Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/57d565-883b-48a2-a424-273db7d53898/1/bSwRtt9Hskh0LS5V9Z5ShAQlWVQ.roa
File: bSwRtt9Hskh0LS5V9Z5ShAQlWVQ.roa (raw, json)
Hash identifier: KwkQRc67lQ5nMDmHYTfwpP4Fm8LafvVMm3p6bZ5j/ac=
Subject key identifier: 6D:2C:11:B6:DF:47:B2:48:74:2D:2E:55:F5:9E:52:84:04:25:59:54
Certificate issuer: /CN=0bfb7529289f88fb4bb87b39e7bedc9d9f27d5fa
Certificate serial: 01837DBBE1DFFF71A9AB4FABC46EFE67B76A
Authority key identifier: 0B:FB:75:29:28:9F:88:FB:4B:B8:7B:39:E7:BE:DC:9D:9F:27:D5:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_t1KSifiPtLuHs5577cnZ8n1fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/57d565-883b-48a2-a424-273db7d53898/1/bSwRtt9Hskh0LS5V9Z5ShAQlWVQ.roa
Signing time: Tue 27 Sep 2022 06:56:48 +0000
ROA not before: Tue 27 Sep 2022 06:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209727
IP address blocks: 195.128.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:bb:e1:df:ff:71:a9:ab:4f:ab:c4:6e:fe:67:b7:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bfb7529289f88fb4bb87b39e7bedc9d9f27d5fa
Validity
Not Before: Sep 27 06:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2c11b6df47b248742d2e55f59e528404255954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:f0:07:0d:67:fc:e4:f6:ca:fe:3e:f4:d6:
95:9d:3d:8b:45:c1:6d:71:58:5b:e4:8c:e9:53:38:
65:f7:38:11:ec:e6:00:ba:c0:60:fd:27:34:50:ea:
23:31:ff:c4:da:f4:4d:3e:db:63:ab:75:b6:a4:2e:
f7:1a:80:07:11:da:72:46:9a:dd:66:f7:a4:7c:36:
11:bf:90:93:28:9c:ef:3a:8e:8f:28:86:15:a9:3f:
cb:ba:08:22:05:e7:ed:55:f9:ef:f2:6c:ae:72:f8:
4a:68:83:ef:ea:07:bf:b7:26:77:23:71:09:18:03:
21:36:5b:b5:ca:46:8d:58:09:5a:9b:6c:dd:39:86:
0e:24:00:df:af:6f:22:77:3a:d3:9b:44:28:36:70:
a2:92:6a:50:b4:b2:98:3b:8d:34:7c:23:e8:17:5b:
3d:83:7f:9a:ad:1b:07:16:fc:90:8a:ec:79:db:c5:
66:71:0d:3c:2e:c1:f7:e9:37:75:e7:b4:77:3a:59:
ad:e1:8a:f1:4d:93:27:8f:40:33:c0:a9:1c:1a:bf:
86:2e:1b:ec:b5:ef:dd:78:80:99:90:41:a4:fd:1e:
6c:3a:b1:d0:00:aa:40:41:5b:72:a7:57:4b:e5:55:
19:35:c1:35:77:01:d6:e3:ce:73:7c:5b:f1:66:be:
65:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2C:11:B6:DF:47:B2:48:74:2D:2E:55:F5:9E:52:84:04:25:59:54
X509v3 Authority Key Identifier:
keyid:0B:FB:75:29:28:9F:88:FB:4B:B8:7B:39:E7:BE:DC:9D:9F:27:D5:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_t1KSifiPtLuHs5577cnZ8n1fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/57d565-883b-48a2-a424-273db7d53898/1/bSwRtt9Hskh0LS5V9Z5ShAQlWVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/57d565-883b-48a2-a424-273db7d53898/1/C_t1KSifiPtLuHs5577cnZ8n1fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.37.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ac:bc:86:92:b4:a3:f6:63:43:82:98:56:10:12:43:c1:54:
5f:05:6f:f5:b8:71:a7:65:78:ce:f3:9a:c8:66:4a:a5:1d:5f:
69:e7:06:8b:69:a9:bb:f0:ae:5d:66:60:f2:7a:95:83:39:9b:
35:cf:f8:39:e4:48:bb:f4:1c:44:0b:e5:36:fc:a6:b9:ac:7f:
94:32:77:2f:74:47:0c:a8:fb:a6:5d:02:55:b3:b6:f0:20:f8:
68:79:6e:0a:bf:50:f2:be:39:37:6d:76:1d:ee:75:8d:9f:f2:
22:62:e4:ee:3d:72:60:89:90:45:bf:14:5e:9f:18:c3:4c:a6:
33:6c:b6:2c:8f:86:40:35:6d:57:5d:9e:43:29:fd:4c:95:4d:
2f:69:52:b0:5b:ec:9c:b3:5f:ce:39:8e:24:2b:b8:77:ff:c7:
97:04:ad:72:71:a4:40:b3:1f:56:34:e1:d1:ef:f8:05:48:3d:
a0:35:29:bc:05:5b:55:45:48:fe:0b:d9:66:b9:1f:9f:47:4a:
50:0a:ab:ff:d2:76:9f:71:9f:cd:1b:1a:ee:02:d6:1a:75:09:
8e:46:cb:3b:e6:36:d6:3d:92:8a:e9:7b:ab:b4:c1:62:52:db:
9d:8d:5e:9f:4e:70:44:c0:ed:3f:2c:7e:d9:3e:69:ca:3f:b7:
7f:62:bb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:39 2023 by rpki-client on console-fra.rpki-client.org