Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/9ToV3gbKwdDKxTUZgcj4rf1vPfk.roa
File: 9ToV3gbKwdDKxTUZgcj4rf1vPfk.roa (raw, json)
Hash identifier: rYBtyYjhvOpPviphLBd3RyAPsVdFcx03cF/JNO2rwhE=
Subject key identifier: F5:3A:15:DE:06:CA:C1:D0:CA:C5:35:19:81:C8:F8:AD:FD:6F:3D:F9
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 088C7FEE
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/9ToV3gbKwdDKxTUZgcj4rf1vPfk.roa
Signing time: Sat 01 Jan 2022 03:50:58 +0000
ROA not before: Sat 01 Jan 2022 03:50:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49659
IP address blocks: 195.168.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143425518 (0x88c7fee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f53a15de06cac1d0cac5351981c8f8adfd6f3df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:98:04:62:da:bc:55:26:05:ce:c5:d2:b3:
8e:37:d6:a8:b0:79:88:94:43:74:04:41:b4:20:af:
15:32:53:44:89:41:6f:c2:8a:e6:ab:47:ac:e4:61:
a6:55:78:d1:87:c2:eb:88:0a:5a:43:e5:31:fd:8e:
f6:43:86:db:9e:95:08:90:4b:95:43:21:5f:f3:13:
a2:de:a7:bc:6e:1b:3a:d6:6e:a0:e4:13:3a:a7:14:
47:dd:d6:a9:b0:e9:f7:7a:b6:de:a3:9b:3a:1f:48:
aa:46:ff:6d:54:07:a5:05:62:e0:b2:99:7a:13:fe:
38:d6:b9:b8:f7:e9:05:92:10:5d:d5:23:56:75:49:
55:4a:d8:28:6b:05:28:33:81:3c:e6:da:b4:cc:94:
7a:d7:b0:f2:5e:06:5c:41:99:b0:ff:65:e3:ef:1a:
e0:f4:ea:97:77:ed:d0:46:67:ff:d5:7d:5a:cb:a7:
89:8a:ee:a3:54:5c:50:5b:b4:e0:1a:d4:e4:1d:a8:
21:2a:0f:0b:af:c1:04:43:b1:cc:6a:39:76:93:15:
31:f4:bd:56:9f:94:52:f4:a3:65:c8:d3:b4:d6:b7:
5f:d7:5f:5a:f2:c2:f1:48:16:a4:d5:30:7c:50:24:
1f:8d:d3:56:25:de:fe:c5:ea:93:1c:db:99:3b:9f:
eb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3A:15:DE:06:CA:C1:D0:CA:C5:35:19:81:C8:F8:AD:FD:6F:3D:F9
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/9ToV3gbKwdDKxTUZgcj4rf1vPfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.168.110.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2e:4f:53:1f:b8:37:36:a7:56:1e:e4:7a:0d:a5:4f:e8:5b:
3d:93:8d:c9:5f:8c:55:90:5a:34:99:a5:2f:82:f3:8e:18:a4:
aa:6a:35:5f:22:08:67:e5:6a:5f:40:95:05:79:8c:53:35:47:
0a:ce:bf:be:a7:8b:d0:0f:46:ed:11:ee:f9:2f:2d:15:3e:1f:
6f:bf:19:59:b7:4c:0f:ef:8e:95:f0:c9:f8:7e:cb:0b:61:04:
ac:13:59:ee:df:39:24:eb:4a:4f:fa:68:79:1b:91:a3:6b:30:
fb:88:d5:98:0f:31:bf:83:39:73:0c:ce:a9:ca:a7:7c:92:61:
25:5e:b1:67:d5:56:c5:03:1d:c8:88:78:64:36:22:98:de:b0:
23:46:4c:2f:01:42:b7:d7:7d:68:6b:7f:8f:c3:f1:6a:6f:b3:
62:b4:17:7e:24:d3:b5:95:68:13:23:03:fe:5d:7f:9b:a9:e0:
0b:de:48:f3:3c:be:fd:87:a6:dd:f6:27:fd:a2:12:53:7b:4c:
04:8d:c2:3c:ad:91:0e:81:b8:42:d9:33:8b:16:fe:9c:d4:c1:
1d:20:96:be:8f:80:28:b7:66:dc:f5:5a:5b:26:12:f8:43:79:
95:4a:b2:49:13:39:3d:30:c4:bb:64:1b:49:6a:a3:ce:9e:b0:
73:cf:78:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:23 2023 by rpki-client on console-fra.rpki-client.org