Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/3RMHkCYgAlnLzQ8b-p_jJHwSfoQ.roa
File: 3RMHkCYgAlnLzQ8b-p_jJHwSfoQ.roa (raw, json)
Hash identifier: iPJyx/pX1HV01/Yjs7cerjXhecnREHYn2IwGpePW8/I=
Subject key identifier: DD:13:07:90:26:20:02:59:CB:CD:0F:1B:FA:9F:E3:24:7C:12:7E:84
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 1783C0BE
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/3RMHkCYgAlnLzQ8b-p_jJHwSfoQ.roa
Signing time: Sat 15 Jan 2022 12:59:18 +0000
ROA not before: Sat 15 Jan 2022 12:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213006
IP address blocks: 195.182.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394510526 (0x1783c0be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 15 12:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd13079026200259cbcd0f1bfa9fe3247c127e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f3:a4:1e:0d:d4:97:82:7d:1d:3d:be:54:32:
f7:8c:05:cc:c3:0c:73:9a:52:f3:08:13:61:46:4e:
5a:c9:2a:be:9d:5b:6b:d0:05:cd:9a:dd:bd:02:03:
a2:af:5a:54:06:55:7f:99:b3:1a:a4:e5:2f:9a:ae:
e3:78:16:36:c7:1e:69:da:c0:56:0a:1b:30:bd:36:
19:41:c3:88:c1:45:73:5f:fd:88:81:61:f8:94:c2:
07:79:0f:2b:5c:f5:72:02:20:73:36:a0:74:c7:a0:
c3:9a:a1:4d:f4:3d:db:11:52:db:f5:7e:67:11:cd:
97:7a:3f:69:e4:5d:54:b5:6c:f4:bd:6a:89:38:5f:
2f:9b:05:01:25:24:43:48:2c:26:d7:b3:27:ef:a2:
22:7c:80:c0:b2:74:4b:bf:8d:89:f1:ca:ad:e0:31:
c5:70:2c:d0:5f:91:2b:81:8a:b9:b5:cb:0d:aa:9a:
fc:02:89:bf:a8:dc:dd:d2:8e:26:a7:4c:e0:fe:05:
80:88:f6:d3:92:4d:63:00:a8:8a:b9:8c:66:b1:34:
b9:c3:9b:4c:a6:a6:6c:a0:e4:44:b5:f7:a9:13:00:
b9:64:c5:f6:12:be:7e:2a:d6:1b:0b:e7:04:9f:64:
82:f9:93:7b:f5:72:19:3a:c4:e9:ec:27:26:00:48:
02:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:13:07:90:26:20:02:59:CB:CD:0F:1B:FA:9F:E3:24:7C:12:7E:84
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/3RMHkCYgAlnLzQ8b-p_jJHwSfoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.204.0/24
Signature Algorithm: sha256WithRSAEncryption
62:3d:45:0e:17:6d:19:8b:ca:ae:38:20:50:b1:d9:e8:d5:1d:
cb:5f:29:69:d7:42:34:51:fe:10:78:fa:86:c0:c7:6d:35:13:
8c:9d:8d:19:75:c8:92:79:cb:9f:9f:02:86:94:ab:5a:69:06:
2e:45:89:e2:7a:fb:7f:eb:df:ac:f7:d3:04:fb:20:89:ed:39:
cd:14:95:a1:ea:9a:e4:97:e3:54:21:bf:58:d0:6d:7e:df:1e:
f6:ec:04:0c:6f:23:de:89:cd:71:cb:a4:75:d9:43:65:f7:4e:
82:ce:d3:f9:9b:c0:3d:f9:6e:03:1c:43:dd:9f:6b:d5:ef:7c:
2a:a5:1b:ce:e8:ac:05:d3:d6:73:bd:31:6c:68:57:89:7e:be:
30:99:ef:1b:30:1c:e5:8b:a6:1e:39:27:e0:72:42:e5:f7:4c:
76:18:15:ad:8c:6c:c6:aa:cf:f1:88:c4:58:26:bf:6a:d2:10:
6e:a7:1d:7c:7a:e0:bb:77:e4:bd:7b:c0:4a:6f:7c:22:de:41:
b2:ae:0f:b1:7f:09:38:e0:1f:63:f5:03:68:95:3d:76:02:fa:
1a:b4:f1:3f:b7:0b:80:37:40:2d:1d:ad:5b:4e:25:61:56:54:
c5:bd:05:d1:0a:20:b5:1e:a4:43:ae:ab:3b:67:79:f7:99:18:
39:c9:9b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org