Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/h_D5lHBwnC4jHM3QlSX4xLqXJ-Y.roa
File: h_D5lHBwnC4jHM3QlSX4xLqXJ-Y.roa (raw, json)
Hash identifier: KzLW/Sj/l9izqrPIhkG3vmLw9SO0Vz4d14zHWCHDaSE=
Subject key identifier: 87:F0:F9:94:70:70:9C:2E:23:1C:CD:D0:95:25:F8:C4:BA:97:27:E6
Certificate issuer: /CN=1346e30276e0c603d0dee2f2d42fcd9a4415e256
Certificate serial: 014888
Authority key identifier: 13:46:E3:02:76:E0:C6:03:D0:DE:E2:F2:D4:2F:CD:9A:44:15:E2:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/h_D5lHBwnC4jHM3QlSX4xLqXJ-Y.roa
Signing time: Tue 26 Apr 2022 06:45:19 +0000
ROA not before: Tue 26 Apr 2022 06:45:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33925
IP address blocks: 195.177.224.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84104 (0x14888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1346e30276e0c603d0dee2f2d42fcd9a4415e256
Validity
Not Before: Apr 26 06:45:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87f0f99470709c2e231ccdd09525f8c4ba9727e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:57:63:3e:37:82:8d:36:49:bc:23:ab:4d:
dc:d7:47:71:e5:3b:9c:4d:c4:64:c2:b3:9b:38:5a:
7f:09:1c:60:86:6b:1b:be:ad:dd:42:38:49:d6:a7:
b9:e8:58:b6:93:9e:78:88:57:46:d5:58:c7:ef:a9:
a2:5c:5d:b3:f8:b8:41:2e:17:da:44:b9:5a:79:b7:
d9:32:cd:2d:44:20:a0:45:1c:99:c6:57:ed:38:35:
6f:22:08:ef:02:59:25:0b:58:38:73:55:d2:05:ca:
11:4c:a1:16:b5:2e:79:9c:53:a6:cb:cf:74:54:4b:
97:c3:9e:5d:b7:d4:c4:a3:06:a7:38:04:aa:f5:1e:
c5:7d:6d:af:6f:fb:16:54:1a:7c:b1:d1:21:94:c2:
33:7c:7c:9a:6c:f1:81:e5:5c:77:9c:66:aa:31:69:
02:a2:7e:91:d4:66:22:64:e0:e6:02:2c:2b:da:ba:
23:cf:4e:3c:ff:37:ae:ad:08:75:4b:7f:78:7f:97:
9a:57:85:86:22:9d:61:04:e1:b0:69:02:29:67:ce:
9e:86:eb:e2:4a:94:c7:7c:ef:39:cc:a6:0b:73:d9:
2e:82:c0:db:25:9b:2f:3e:7b:a2:05:8f:8d:72:4a:
b7:a5:ce:80:71:9d:5b:c5:d7:c2:3c:0a:49:1f:d8:
c9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F0:F9:94:70:70:9C:2E:23:1C:CD:D0:95:25:F8:C4:BA:97:27:E6
X509v3 Authority Key Identifier:
keyid:13:46:E3:02:76:E0:C6:03:D0:DE:E2:F2:D4:2F:CD:9A:44:15:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/h_D5lHBwnC4jHM3QlSX4xLqXJ-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.224.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:ac:0f:b0:3f:2a:4a:16:c5:cf:73:18:64:d6:93:0e:9b:c8:
a5:00:fc:c4:a1:79:d3:47:53:51:65:b4:ae:5d:96:3d:6d:62:
c5:e2:85:7f:a8:4f:c0:4c:d5:75:2d:a6:6b:62:45:e4:f0:86:
af:9f:30:40:ae:ab:7d:18:49:25:53:a9:3a:0a:a5:ab:ce:80:
0d:94:a7:c8:de:39:ee:76:cf:82:a5:55:10:dc:c3:b9:af:40:
42:10:dc:6a:14:4b:c2:9b:30:9f:29:e1:e1:a0:0c:ea:6d:d9:
8a:c4:57:26:a0:63:37:db:2f:3d:7f:73:60:b5:89:c0:15:f3:
e9:a4:95:43:46:0b:f4:13:04:3a:c5:f5:fd:72:a0:7a:9c:0d:
bf:b7:4d:20:d8:49:8a:33:6e:0a:cb:9c:c2:40:8d:b3:f9:72:
5a:b2:04:fa:33:12:95:ef:97:81:ed:26:1b:5a:8d:64:1b:d1:
80:00:d2:48:5c:10:73:fb:87:b4:cd:1b:6f:b3:3b:df:ea:e9:
d6:67:46:3f:1f:31:11:5d:53:83:c1:fa:ec:ad:f9:1c:21:22:
96:c9:ad:98:6d:59:27:b6:35:1e:2b:ce:1c:76:66:fc:35:f5:
1c:0b:d9:45:bc:95:9b:fb:e6:68:39:c8:5a:21:46:06:21:91:
f7:5e:e7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:44 2024 by rpki-client on console-fra.rpki-client.org