Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/bdd4bb-56ec-4762-958e-ecd998e05714/1/hDv065dV9ZF7kH3mbIeinchtEcc.roa
File: hDv065dV9ZF7kH3mbIeinchtEcc.roa (raw, json)
Hash identifier: uk5VgV4o1Ln6dRwb0Ba3PH0jfTxcLor5OL4lt/BX3/k=
Subject key identifier: 84:3B:F4:EB:97:55:F5:91:7B:90:7D:E6:6C:87:A2:9D:C8:6D:11:C7
Certificate issuer: /CN=29eca6737beea4c03b8e0678bea9838e1e52bf32
Certificate serial: 0162F8
Authority key identifier: 29:EC:A6:73:7B:EE:A4:C0:3B:8E:06:78:BE:A9:83:8E:1E:52:BF:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Keymc3vupMA7jgZ4vqmDjh5SvzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/bdd4bb-56ec-4762-958e-ecd998e05714/1/hDv065dV9ZF7kH3mbIeinchtEcc.roa
Signing time: Thu 21 Apr 2022 17:07:36 +0000
ROA not before: Thu 21 Apr 2022 17:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34517
IP address blocks: 195.182.212.0/23 maxlen: 23
194.102.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90872 (0x162f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29eca6737beea4c03b8e0678bea9838e1e52bf32
Validity
Not Before: Apr 21 17:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=843bf4eb9755f5917b907de66c87a29dc86d11c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:94:a8:5f:b8:20:af:ca:b4:df:cf:04:64:94:
ca:5d:9e:6c:a0:55:c8:e0:b1:b1:7d:59:96:85:e3:
6a:21:65:fc:0f:7d:12:96:04:07:5a:ca:92:86:bb:
5e:2d:07:cf:10:0b:e7:a6:f3:8b:91:9f:9f:91:a9:
d2:2f:50:41:2f:3e:20:27:77:97:dc:b3:07:94:dc:
bc:91:3d:ea:e7:ad:b4:a1:dc:ea:55:2c:b2:22:1e:
28:a9:4c:a2:0c:de:71:a1:f5:88:1c:a0:dc:ef:3b:
da:dd:f3:e9:53:da:cc:7a:96:0f:cb:e1:b4:b2:43:
da:d2:fc:fb:b5:4d:eb:45:9f:c0:e9:72:df:e9:37:
00:2e:0a:11:bc:9c:5c:ec:ff:0d:0b:bf:6e:a2:5e:
41:c7:d4:ff:8f:e3:0a:e9:3f:99:06:e4:f7:ad:76:
96:99:66:7e:2d:f0:af:7f:54:80:af:45:ca:c7:93:
d4:a6:4d:90:ec:91:c5:d3:c5:e2:c9:2a:3e:50:e2:
2c:9c:21:ec:81:5b:db:b6:9c:9c:a7:d8:95:87:73:
48:e7:08:d4:91:e8:ce:a4:a1:02:3d:13:3c:c1:84:
d8:36:c6:4b:47:29:c2:46:4d:ce:94:1e:13:dc:cb:
d4:b1:38:70:81:59:23:f0:fd:3a:22:6f:a2:5b:fb:
57:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3B:F4:EB:97:55:F5:91:7B:90:7D:E6:6C:87:A2:9D:C8:6D:11:C7
X509v3 Authority Key Identifier:
keyid:29:EC:A6:73:7B:EE:A4:C0:3B:8E:06:78:BE:A9:83:8E:1E:52:BF:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Keymc3vupMA7jgZ4vqmDjh5SvzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bdd4bb-56ec-4762-958e-ecd998e05714/1/hDv065dV9ZF7kH3mbIeinchtEcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bdd4bb-56ec-4762-958e-ecd998e05714/1/Keymc3vupMA7jgZ4vqmDjh5SvzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.215.0/24
195.182.212.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:cf:d8:3c:71:ff:ae:a3:0a:a7:bf:8d:ea:c2:b0:8b:42:47:
ce:77:8d:46:17:5d:f8:f3:89:c2:dd:35:c2:f4:bf:d2:4c:b4:
52:a1:c7:de:05:6b:ff:0f:fc:9c:56:50:78:03:40:7b:4c:08:
bc:07:3f:85:bf:a9:9b:12:3d:fc:0f:73:c9:75:cf:1e:d6:90:
ef:76:c3:b2:39:06:a7:d0:90:53:c6:b4:ac:76:24:0f:2a:91:
29:aa:b9:01:44:d2:82:9b:60:5e:4f:71:5c:d3:64:ad:59:67:
8e:b2:fd:86:9e:ac:e3:49:3d:78:2e:aa:c1:cf:66:04:26:ae:
de:c7:4f:af:f2:ce:1a:87:6b:3a:ef:4c:16:ba:55:53:cb:01:
7c:4c:8e:25:30:26:ae:f2:e8:88:7e:2f:0d:7e:4a:ae:d0:aa:
7d:3a:40:7e:cd:52:08:1e:7c:f3:53:d6:42:3a:51:4a:41:07:
f6:ff:f5:bb:07:57:2a:8c:b1:c8:e9:f0:09:e4:29:23:0f:7f:
50:b2:97:cc:14:f5:55:b9:8b:eb:23:54:af:7a:97:12:65:7a:
c5:59:86:3d:be:c9:9c:96:03:e0:3e:ce:51:7e:16:c0:52:a3:
92:7c:f9:30:d7:31:4c:c9:76:30:ba:5d:25:06:40:5b:ff:33:
a9:ad:53:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-ams.rpki-client.org