Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/b3oivJpKsTgVDSELse3hHUXSMbg.roa
File: b3oivJpKsTgVDSELse3hHUXSMbg.roa (raw, json)
Hash identifier: CSd+AkzfglF7r9Inn2SpwtkHqcDYXtU74SEwkYyNu+4=
Subject key identifier: 6F:7A:22:BC:9A:4A:B1:38:15:0D:21:0B:B1:ED:E1:1D:45:D2:31:B8
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: 3C24
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/b3oivJpKsTgVDSELse3hHUXSMbg.roa
Signing time: Tue 04 Jan 2022 14:32:39 +0000
ROA not before: Tue 04 Jan 2022 14:32:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15396 (0x3c24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Jan 4 14:32:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f7a22bc9a4ab138150d210bb1ede11d45d231b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:52:a1:b1:d2:74:14:33:ad:3e:fd:8d:be:1d:
ce:48:62:8e:eb:61:24:fd:24:4e:62:c0:f2:89:3b:
bf:2a:73:4b:f6:b1:3a:2d:44:6c:13:b2:71:28:85:
93:ae:9e:74:de:d4:79:a1:57:df:39:34:e2:9c:a6:
ae:9b:2c:25:f4:90:a8:99:af:77:09:7b:68:a7:c0:
a4:05:94:a7:96:e0:b6:2a:cb:9d:6d:2e:c8:97:3f:
27:7c:ad:41:11:91:16:a4:78:8f:d4:17:59:91:07:
ed:fe:f1:3d:4a:88:20:5e:97:73:a8:9e:3c:7c:be:
a1:5e:ac:ad:ad:05:6e:a0:e1:76:a3:f8:2c:85:d7:
0f:85:1f:74:64:63:aa:51:4d:ed:ed:e4:50:97:30:
b6:20:f2:8d:db:b8:2d:d6:64:c6:04:f1:89:97:a8:
2b:0a:03:06:4b:03:af:77:e4:e8:fa:21:f7:47:bd:
e2:cc:08:9d:a8:02:4d:65:b3:68:ae:26:84:14:7b:
18:4a:21:a5:09:78:60:1c:d6:a3:66:85:1e:1c:0d:
53:fb:0a:7d:f3:dd:5e:3f:41:7e:91:f0:6c:ea:09:
7e:98:16:84:0c:08:b0:c7:94:86:2b:8f:a6:76:f9:
77:b2:4a:95:8d:fc:aa:04:f1:64:5c:7d:31:28:59:
de:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7A:22:BC:9A:4A:B1:38:15:0D:21:0B:B1:ED:E1:1D:45:D2:31:B8
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/b3oivJpKsTgVDSELse3hHUXSMbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8b:14:6d:d1:1b:ec:7b:f4:41:e0:47:a9:b0:df:f7:2a:fb:
f7:29:23:f0:99:42:08:8b:46:e0:3e:a2:50:37:9c:83:d7:0a:
69:8b:89:3e:b6:c0:30:dc:23:ec:f8:4d:44:67:1c:ca:34:30:
70:49:1c:32:81:30:09:b1:d3:ff:7e:ad:90:7a:84:57:85:63:
3e:20:ec:d5:dc:fa:08:dd:37:c8:e9:a7:f5:fb:85:ad:4d:18:
ce:3e:a6:56:74:e6:d7:79:59:29:51:a9:51:53:3c:25:99:5a:
b3:2b:01:19:0c:94:f4:c9:76:cf:1f:e6:dc:7d:44:39:fd:2b:
1a:b8:87:6d:69:e2:8c:b7:6e:b5:98:c1:f2:1c:95:03:9d:27:
5d:22:10:88:ec:0e:2d:9d:1b:58:63:8f:d3:89:b4:65:10:c2:
13:6d:a0:ec:42:7c:f3:69:09:a1:76:30:63:ab:d2:da:6c:d7:
34:73:82:09:03:c2:32:3c:60:cf:d3:2f:cb:03:92:3f:9f:17:
d5:64:48:1d:45:ed:8e:c1:bf:f1:f9:f5:47:54:c4:c6:27:1b:
a8:f5:8a:88:65:3f:55:1b:a9:67:bc:ce:a4:d8:f3:86:41:07:
24:ba:4a:9c:01:c7:21:67:aa:e4:e9:79:73:6c:fa:32:67:e8:
60:ec:5a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:53 2024 by rpki-client on console-fra.rpki-client.org