Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Go7OmzocxVjpH6THVKc2g-eF-m4.roa
File: Go7OmzocxVjpH6THVKc2g-eF-m4.roa (raw, json)
Hash identifier: sJaNHB3dY7XWFJOlg7kSmTA7QV2bOjhB2Qd1PD+KZ6Q=
Subject key identifier: 1A:8E:CE:9B:3A:1C:C5:58:E9:1F:A4:C7:54:A7:36:83:E7:85:FA:6E
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 03B1A6F6
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Go7OmzocxVjpH6THVKc2g-eF-m4.roa
Signing time: Sat 01 Jan 2022 09:55:42 +0000
ROA not before: Sat 01 Jan 2022 09:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201924
IP address blocks: 195.146.0.0/22 maxlen: 22
195.146.0.0/24 maxlen: 24
195.146.1.0/24 maxlen: 24
195.146.2.0/24 maxlen: 24
195.146.4.0/24 maxlen: 24
195.146.7.0/24 maxlen: 24
195.146.5.0/24 maxlen: 24
195.146.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61974262 (0x3b1a6f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 1 09:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a8ece9b3a1cc558e91fa4c754a73683e785fa6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:87:bf:e6:4d:1b:6f:88:9a:49:4f:69:d1:17:
f4:3b:1d:47:2d:01:0c:3b:7e:5a:1a:c8:6f:dc:a0:
51:a9:29:03:6d:7a:10:aa:91:a3:c0:a3:f1:25:60:
5a:1c:8a:ce:09:1d:e7:2b:4e:c9:ac:f3:c0:d0:11:
6f:1f:da:4c:c3:f6:bb:18:97:bb:70:73:a1:66:a3:
c8:43:6f:61:d5:6c:10:98:66:00:87:f3:c9:f2:34:
d7:ab:13:e1:89:ce:c2:e4:8e:dd:81:2a:09:c4:31:
ec:f2:34:c9:c4:a9:4e:6b:b2:65:e7:58:eb:6e:a6:
e8:fb:37:2e:bd:88:61:61:25:31:37:7b:7e:79:d1:
12:6c:80:91:5d:f4:8b:67:1f:82:6e:e3:a4:09:23:
ad:6a:f3:d4:0f:66:38:e6:59:26:c5:83:9c:ed:59:
6b:85:3c:a9:75:2d:ba:7f:c2:15:14:58:db:05:37:
04:4e:18:97:fa:34:32:d6:db:ae:21:f9:53:e6:7e:
a0:ad:14:e0:25:92:1e:a4:a8:c2:1e:9c:5f:82:0c:
43:2c:17:50:d3:c9:d1:87:7b:84:af:81:2d:64:bb:
83:dd:27:0d:c2:d2:ec:47:62:80:00:4e:19:f4:5f:
0a:5c:d8:ad:23:52:6f:14:a5:90:e1:0c:54:0f:69:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8E:CE:9B:3A:1C:C5:58:E9:1F:A4:C7:54:A7:36:83:E7:85:FA:6E
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Go7OmzocxVjpH6THVKc2g-eF-m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.146.0.0/21
Signature Algorithm: sha256WithRSAEncryption
89:5e:57:1d:9e:27:c4:b6:cf:1e:c4:94:58:2a:52:3e:92:a6:
66:b9:63:84:67:c1:70:45:10:ff:74:21:0f:f3:0e:1d:c0:dc:
b1:65:3a:a7:15:81:ca:fe:ab:f2:2f:c8:34:f1:41:75:01:4f:
ff:57:4f:54:ff:97:98:42:80:40:c8:0d:4b:a5:5e:2a:8c:bc:
e2:9e:20:71:9d:c7:ee:47:c2:16:18:4d:cf:32:e3:ff:49:ba:
61:93:ba:d3:56:73:77:2d:8e:86:d8:5e:71:68:26:b5:69:23:
62:ab:50:28:2b:92:01:9a:8b:7a:fa:2d:3a:0b:8b:05:f1:21:
50:bb:af:55:da:68:2a:58:01:ba:14:df:75:34:83:8b:fc:1b:
74:fa:8f:7c:33:c0:8a:03:0c:86:89:ae:0f:73:f6:1a:78:fe:
52:f1:2b:aa:d6:22:3a:63:e3:75:da:04:7b:4d:4a:3b:1e:c5:
47:32:58:6a:ff:7d:f6:9d:1e:65:98:16:db:00:e6:bd:5d:1a:
5e:c2:28:ca:87:7f:fb:60:fa:0c:82:78:b6:e0:8e:a3:2c:d3:
c7:44:57:a1:c7:c5:7a:05:bc:25:a4:6a:51:ba:3c:c2:f6:a4:
ba:dd:47:42:f7:52:f2:20:16:bd:04:4f:3d:92:5f:45:d7:d1:
0a:34:cf:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org