Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/821HAKM03MsXMAGiUJ1jHYWx-wk.roa
File: 821HAKM03MsXMAGiUJ1jHYWx-wk.roa (raw, json)
Hash identifier: VtDS1l09NFyMhGNLjqS0vIJwOj3wdPgj/Q3c3Jtv0js=
Subject key identifier: F3:6D:47:00:A3:34:DC:CB:17:30:01:A2:50:9D:63:1D:85:B1:FB:09
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: EB42C6
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/821HAKM03MsXMAGiUJ1jHYWx-wk.roa
Signing time: Tue 19 Apr 2022 04:45:13 +0000
ROA not before: Tue 19 Apr 2022 04:45:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15418054 (0xeb42c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Apr 19 04:45:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f36d4700a334dccb173001a2509d631d85b1fb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9c:63:f6:04:79:6c:34:63:ef:ed:e7:ae:20:
6a:dd:d6:96:6d:7a:85:17:2b:76:c9:ae:7f:26:2a:
96:6b:4b:3e:83:ac:d7:b0:65:79:cc:c2:5c:45:9f:
3a:2a:78:8b:01:96:a0:79:ce:9d:99:d6:60:bb:69:
43:1c:f4:b8:b4:36:ca:48:a4:5f:40:21:57:89:8a:
2f:12:c1:8d:9e:15:eb:44:69:01:54:5e:a4:cf:1b:
ae:81:45:ea:30:7e:44:18:44:52:e5:f3:b2:15:b8:
c2:bf:07:9b:0e:7d:5a:bd:3a:b9:23:10:f6:09:4d:
7b:8f:b3:60:63:f3:ec:62:3b:52:95:a7:40:f1:25:
1d:51:e0:84:a1:10:97:26:d9:80:98:3c:6f:33:d8:
c6:00:02:08:ef:ad:e9:ad:6d:fd:25:34:19:4e:c5:
9d:89:43:8b:f2:3f:40:3a:d2:55:5f:83:01:7d:e2:
53:1e:06:64:ef:7b:3c:97:9b:07:31:07:95:49:8d:
5f:24:26:f0:d7:34:1a:e2:cf:39:29:81:2a:8d:4b:
c2:48:b9:96:17:a5:f9:5a:08:ca:28:48:de:f4:16:
9b:cb:6e:84:5c:15:90:18:db:e0:76:09:99:d3:44:
47:d3:18:09:bc:14:2a:0f:4c:13:54:32:ee:08:20:
d5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:6D:47:00:A3:34:DC:CB:17:30:01:A2:50:9D:63:1D:85:B1:FB:09
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/821HAKM03MsXMAGiUJ1jHYWx-wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
97:24:01:fa:40:e9:32:56:e0:2c:5b:50:ef:8a:4f:2e:ed:94:
7a:10:3d:61:99:a5:8c:04:e8:a7:dc:d9:be:68:2d:f1:fc:05:
89:aa:55:a5:28:0c:a2:ee:42:07:4a:75:c7:3f:5e:bd:1e:4c:
88:a4:87:1a:8b:24:1c:1c:b0:a6:9e:df:f9:a2:ed:bf:4a:45:
b3:f7:a9:9f:63:7b:d7:5b:35:2f:13:aa:ed:d2:75:2d:17:35:
3c:4c:fd:d5:7c:70:82:ac:0d:da:54:d8:87:4c:b6:4f:58:f6:
cc:9a:d7:d9:c5:8b:de:fd:50:52:b2:ea:59:48:53:53:e6:bf:
38:ba:58:7e:cd:60:54:e6:c7:0e:7d:8a:c6:2f:8d:43:7a:d4:
fd:d4:fb:09:6a:8c:9c:70:67:d7:c0:26:aa:27:b1:0e:58:c3:
59:53:37:fc:11:08:58:e6:d6:b7:21:8a:c7:10:fe:4b:46:6f:
ca:98:f4:d7:61:0e:e4:33:60:d9:0d:e6:9a:6a:f2:0d:09:b8:
27:f1:c4:51:91:fb:9b:af:16:c1:a3:c8:b4:8c:93:3f:1b:42:
84:54:45:e0:69:4a:a4:99:f3:1f:c0:e8:51:79:84:70:a5:0a:
80:51:2e:f3:82:1a:be:b6:fd:88:64:b4:8f:e8:5c:74:ae:c3:
07:ed:c9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:53 2024 by rpki-client on console-fra.rpki-client.org