Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/xBo64G5vd1FlYf66aj6eiR95iWM.roa
File: xBo64G5vd1FlYf66aj6eiR95iWM.roa (raw, json)
Hash identifier: JdtSlowkyqjSm9Xtaabm92vHzEqAyb9fbI48kb2x4rU=
Subject key identifier: C4:1A:3A:E0:6E:6F:77:51:65:61:FE:BA:6A:3E:9E:89:1F:79:89:63
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01E49496
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/xBo64G5vd1FlYf66aj6eiR95iWM.roa
Signing time: Tue 15 Feb 2022 18:58:30 +0000
ROA not before: Tue 15 Feb 2022 18:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 102
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31757462 (0x1e49496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 15 18:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c41a3ae06e6f77516561feba6a3e9e891f798963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cc:67:67:91:cd:d3:2d:3b:27:45:cb:24:08:
81:b2:96:c7:db:14:cc:ca:11:f7:0c:94:88:5b:95:
24:34:50:66:40:65:e4:a9:a2:1a:83:60:d3:06:b9:
f9:47:d0:8e:06:41:38:42:c7:6b:50:6b:98:a7:94:
52:0c:00:66:a6:65:e7:04:16:55:cb:30:60:dd:2f:
c8:46:01:31:55:74:dd:03:97:c3:c0:3b:7f:37:71:
02:58:b9:c8:88:6f:d9:11:a0:8e:fe:dd:bf:36:91:
cc:e9:d6:17:a0:b4:b9:8f:55:52:92:42:53:0b:c6:
77:de:28:a2:84:e4:4b:7f:d6:47:7b:57:73:2f:e2:
50:ae:31:81:68:5b:d9:59:3e:7e:e2:8c:f1:45:76:
64:96:b6:15:45:fc:24:85:85:76:31:45:0f:82:a2:
4f:32:b9:de:bf:da:27:f7:f6:9c:11:61:cc:22:61:
df:17:78:9a:c5:b0:59:c6:a1:b6:08:67:e8:68:48:
47:39:7b:81:50:d0:44:53:da:92:53:eb:01:9b:7f:
a7:c0:37:96:9d:50:29:3d:de:3d:38:31:d2:4b:0e:
d1:42:99:20:de:83:69:c2:44:fd:85:d6:4d:ed:3d:
13:da:30:8e:e4:26:b7:03:16:cd:db:33:cb:6d:79:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1A:3A:E0:6E:6F:77:51:65:61:FE:BA:6A:3E:9E:89:1F:79:89:63
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/xBo64G5vd1FlYf66aj6eiR95iWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a2:e1:7f:a6:7f:40:9f:6f:11:88:bd:09:65:46:e1:e0:16:
97:89:c9:7d:38:93:91:a3:4c:ce:79:2d:bc:eb:d1:a8:96:44:
b3:a9:3d:bf:8f:1f:1f:bf:5c:32:aa:2d:c9:5a:61:89:84:5e:
e4:c9:f6:7b:da:f2:ed:9a:84:eb:70:eb:1c:4d:a9:55:1d:a8:
0c:59:f0:83:a4:cc:84:bb:ae:fa:70:88:3e:a1:2f:60:f3:e5:
d2:9b:3e:be:b5:f0:2e:4c:87:9c:fc:13:ea:f8:8b:06:53:74:
e6:bf:bb:e7:fb:4d:89:58:2e:f4:b4:d4:5c:f7:0f:34:68:6d:
bc:59:03:1f:56:01:14:fb:47:1a:3f:64:73:d9:01:a3:b8:53:
6f:a2:51:85:10:2c:0e:b0:c0:22:55:76:81:c2:e8:48:ea:9a:
4d:ad:4e:ef:b0:70:19:2b:76:14:b0:e9:9f:1c:36:15:2e:fe:
3b:2f:fc:d0:7f:05:fb:b9:31:fc:ce:cd:c4:d2:90:ce:48:32:
d1:7f:11:4d:4a:cd:6f:7b:48:63:df:9c:f5:d0:f4:07:6a:78:
83:9f:cf:0e:62:1c:16:bb:a8:d7:1b:e2:4e:f2:6c:11:a3:2c:
ab:a8:9f:be:cf:b1:27:8a:a7:70:6f:80:92:ec:66:04:79:49:
d3:32:85:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:41 2023 by rpki-client on console-fra.rpki-client.org