Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/4hvQuPnCcjrKbhnuFxlEWJZj7KE.roa
File: 4hvQuPnCcjrKbhnuFxlEWJZj7KE.roa (raw, json)
Hash identifier: Xxp2cOEIk9mUTvrNw8K39VzPny9JS5XJyCpsfitKers=
Subject key identifier: E2:1B:D0:B8:F9:C2:72:3A:CA:6E:19:EE:17:19:44:58:96:63:EC:A1
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0B6ECC92
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/4hvQuPnCcjrKbhnuFxlEWJZj7KE.roa
Signing time: Sat 01 Jan 2022 06:59:38 +0000
ROA not before: Sat 01 Jan 2022 06:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31863
IP address blocks: 195.216.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191810706 (0xb6ecc92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jan 1 06:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e21bd0b8f9c2723aca6e19ee171944589663eca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:e7:16:4d:45:f7:86:22:e6:d3:e4:f7:45:
01:9f:65:62:cf:96:d4:37:19:f7:e2:cd:1f:a2:99:
19:26:21:2f:fd:ad:3c:91:f6:a5:ef:bb:f9:d1:85:
e3:5e:a4:59:f8:a0:98:43:e5:75:ab:ad:a4:71:63:
e6:28:23:86:fa:1e:0b:bf:6c:e6:50:1e:8d:ad:16:
e7:ea:fb:79:3b:d7:52:36:04:9b:37:eb:85:a5:e2:
e7:2f:cd:44:65:7f:5e:79:ef:6a:50:e2:b2:5e:8c:
92:ba:5b:f3:ac:08:53:0b:4c:c2:ed:9d:60:49:48:
2a:f7:2b:e8:36:a3:03:90:2c:f5:f5:17:1f:1b:5b:
98:4c:01:67:0f:d4:bc:5b:8e:86:f6:74:85:5e:80:
8f:e0:19:9e:1b:dd:e2:42:60:3d:20:2d:4e:0a:f3:
87:5b:22:49:a3:bd:b7:b2:f6:24:72:92:c3:94:6b:
97:77:cd:91:d3:c3:7a:73:32:b8:3d:7d:be:80:16:
69:02:6f:57:7f:3a:e0:b2:cd:2d:dd:d8:ff:51:92:
02:4e:2d:b2:35:1a:ca:cb:42:64:43:ff:e0:db:60:
42:c5:23:78:d4:a8:15:a6:b9:9d:55:09:e0:06:cf:
25:1b:1d:58:fb:ba:c5:17:e2:15:f6:99:a1:fb:8c:
0b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1B:D0:B8:F9:C2:72:3A:CA:6E:19:EE:17:19:44:58:96:63:EC:A1
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/4hvQuPnCcjrKbhnuFxlEWJZj7KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ee:ce:04:d7:7d:9b:7f:0f:f2:92:2a:f9:2d:3e:a7:cd:37:
b7:06:61:57:0c:67:63:b0:c3:5d:a0:e3:8d:bf:47:c2:ac:ef:
6c:d3:b1:03:2d:da:13:5e:ee:0b:4d:03:8e:02:e7:d6:a3:f6:
54:7e:89:19:c9:1e:97:1f:bb:4e:e5:dd:8a:3a:93:51:af:90:
b4:45:21:fc:30:53:fe:88:27:1b:db:fc:46:39:10:c8:4f:20:
15:ec:85:bf:dd:a2:69:44:b0:21:47:d8:8e:e9:41:a3:9e:18:
ba:30:ab:9a:aa:c7:79:1d:d6:e3:89:62:68:ad:f8:d2:81:35:
07:6d:a2:6e:81:e7:64:c6:65:7a:80:00:51:84:78:de:e1:13:
bc:67:78:a7:cd:4a:cf:56:5e:5d:a4:24:94:ea:d6:7c:8a:f3:
8e:fb:3b:2a:d4:b5:b5:3c:3b:52:57:e7:e2:b2:18:de:cc:2d:
41:a8:b4:65:65:e4:b6:c2:81:e7:4c:fa:ac:e2:7b:4a:b4:81:
ff:c6:d5:73:de:70:04:70:9f:fa:26:ce:18:98:94:c2:36:68:
3a:cf:36:8a:23:b5:08:5c:06:55:09:db:e5:65:53:57:25:07:
4c:b0:ae:98:33:9e:82:8e:44:f1:39:2a:cc:16:49:cd:10:44:
72:4d:39:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org