Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/310d34-f5d8-4e96-9b7c-648f501afae5/1/9VmNADeQX2xwyeZSCTTQK3ifn1k.roa
File: 9VmNADeQX2xwyeZSCTTQK3ifn1k.roa (raw, json)
Hash identifier: TMySa/VCXSabCNZNs6opgM6KaZljNygRYr8G9aMTmOU=
Subject key identifier: F5:59:8D:00:37:90:5F:6C:70:C9:E6:52:09:34:D0:2B:78:9F:9F:59
Certificate issuer: /CN=cc6532649a6aef4714841b9c8f54660d889b0629
Certificate serial: 01828BCB21C9D846F783EAFA8788CD8CD0F9
Authority key identifier: CC:65:32:64:9A:6A:EF:47:14:84:1B:9C:8F:54:66:0D:88:9B:06:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zGUyZJpq70cUhBucj1RmDYibBik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/310d34-f5d8-4e96-9b7c-648f501afae5/1/9VmNADeQX2xwyeZSCTTQK3ifn1k.roa
Signing time: Thu 11 Aug 2022 07:25:21 +0000
ROA not before: Thu 11 Aug 2022 07:25:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15983
IP address blocks: 195.234.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:cb:21:c9:d8:46:f7:83:ea:fa:87:88:cd:8c:d0:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc6532649a6aef4714841b9c8f54660d889b0629
Validity
Not Before: Aug 11 07:25:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5598d0037905f6c70c9e6520934d02b789f9f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:8c:32:fb:df:37:8c:9e:b7:32:03:19:06:
a2:4e:37:6c:a3:87:00:46:9b:b8:31:3a:90:61:6c:
35:17:38:4b:54:96:ca:5c:d2:9d:b2:69:86:4e:b2:
6a:e0:af:ad:af:14:d5:cd:06:6e:f4:d1:68:20:1c:
fd:cf:94:b9:64:1a:b5:1b:6c:09:65:d0:5a:29:08:
26:f1:c2:8f:08:28:cc:14:7b:17:4a:63:76:52:7f:
45:4c:65:f6:6b:eb:be:8d:c1:71:a9:cc:6a:ea:73:
0b:4c:96:a8:da:ea:05:a1:bc:4e:34:0f:e7:e9:24:
8e:dd:52:fc:85:ec:74:ac:f2:78:8e:65:fb:f7:44:
95:fd:65:c3:b7:6b:54:63:bc:3f:d0:31:67:0a:ce:
f6:d5:40:12:83:66:1f:e0:13:cb:78:31:50:22:16:
e3:b4:c2:49:1b:5c:eb:39:08:d3:25:f5:91:1e:b7:
61:fe:09:d3:b2:c2:77:32:ec:88:7f:48:90:5b:3e:
11:9b:04:31:29:cb:ee:91:98:f6:bd:6a:5a:35:7b:
b0:50:df:fd:16:f3:41:30:9e:b3:16:a5:92:26:71:
2a:44:b3:44:78:04:6b:f9:35:b1:da:80:5e:36:65:
99:fc:44:1c:f1:e4:a9:d6:c0:4d:55:2b:e3:7d:ab:
92:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:59:8D:00:37:90:5F:6C:70:C9:E6:52:09:34:D0:2B:78:9F:9F:59
X509v3 Authority Key Identifier:
keyid:CC:65:32:64:9A:6A:EF:47:14:84:1B:9C:8F:54:66:0D:88:9B:06:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zGUyZJpq70cUhBucj1RmDYibBik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/310d34-f5d8-4e96-9b7c-648f501afae5/1/9VmNADeQX2xwyeZSCTTQK3ifn1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/310d34-f5d8-4e96-9b7c-648f501afae5/1/zGUyZJpq70cUhBucj1RmDYibBik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fe:5e:41:d7:12:2b:38:a1:e4:30:05:fa:d7:47:43:d7:da:
7c:a9:ee:09:89:a2:5d:a2:e7:c3:1c:21:9d:e8:59:ff:08:38:
fe:23:37:a2:bc:ff:9e:7f:4d:17:19:16:82:59:11:49:38:9f:
20:50:4c:5f:9f:b0:38:8e:63:81:c7:53:d3:f3:9f:b1:a3:84:
4e:e9:61:df:94:ef:de:2e:aa:76:c5:a6:7f:49:33:fd:e3:7d:
14:74:08:c7:63:2c:79:cb:6c:4e:a3:58:44:c1:e6:5c:60:e9:
bf:6e:cd:eb:40:44:bd:50:22:b2:fb:2d:f8:7e:8c:89:a7:94:
cc:39:5b:4e:79:73:67:07:04:a4:86:26:c2:d1:7f:66:bd:e5:
fa:cf:df:53:85:14:cd:21:13:74:de:b8:ec:71:d4:28:be:68:
22:92:02:68:cb:75:8e:7b:87:a7:85:a6:7c:ba:39:c5:17:b3:
ed:4d:c4:ff:e9:b2:e6:43:a9:46:2b:54:93:c9:3e:d5:38:75:
aa:a4:7b:bc:94:73:97:00:3d:b8:5a:6a:d5:db:f0:6d:82:e1:
f3:37:cc:7e:48:5f:f7:04:1b:8a:10:74:e1:21:86:fa:35:5e:
9d:80:32:fc:ff:bb:58:7f:99:d0:22:d4:cf:cc:66:da:b9:e4:
5a:6e:ea:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org