Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/CAHLvIA3dJhY3ABqUGCMC4JTmZM.roa
File: CAHLvIA3dJhY3ABqUGCMC4JTmZM.roa (raw, json)
Hash identifier: rm8ay54r/iOYEnrEUKaOkT7HOSChKkhZmL4fBUhjzLo=
Subject key identifier: 08:01:CB:BC:80:37:74:98:58:DC:00:6A:50:60:8C:0B:82:53:99:93
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0B6E1D25
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/CAHLvIA3dJhY3ABqUGCMC4JTmZM.roa
Signing time: Sat 01 Jan 2022 06:59:38 +0000
ROA not before: Sat 01 Jan 2022 06:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 195.216.182.0/23 maxlen: 32
195.216.182.0/24 maxlen: 32
195.216.183.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191765797 (0xb6e1d25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jan 1 06:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0801cbbc8037749858dc006a50608c0b82539993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:99:c5:df:cd:b8:92:76:ca:94:98:f9:09:
68:f2:7e:51:17:6d:47:04:57:22:9a:5e:78:45:49:
e4:76:22:f9:07:f3:28:90:2b:0c:a9:4f:2d:91:f8:
66:1e:d5:c3:d6:88:4f:e2:df:98:87:9b:2d:26:0e:
a2:1e:8c:44:94:15:fb:e1:a9:8c:62:27:40:57:cf:
70:ab:d8:5e:f7:65:26:fc:86:b1:98:46:65:10:41:
a4:ce:85:7f:1a:48:dd:98:f4:49:c0:33:f0:3c:98:
f3:a2:43:07:03:36:81:c2:69:28:d8:d1:54:66:87:
ef:77:27:f5:07:43:33:5e:9a:d2:65:2f:00:24:63:
99:f9:49:63:0d:2f:97:0c:ac:42:8f:59:2c:4b:e1:
bb:9a:30:af:bc:ab:74:ea:8a:1d:dd:47:3e:8b:16:
7b:8a:56:2c:3e:32:e9:a5:5c:a7:be:71:c3:be:97:
28:3a:6a:94:fd:19:92:27:4e:48:2b:d6:46:05:2e:
e1:61:47:0d:14:0d:09:d6:cb:82:79:dd:63:0d:c7:
91:bc:7a:5d:43:f9:38:f2:2f:15:0e:e1:c9:c0:37:
5e:21:af:ee:2e:f1:44:2b:ae:fa:a0:e3:9f:16:94:
a3:76:8a:0b:f5:e8:84:da:3b:75:ca:27:3e:5a:3b:
6c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:01:CB:BC:80:37:74:98:58:DC:00:6A:50:60:8C:0B:82:53:99:93
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/CAHLvIA3dJhY3ABqUGCMC4JTmZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.182.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:d2:73:c0:14:23:1e:8c:f3:87:5b:c7:88:87:cf:0a:27:49:
a5:f8:8f:09:ea:a7:a4:c7:ce:92:91:f9:78:bd:ac:1e:69:7e:
58:39:05:dc:b5:7e:78:20:cd:98:b1:53:b6:2e:f7:85:24:a9:
f2:c5:37:d2:91:1d:7a:c4:9c:d7:56:5f:d3:fd:2a:ce:6a:17:
ca:dd:1c:09:73:62:09:39:a0:5f:c5:72:79:58:92:17:43:1e:
ff:6c:c5:ee:7e:9d:ef:54:93:3b:d0:2c:65:16:5f:af:c6:b5:
88:bb:07:fd:3d:94:16:f6:e0:86:c1:df:11:55:86:c2:d3:1f:
6c:58:52:7a:a4:0e:ae:8e:5d:98:db:c5:7d:4f:20:b1:88:34:
9d:4a:f4:a8:46:55:f3:1b:14:1a:61:e4:ab:6c:ff:71:c2:fa:
4c:75:6e:40:31:b8:01:f2:3b:ae:db:21:7a:e4:3a:22:4d:7a:
be:f7:08:d6:49:22:a0:ad:ac:8a:55:ac:b9:36:f7:29:34:d3:
2e:3c:3c:02:0d:24:bf:b5:91:06:e0:4e:6e:cb:44:e8:d3:81:
14:5a:59:82:00:7b:3d:dd:67:7a:01:41:e8:dc:44:4c:af:95:
ae:5e:7d:58:80:01:45:4b:d5:01:eb:de:81:fd:f9:1e:69:c8:
ff:72:21:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org