Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hvDtBdyDDCO6vgCGlVCNWooHJ4Q.roa
File: hvDtBdyDDCO6vgCGlVCNWooHJ4Q.roa (raw, json)
Hash identifier: PRpol0NL2WX1SSCsxOaIzft3IBKRk+VEezM8oqYdhRA=
Subject key identifier: 86:F0:ED:05:DC:83:0C:23:BA:BE:00:86:95:50:8D:5A:8A:07:27:84
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A6E1D51
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hvDtBdyDDCO6vgCGlVCNWooHJ4Q.roa
Signing time: Sat 01 Jan 2022 04:51:51 +0000
ROA not before: Sat 01 Jan 2022 04:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35787
IP address blocks: 195.136.72.0/23 maxlen: 23
195.136.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980294993 (0x3a6e1d51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86f0ed05dc830c23babe008695508d5a8a072784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9b:17:c3:1c:21:99:1b:b1:1e:09:36:04:3f:
d1:52:ca:9e:74:e0:e8:e3:34:a4:b0:f7:2d:9b:f4:
7e:99:a8:4d:70:d5:b4:8b:dd:9c:0f:89:32:cd:a4:
01:6d:2a:ea:a9:19:c0:f1:2f:de:3d:33:7a:43:a1:
21:8f:e0:5c:70:61:52:f4:54:9f:2e:38:0b:95:3f:
00:0d:e4:0b:1f:40:1a:38:37:4a:8f:67:02:be:b3:
22:df:ca:83:cb:ea:f5:6b:f8:22:95:9e:32:eb:1b:
42:45:a5:d9:9f:18:a3:32:46:4b:f9:ce:ba:f2:f8:
c4:24:d0:09:88:fe:2a:94:c0:2b:fb:58:62:07:32:
c1:dc:0d:9b:b6:9e:67:8e:7d:60:42:1c:09:58:d6:
a8:65:c9:13:b3:d7:1b:8a:ab:15:67:aa:c5:f4:3c:
01:49:06:dc:76:ac:7f:7e:03:62:a2:84:30:75:a1:
97:d7:f3:2c:a4:b9:2d:15:98:e0:03:88:e3:b8:e4:
bd:8b:cd:b4:51:a9:58:5d:3f:ef:5a:ed:61:6d:42:
54:92:93:fb:46:92:08:19:af:01:c0:ac:89:bf:a3:
1e:bd:55:e7:be:54:68:31:3c:36:97:78:bf:c5:2f:
65:0a:03:a6:1b:ac:69:08:70:9f:0d:43:0b:31:bd:
f3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F0:ED:05:DC:83:0C:23:BA:BE:00:86:95:50:8D:5A:8A:07:27:84
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hvDtBdyDDCO6vgCGlVCNWooHJ4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.32.0/23
195.136.72.0/23
Signature Algorithm: sha256WithRSAEncryption
32:87:db:5b:ea:43:09:d3:2e:78:bf:6a:d9:d4:8c:93:8e:d6:
f6:32:28:34:1d:57:c6:49:d0:60:b7:c9:30:b0:c6:55:ce:9b:
19:e1:a7:0e:07:db:e8:9c:ee:8f:10:c3:51:db:05:46:9a:16:
aa:14:27:87:7b:2a:63:92:04:ae:95:da:1d:65:c8:70:24:79:
5d:03:41:f3:c1:44:2c:e0:4e:41:77:b7:7b:c3:03:bd:ea:bd:
01:6a:33:10:41:53:5f:39:0f:ee:ef:c6:ae:c6:6d:33:48:a0:
81:5a:f6:67:c5:f0:e0:40:10:24:b8:e2:2e:c0:e4:f8:8d:99:
b1:62:2f:81:78:86:e5:97:05:47:ba:56:60:e0:02:88:82:e5:
4e:9c:3d:d2:f9:2d:fc:12:e8:72:63:9e:4b:e2:03:26:f2:cd:
eb:bf:76:4b:18:b8:e8:d6:26:14:1c:a9:80:48:9f:84:cf:03:
db:bd:3c:83:59:40:a7:a2:b2:c7:4e:94:66:27:31:28:11:f6:
6e:70:b0:9c:36:64:8e:0a:b4:b2:94:e6:44:e7:3b:05:d3:23:
b3:f3:be:e1:c3:4e:d1:3b:32:79:e0:9c:38:9c:6c:2a:bb:c9:
e7:e0:af:ad:1b:04:f4:64:1e:10:d8:b7:80:df:0f:a3:72:b0:
4e:fb:19:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org