:b3:70:4e:
5a:ee:ee:52:4a:1e:f0:3a:72:9f:85:e6:35:33:21:
6b:69:e2:16:7f:30:a4:73:51:8d:5b:3c:59:2a:07:
af:1d:df:45:23:1d:7c:28:44:69:8a:b8:f6:fa:e2:
3b:68:18:c0:a0:f4:f3:bd:88:3c:a3:67:c6:af:cc:
bc:43:de:49:f5:83:37:30:f7:1d:62:1d:35:75:e5:
17:de:46:05:d8:33:fe:9c:e5:0b:84:47:17:16:4b:
e6:99:76:0a:6a:62:4c:48:22:15:27:d4:c2:53:31:
35:44:9e:3d:f6:31:0e:eb:00:30:b2:2e:4b:d6:b3:
fa:93:36:46:c2:6b:e6:28:16:e7:f8:9d:c5:77:0e:
f5:97:e7:eb:45:34:0c:60:5f:9e:cd:91:66:60:27:
af:24:14:12:42:e1:d0:6f:df:54:09:24:2d:f0:06:
a9:79:7d:5b:a9:52:f1:78:af:e2:25:f3:06:4e:23:
97:14:ab:1f:a3:36:ef:e5:e4:c7:40:57:86:ae:9b:
8d:be:46:d0:b2:3f:1c:89:d3:4c:a0:5f:2a:46:62:
0d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:75:EF:62:DA:B9:FE:CE:99:93:CF:B2:C8:3F:EC:FF:63:EF:AB:E0
X509v3 Authority Key Identifier:
keyid:44:F8:85:22:0F:17:19:F5:83:7C:B5:A3:6F:A6:2F:3F:53:7E:8E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPiFIg8XGfWDfLWjb6YvP1N-jj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/8HXvYtq5_s6Zk8-yyD_s_2Pvq-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/RPiFIg8XGfWDfLWjb6YvP1N-jj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.36.0/23
Signature Algorithm: sha256WithRSAEncryption
41:95:49:49:db:6a:5c:41:a7:1b:d3:65:a9:05:4d:f7:0c:de:
a6:d2:4c:ec:d4:ad:b2:12:dc:6c:a4:c5:ed:c9:4d:98:8d:db:
af:27:35:42:4a:c1:4f:d5:5c:20:0a:5b:1b:78:5d:96:df:ab:
a0:6d:57:b7:1b:47:2c:9d:9c:12:0b:38:52:b8:8f:31:fb:75:
b5:8e:92:93:3e:f9:35:44:42:4e:42:d7:38:9e:f3:54:18:f9:
46:01:04:7e:a8:5b:68:16:62:60:af:63:86:14:48:b7:a8:45:
e6:4f:66:c6:64:67:68:e0:7e:ef:74:00:5a:9f:eb:cc:95:78:
37:96:94:7b:9a:90:03:d4:36:a7:8b:5d:cf:ec:b6:88:1c:f4:
89:5b:7d:58:74:66:bf:06:e4:fb:6f:a0:17:c1:3e:4d:c6:88:
43:03:73:1f:9c:4c:fb:8e:81:87:0d:e6:63:58:31:86:4f:37:
5f:e4:5a:e2:bd:63:60:60:2b:85:fc:0a:f4:a6:0c:82:58:c4:
52:4a:7d:21:24:25:e8:30:85:98:11:5a:d5:80:1c:33:41:cb:
a7:0f:83:b3:b6:2a:38:c0:73:6b:01:0d:d0:52:7f:cf:57:88:
72:d3:cd:6e:4f:18:0b:c2:78:5e:67:ab:08:00:68:c5:5d:d6:
22:ae:66:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:05 2024 by rpki-client on console-ams.rpki-client.org