Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CNHaF5pNbesxLdLfmtSsTeiEZpg.roa
File: CNHaF5pNbesxLdLfmtSsTeiEZpg.roa (raw, json)
Hash identifier: xV4C4fcjsP5H+28dHN+RJV1khAie9gmGQaFpIRO3YaA=
Subject key identifier: 08:D1:DA:17:9A:4D:6D:EB:31:2D:D2:DF:9A:D4:AC:4D:E8:84:66:98
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0184159B
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CNHaF5pNbesxLdLfmtSsTeiEZpg.roa
Signing time: Sat 01 Jan 2022 13:02:09 +0000
ROA not before: Sat 01 Jan 2022 13:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52073
IP address blocks: 195.14.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25433499 (0x184159b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 1 13:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08d1da179a4d6deb312dd2df9ad4ac4de8846698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2d:7b:ac:0c:8f:43:83:ab:8b:16:c3:17:bb:
6f:5e:9e:87:ca:9e:f4:d0:8a:0a:4a:5e:0e:15:21:
c4:53:77:89:ce:01:4f:81:69:b1:2f:91:3f:13:a2:
0a:7b:ed:64:9a:2c:1c:34:ce:37:47:cc:88:05:8a:
6a:51:de:a2:a5:3f:37:62:65:6b:bd:e0:fa:0c:44:
7a:47:76:ec:3d:49:02:d3:bb:6d:64:51:24:7e:31:
a0:09:e9:c7:e3:72:80:fa:b9:7c:b7:06:37:4d:81:
1c:18:e4:c9:05:f5:8d:4a:f9:6e:03:02:fb:92:06:
b9:8c:6f:22:47:71:aa:71:9f:45:04:55:af:d3:f7:
f2:45:a8:33:38:c4:92:5f:74:44:ea:19:d1:6e:0f:
a0:fa:e9:3e:86:80:1e:1f:b4:cb:be:81:c5:3e:d2:
3f:e9:fa:0d:d9:1f:e0:1c:0e:2b:46:55:b9:00:b3:
5e:3b:97:65:52:f9:ae:10:f6:0c:5b:55:45:8b:4b:
f2:e9:b2:df:0d:5e:86:47:02:db:f7:8e:cb:c8:7c:
01:9d:eb:1e:b1:fe:b8:0d:24:01:4f:8a:c2:0e:24:
30:70:f6:a3:7c:94:a7:60:9e:77:60:c0:02:3c:f7:
20:41:61:44:86:d6:a5:36:09:94:1b:99:96:16:94:
95:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D1:DA:17:9A:4D:6D:EB:31:2D:D2:DF:9A:D4:AC:4D:E8:84:66:98
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CNHaF5pNbesxLdLfmtSsTeiEZpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
49:3e:90:39:e8:a6:f6:a1:ab:fe:36:5d:a8:45:5c:cc:37:ba:
9c:a5:3e:63:43:14:63:ad:e2:83:11:a5:d4:69:66:35:fc:36:
87:c8:37:5a:1e:03:f0:d2:c2:48:e2:f7:41:6d:dd:60:cd:0c:
9d:75:34:28:dd:c8:93:da:c8:69:9d:43:10:ae:5d:bc:d4:24:
72:17:67:5b:47:21:d8:73:a1:5d:56:3f:8b:76:5f:2c:f2:be:
2c:5a:db:28:fe:39:51:82:41:ca:7c:6a:c4:3b:e0:fc:72:cd:
51:e1:e5:11:1a:e0:65:c3:03:95:e0:73:42:b0:64:eb:d2:90:
47:b1:ce:f5:b4:4f:47:e4:1f:97:45:cf:99:53:58:fd:5d:e3:
8b:76:a2:e3:2d:2d:18:0d:4f:eb:ab:66:53:e3:e4:53:c5:e4:
8e:e0:c7:04:98:10:80:58:6d:5d:a7:30:16:32:48:4c:8d:c6:
bf:88:2d:f0:54:6e:f2:88:b3:b6:3c:aa:78:75:bc:c0:03:ed:
32:58:30:5a:5f:ac:8b:46:1f:8e:59:c2:25:02:26:ff:a2:67:
66:c8:ce:d3:c3:2a:bf:eb:8e:db:a2:58:3f:61:44:94:18:bb:
eb:9e:38:1c:53:0d:ab:9a:b9:0c:11:b5:9e:46:95:95:56:88:
c8:6a:f3:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org