Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/7s7mmpzD2QH-MGrmz1RzESy1e8k.roa
File: 7s7mmpzD2QH-MGrmz1RzESy1e8k.roa (raw, json)
Hash identifier: JVJ4l/eKeRgXDZ/d9pJh3ZJe8lTOKPp/rZJRdBJtAfw=
Subject key identifier: EE:CE:E6:9A:9C:C3:D9:01:FE:30:6A:E6:CF:54:73:11:2C:B5:7B:C9
Certificate issuer: /CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Certificate serial: 09BEA7E6
Authority key identifier: 0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/7s7mmpzD2QH-MGrmz1RzESy1e8k.roa
Signing time: Sat 01 Jan 2022 12:55:12 +0000
ROA not before: Sat 01 Jan 2022 12:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24632
IP address blocks: 195.184.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163489766 (0x9bea7e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Validity
Not Before: Jan 1 12:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eecee69a9cc3d901fe306ae6cf5473112cb57bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:28:9c:29:e9:68:68:12:87:68:66:0d:41:0f:
25:2c:dd:f9:29:65:53:ba:be:8c:2c:2a:00:b4:d8:
9c:d3:92:81:a8:0d:02:3f:7c:10:b5:8a:42:99:19:
86:d3:f2:4b:e2:25:bd:1f:3e:3e:71:13:fa:35:f1:
96:5f:68:f7:b5:a9:93:f0:fd:62:49:20:12:f8:bc:
a9:51:40:db:b8:c1:eb:18:31:5e:74:d9:10:29:56:
06:bc:03:63:18:4e:e8:5e:fb:9f:a4:a5:e4:50:4b:
64:46:96:8d:18:f7:c3:be:94:98:51:55:6b:69:e1:
90:0b:25:17:49:74:cd:e0:88:cc:da:86:17:9c:d7:
c0:cf:1c:21:2b:32:f3:59:1e:4b:a9:e7:09:a7:a2:
cc:0a:1d:af:6e:39:fd:10:ab:1a:01:23:e6:61:c2:
9d:1a:04:61:ac:3f:e7:d5:47:74:6c:56:4e:0e:15:
be:2c:cc:70:5d:e2:9e:c8:c3:a9:a8:d6:2a:ba:ce:
9b:0f:94:1c:43:6f:74:29:ca:42:59:eb:a4:2c:94:
3c:0a:b1:2f:09:fd:db:f0:6b:60:03:6f:ca:5c:f3:
2d:16:73:60:31:49:27:29:eb:67:2d:35:b9:42:93:
79:f7:42:19:d3:e2:47:1f:ad:1e:a3:28:26:5a:81:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:CE:E6:9A:9C:C3:D9:01:FE:30:6A:E6:CF:54:73:11:2C:B5:7B:C9
X509v3 Authority Key Identifier:
keyid:0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/7s7mmpzD2QH-MGrmz1RzESy1e8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/ClMYxYv1unQySyXQN0BN2N2p_yQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.94.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:c2:c7:61:a9:c8:0f:d3:a3:a8:64:f9:ad:88:db:25:ac:f0:
ee:eb:bb:56:a0:1f:9b:54:1c:1c:3f:c9:4f:c7:01:06:9c:9b:
b1:bd:6e:7b:05:1a:09:7e:2b:e9:df:84:cf:33:de:78:c1:93:
21:23:63:c2:83:ea:fd:c1:29:c1:16:be:e6:58:df:5d:3b:ca:
70:31:d9:eb:d2:d8:d9:48:0c:c3:eb:ed:6b:9b:52:1a:c9:a7:
c3:d8:2b:87:9e:d1:ee:b6:87:91:e3:49:62:08:9f:5c:6a:5a:
41:9a:40:0d:5c:e2:4c:fa:a9:e0:1a:d2:82:47:5f:ab:7c:d7:
85:6c:c1:69:96:a6:07:cc:37:b6:50:35:24:23:39:77:00:23:
ea:92:a3:82:bb:40:54:6f:ca:78:d7:2a:3e:47:b6:b9:f2:77:
8e:30:65:fe:94:5a:b7:0d:20:f3:cb:87:3f:2d:0e:90:4e:fc:
6f:9c:3e:3b:e3:c4:ac:d8:a9:6b:b7:10:d1:11:1c:b9:a7:79:
d2:20:20:e9:6d:6f:0a:85:6c:fa:fa:77:87:13:74:7d:53:8c:
95:69:63:99:fb:50:1e:4c:b9:ac:50:5a:f7:61:e0:c0:91:b2:
3f:47:21:77:8c:c1:b2:8a:cb:8f:fc:2b:03:1e:10:19:cd:b1:
85:55:3a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:29 2024 by rpki-client on console-ams.rpki-client.org