Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/1e1ebf-c3ac-49a1-b6a8-a4a075398b0e/1/if4j47wyikhggGXMDQkODvvvS7I.roa
File: if4j47wyikhggGXMDQkODvvvS7I.roa (raw, json)
Hash identifier: m9Zfh2tl/7NGdgPLPulDdGwC5idTTp+w1QB+LjuNOFE=
Subject key identifier: 89:FE:23:E3:BC:32:8A:48:60:80:65:CC:0D:09:0E:0E:FB:EF:4B:B2
Certificate issuer: /CN=9748828d7b99b0a97017ec26bcbefe96fdbe9579
Certificate serial: 046768F0
Authority key identifier: 97:48:82:8D:7B:99:B0:A9:70:17:EC:26:BC:BE:FE:96:FD:BE:95:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0iCjXuZsKlwF-wmvL7-lv2-lXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/1e1ebf-c3ac-49a1-b6a8-a4a075398b0e/1/if4j47wyikhggGXMDQkODvvvS7I.roa
Signing time: Sat 01 Jan 2022 12:54:50 +0000
ROA not before: Sat 01 Jan 2022 12:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29432
IP address blocks: 195.140.192.0/22 maxlen: 23
2001:7f8:1d::/48 maxlen: 48
2001:67c:2b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73885936 (0x46768f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9748828d7b99b0a97017ec26bcbefe96fdbe9579
Validity
Not Before: Jan 1 12:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89fe23e3bc328a48608065cc0d090e0efbef4bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5b:df:a8:a1:ea:79:0f:20:c7:3d:d7:48:90:
9e:75:f1:09:49:e0:b3:d5:da:f7:48:15:97:f5:0c:
ba:64:d2:4f:1b:3c:84:cd:be:e2:47:e8:90:0d:72:
3b:e1:ba:62:82:db:92:df:c2:f1:b1:24:1a:08:88:
da:10:25:7c:52:00:3e:f2:d5:77:ec:a8:19:17:4f:
59:2b:b3:d2:7f:fb:1b:1e:e3:d5:0f:35:d8:f0:f1:
dc:86:a3:4d:47:37:6a:4e:4b:eb:fa:4b:87:0c:32:
c2:7f:d7:60:32:5a:dc:86:b8:f8:53:15:01:df:d6:
cf:b4:33:85:54:10:2f:83:41:8c:06:ee:42:ba:50:
43:b2:38:93:6d:3d:ef:24:8b:0f:a6:0a:b9:6e:28:
b9:af:69:73:09:02:21:e6:c2:43:ef:d0:23:80:86:
83:51:a2:e1:86:98:c7:63:50:c6:a2:47:6f:ac:05:
91:ec:5e:52:53:d4:9f:49:8b:b4:cd:96:0b:7e:86:
0b:b4:44:61:3f:13:db:36:66:80:75:8a:4a:c7:92:
a9:ae:ba:41:fb:69:00:03:92:c3:1c:9e:83:84:66:
77:ae:c4:0d:80:82:b1:ad:80:b2:17:b4:22:0d:fa:
e5:23:34:90:86:6f:27:0f:4c:04:97:c5:8f:2a:23:
dd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FE:23:E3:BC:32:8A:48:60:80:65:CC:0D:09:0E:0E:FB:EF:4B:B2
X509v3 Authority Key Identifier:
keyid:97:48:82:8D:7B:99:B0:A9:70:17:EC:26:BC:BE:FE:96:FD:BE:95:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0iCjXuZsKlwF-wmvL7-lv2-lXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/1e1ebf-c3ac-49a1-b6a8-a4a075398b0e/1/if4j47wyikhggGXMDQkODvvvS7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/1e1ebf-c3ac-49a1-b6a8-a4a075398b0e/1/l0iCjXuZsKlwF-wmvL7-lv2-lXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.140.192.0/22
IPv6:
2001:67c:2b0::/48
2001:7f8:1d::/48
Signature Algorithm: sha256WithRSAEncryption
0e:28:a4:d9:6f:13:28:75:d9:69:e5:7f:c4:08:dc:23:8e:89:
2f:25:e0:69:58:c8:e8:7f:ae:5a:a6:09:1c:82:15:af:db:85:
3f:16:9b:38:d8:01:f6:80:43:87:0b:f8:20:47:e6:ff:83:87:
1c:ba:3a:e4:79:5e:48:ba:52:d0:18:b8:ed:8a:cd:14:ce:69:
78:67:ca:cf:5a:c1:da:40:7a:bf:b3:cb:93:91:47:a0:96:3c:
47:4e:fa:cf:c0:3c:a5:7e:6e:ff:94:38:e3:ac:4d:6c:25:61:
7c:44:50:d2:5a:79:5c:53:ed:a2:df:f0:98:e0:2c:b1:2c:67:
99:4b:e5:15:a7:07:45:69:aa:32:b4:f0:7c:88:1c:a6:c7:25:
97:90:ef:78:28:76:11:34:9d:20:3d:d2:48:da:3e:56:b2:72:
d1:f5:d2:49:0e:0b:fe:ad:7a:9e:44:e8:59:bc:6f:62:85:66:
5a:ee:92:e9:1f:19:89:81:04:74:8e:cd:d3:ae:d1:48:06:4c:
6f:31:28:57:31:85:69:71:41:1e:21:a1:11:1d:74:9e:8a:99:
24:7e:e5:31:5b:a9:8b:3f:9d:37:1f:67:6b:7f:1d:e5:0e:65:
10:c8:bd:57:df:49:95:e0:d0:75:75:7a:6d:c3:5a:f9:34:55:
89:ba:a4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:56 2024 by rpki-client on console-ams.rpki-client.org