Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/x3HCXEYxYfbSw3tHK0td4uFN75U.roa
File: x3HCXEYxYfbSw3tHK0td4uFN75U.roa (raw, json)
Hash identifier: u9wb04wwS+rMYBz5UgvOp1rUqxOkPKGX4BC8NmBOQIo=
Subject key identifier: C7:71:C2:5C:46:31:61:F6:D2:C3:7B:47:2B:4B:5D:E2:E1:4D:EF:95
Certificate issuer: /CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Certificate serial: 03BF9458
Authority key identifier: 0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/x3HCXEYxYfbSw3tHK0td4uFN75U.roa
Signing time: Sat 01 Jan 2022 07:01:12 +0000
ROA not before: Sat 01 Jan 2022 07:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197091
IP address blocks: 195.43.73.0/24 maxlen: 24
195.43.72.0/24 maxlen: 24
195.43.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62887000 (0x3bf9458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Validity
Not Before: Jan 1 07:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c771c25c463161f6d2c37b472b4b5de2e14def95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:de:86:16:b4:51:71:5d:aa:14:1c:e7:27:
91:10:fb:d0:43:da:da:3e:94:25:6b:d3:e0:9f:12:
4c:ab:23:ad:0d:37:f2:cd:14:33:17:af:7c:fa:65:
32:0e:58:aa:38:09:15:e5:bb:14:e3:db:2b:ec:00:
71:63:9e:69:20:37:0a:c3:ff:61:34:f3:84:01:44:
74:ac:6b:95:d3:5f:ef:ea:4b:0e:f1:c3:8e:24:10:
a1:bc:d7:cf:1d:ce:12:09:37:4c:d7:f7:ee:68:c9:
58:a3:6b:d4:db:a4:44:ab:42:dc:7b:db:a8:2d:54:
a1:79:9c:eb:93:ce:78:2f:b7:16:81:f5:5d:6a:e3:
30:bf:1d:c6:2f:38:29:08:03:21:34:aa:93:bb:b6:
c4:40:66:a9:3a:32:63:86:21:a5:23:1d:b5:d8:93:
c8:9e:10:7d:f8:ce:3a:73:1f:c6:5c:4c:dd:f8:ac:
87:da:43:f6:e9:5c:0a:4b:70:47:63:cc:7b:74:7d:
ba:1c:06:93:10:40:cf:ba:aa:6a:ee:e4:f5:32:24:
ff:93:f9:9f:1b:fd:ec:cf:d3:ce:3b:f9:98:28:6f:
95:ab:7c:42:6c:5d:b0:53:4f:26:97:87:10:60:bf:
42:7f:f7:cd:3c:10:53:e7:c3:22:15:da:17:2e:46:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:71:C2:5C:46:31:61:F6:D2:C3:7B:47:2B:4B:5D:E2:E1:4D:EF:95
X509v3 Authority Key Identifier:
keyid:0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/x3HCXEYxYfbSw3tHK0td4uFN75U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.72.0/23
Signature Algorithm: sha256WithRSAEncryption
85:b9:77:26:73:d5:dd:93:34:ce:d5:3a:3e:09:3d:d1:73:52:
30:73:2e:a9:b5:4b:15:42:c7:d4:10:76:42:b6:1c:2b:71:a8:
fd:7f:3d:af:5d:5e:6c:25:47:86:c8:25:44:f4:f4:81:5e:9f:
03:14:79:45:35:3b:de:f4:c3:bc:14:3f:a7:a2:94:b2:c1:71:
e9:6a:ad:bb:53:50:b0:70:6a:55:b0:16:2f:ca:61:06:48:ec:
2f:52:c9:fc:29:f9:46:b3:06:6e:3d:99:ab:f2:6e:5e:08:5b:
f2:f7:22:19:b4:13:21:0a:f6:70:34:74:10:5b:69:23:f7:b7:
66:c2:79:47:27:01:c6:13:1e:73:6c:65:1c:53:94:74:93:d5:
e8:7b:52:82:a9:b2:fd:b0:aa:1e:fa:21:2b:54:b9:e0:74:c9:
d5:23:ef:a2:53:22:e5:90:21:e0:61:4c:5e:03:06:91:2a:df:
ab:b5:be:76:cf:36:93:91:f9:1e:01:0b:92:f2:4d:d8:7e:40:
e9:5d:0a:14:38:e0:00:31:e0:9b:2c:fd:40:2f:fc:fb:37:8c:
bf:4d:c3:20:69:50:1d:a5:ed:d1:3d:5a:b4:93:64:2d:a1:84:
20:8a:92:c5:41:ba:24:a2:9e:b7:d0:22:2c:ab:49:ce:c5:71:
bd:e4:4e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:59 2023 by rpki-client on console-fra.rpki-client.org