Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/ghWf88_fZ0CJ4kS3NR5NycsZPIg.roa
File: ghWf88_fZ0CJ4kS3NR5NycsZPIg.roa (raw, json)
Hash identifier: R/uYxS78fSd06CChx0J4FUkst6gYMWn1fUD4jN4OwXc=
Subject key identifier: 82:15:9F:F3:CF:DF:67:40:89:E2:44:B7:35:1E:4D:C9:CB:19:3C:88
Certificate issuer: /CN=85fcb229d878ae17ab31d98848892eea2bef96e1
Certificate serial: 06E43CCC
Authority key identifier: 85:FC:B2:29:D8:78:AE:17:AB:31:D9:88:48:89:2E:EA:2B:EF:96:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfyyKdh4rherMdmISIku6ivvluE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/ghWf88_fZ0CJ4kS3NR5NycsZPIg.roa
Signing time: Sat 01 Jan 2022 13:55:54 +0000
ROA not before: Sat 01 Jan 2022 13:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44780
IP address blocks: 195.149.92.0/23 maxlen: 24
195.158.238.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115621068 (0x6e43ccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fcb229d878ae17ab31d98848892eea2bef96e1
Validity
Not Before: Jan 1 13:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82159ff3cfdf674089e244b7351e4dc9cb193c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4d:01:62:b8:df:16:97:1a:50:56:24:9d:9f:
1c:34:e5:7b:45:41:ad:4f:cd:8b:4d:13:bd:e1:a3:
47:47:ea:ef:96:9a:bb:fb:c4:b8:41:24:17:de:1f:
ef:ca:75:e4:b7:a3:fa:60:57:f9:85:5c:f6:6f:13:
6a:ee:28:e3:d5:19:96:74:13:d8:16:c6:fd:a3:75:
76:2c:4d:05:3f:f7:43:e7:ab:4b:d1:bf:f4:6d:54:
47:2f:d2:dc:77:7a:d7:88:55:be:9a:5f:e7:91:58:
5d:77:c4:5c:96:d2:b4:58:25:aa:63:9b:34:d0:60:
70:29:22:6f:9b:7c:3e:28:64:7f:bf:7b:57:9b:79:
db:b2:5b:45:80:45:4b:b4:6e:a8:26:62:35:e9:6f:
bd:ea:5d:10:fd:7f:18:bf:5f:19:64:ee:c6:de:bb:
e5:55:3e:05:29:9a:46:f8:49:fe:d3:64:42:d2:d6:
cd:7d:94:78:5b:4c:00:7e:9e:e6:d7:6a:d6:af:2a:
00:b1:6d:0f:24:2b:0b:40:ad:cc:ee:e6:fb:79:a1:
f1:60:b4:ce:c0:48:30:dc:05:41:19:0d:e6:65:97:
4e:b4:91:83:35:b7:03:1a:4e:5a:ac:db:32:fc:3b:
28:ae:8e:36:39:f9:2b:c2:1e:f9:61:c4:8b:c8:91:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:15:9F:F3:CF:DF:67:40:89:E2:44:B7:35:1E:4D:C9:CB:19:3C:88
X509v3 Authority Key Identifier:
keyid:85:FC:B2:29:D8:78:AE:17:AB:31:D9:88:48:89:2E:EA:2B:EF:96:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfyyKdh4rherMdmISIku6ivvluE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/ghWf88_fZ0CJ4kS3NR5NycsZPIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.92.0/23
195.158.238.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:fa:38:fe:92:47:8f:64:ce:0b:87:25:d2:0e:e9:ae:e0:02:
08:6d:46:40:8b:42:d8:93:d4:51:b7:c1:c0:c3:11:ab:5f:a0:
61:d2:80:f6:da:29:ac:72:db:da:1d:70:84:57:5c:b9:e2:02:
d9:92:e3:8b:90:8a:ff:68:c0:6e:9b:dd:75:90:ce:78:04:e7:
ae:93:e3:79:77:52:49:6c:27:ba:4a:a8:c5:5b:57:e5:b7:6b:
3e:bd:70:94:15:5e:35:88:ef:9a:1c:cd:02:21:05:55:d1:fb:
25:4a:93:a7:5d:4d:89:9b:6e:e9:e5:00:34:c3:dc:e3:3c:5d:
6d:89:63:37:2c:70:68:17:7e:41:e9:88:f1:4e:94:0d:20:0d:
ef:aa:27:20:1c:bc:87:72:1e:ac:27:38:d6:33:e8:fe:4b:23:
1d:6f:68:d8:4d:3e:d1:e7:87:13:f7:40:d2:c3:be:d8:b7:3f:
37:72:3d:95:10:60:de:22:7a:80:7b:a2:7c:0c:74:94:87:b8:
32:c9:fe:5a:23:37:ec:5a:f9:cc:e6:dc:5d:de:00:b0:80:ef:
40:83:8d:6d:47:ab:5a:12:e9:7a:61:93:61:8e:6b:c2:79:74:
25:19:b1:9a:d4:a6:cd:dc:2a:8e:91:33:47:8e:db:4c:98:08:
c5:25:82:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:56 2024 by rpki-client on console-ams.rpki-client.org