Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/c28ebc-749f-48f6-89a2-edc316222644/1/b4PY9zBGFAoARH9yXGOx12qMXNw.roa
File: b4PY9zBGFAoARH9yXGOx12qMXNw.roa (raw, json)
Hash identifier: gM0/ezcJldYqxnpDdbx3KCnLA1DBie2KEVr1TbgNtow=
Subject key identifier: 6F:83:D8:F7:30:46:14:0A:00:44:7F:72:5C:63:B1:D7:6A:8C:5C:DC
Certificate issuer: /CN=985d472fa538204f1c23e8b6a758073b80cfc199
Certificate serial: 03F87024
Authority key identifier: 98:5D:47:2F:A5:38:20:4F:1C:23:E8:B6:A7:58:07:3B:80:CF:C1:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mF1HL6U4IE8cI-i2p1gHO4DPwZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/c28ebc-749f-48f6-89a2-edc316222644/1/b4PY9zBGFAoARH9yXGOx12qMXNw.roa
Signing time: Wed 25 May 2022 22:48:13 +0000
ROA not before: Wed 25 May 2022 22:48:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212603
IP address blocks: 195.200.194.0/24 maxlen: 24
45.143.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66613284 (0x3f87024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=985d472fa538204f1c23e8b6a758073b80cfc199
Validity
Not Before: May 25 22:48:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f83d8f73046140a00447f725c63b1d76a8c5cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b5:e0:a8:db:2b:1d:e3:b4:f7:39:91:45:b2:
05:5b:79:da:f8:05:1a:e6:90:d0:b3:c6:65:4d:39:
b6:c3:aa:14:0b:77:2e:b1:fe:5d:f6:dd:67:d3:d6:
90:a2:70:3a:4d:c4:cb:8a:15:0f:66:80:ca:0d:78:
12:30:66:f7:c2:0c:c9:4d:eb:20:ab:6b:05:46:f1:
3a:0b:83:ec:84:ec:3d:2c:c1:03:48:0c:af:48:06:
41:93:22:33:57:bf:bb:9c:93:78:03:6d:e1:c9:80:
fb:bd:62:cc:97:f3:6b:ab:b2:cd:09:46:64:1f:14:
f6:05:41:26:b6:41:b8:db:78:24:76:7b:99:b2:c4:
8d:19:d6:0f:99:89:90:15:b1:07:1e:0c:19:1b:60:
0f:46:2e:92:5e:90:fd:45:66:3c:de:6b:7b:ab:1a:
67:43:b4:a8:16:e4:b2:a1:2b:d5:e0:8e:35:8c:8f:
c3:3d:74:14:c2:06:11:4b:b7:a7:b3:38:05:94:22:
bd:37:7f:ef:77:f7:14:1a:36:f3:13:f0:c1:41:94:
a4:0c:ac:ef:6a:ca:90:3e:43:24:c2:38:f2:c8:70:
35:8a:2a:94:d2:88:c7:ff:2b:22:14:5d:14:6a:df:
8e:71:d9:18:8d:1a:e0:53:2d:36:6f:0c:11:1f:de:
11:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:83:D8:F7:30:46:14:0A:00:44:7F:72:5C:63:B1:D7:6A:8C:5C:DC
X509v3 Authority Key Identifier:
keyid:98:5D:47:2F:A5:38:20:4F:1C:23:E8:B6:A7:58:07:3B:80:CF:C1:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mF1HL6U4IE8cI-i2p1gHO4DPwZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c28ebc-749f-48f6-89a2-edc316222644/1/b4PY9zBGFAoARH9yXGOx12qMXNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c28ebc-749f-48f6-89a2-edc316222644/1/mF1HL6U4IE8cI-i2p1gHO4DPwZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.176.0/22
195.200.194.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:6b:f7:a1:67:9b:f0:97:c1:e2:f9:e0:94:aa:91:c7:30:86:
fa:62:fb:e5:a8:89:16:af:02:2a:c7:e7:69:97:42:e0:51:e2:
f9:55:c0:ad:12:6a:cb:ac:6c:4c:8a:29:98:e6:75:a0:9c:61:
fe:f0:b4:cd:bb:7f:8d:94:e2:3a:a4:bc:96:3d:3c:a2:71:f8:
b0:44:f3:60:b9:29:01:92:67:06:78:81:31:2b:da:a9:40:ae:
e5:da:87:8a:a7:e7:a7:6e:37:00:b4:29:8e:31:ad:0a:7e:78:
21:60:0a:e5:b7:07:59:7c:10:9b:5d:c8:c7:6a:82:83:9b:0d:
eb:37:9c:5d:7e:26:6d:30:c7:b9:3a:e3:4c:1e:81:38:f0:32:
1b:3b:f8:c9:05:51:60:01:42:17:f5:45:05:ad:20:77:89:38:
9d:09:e1:28:ee:0e:1f:f2:5e:04:56:26:45:e6:5a:1c:3d:de:
a8:75:38:f4:4f:50:61:50:40:f1:fe:9f:d8:75:92:2a:08:c3:
b5:2d:6c:fb:74:6d:6b:50:f8:b9:94:e5:ac:6c:96:53:bb:d3:
47:1a:35:f6:f0:7e:d1:a8:ab:be:91:68:f1:e5:1c:d5:6a:c4:
db:9a:9a:7d:b6:92:4c:fb:15:9c:1f:b5:d8:06:2e:f8:47:1e:
96:c5:a7:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:13 2023 by rpki-client on console-ams.rpki-client.org