Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/N12NHDsk3bgwTQmL-Fh6BDisls4.roa
File: N12NHDsk3bgwTQmL-Fh6BDisls4.roa (raw, json)
Hash identifier: AM7euDUtvzNroFUA+4NpC9AijL4t8/qA8kmAZkOiotQ=
Subject key identifier: 37:5D:8D:1C:3B:24:DD:B8:30:4D:09:8B:F8:58:7A:04:38:AC:96:CE
Certificate issuer: /CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Certificate serial: 030C47E9
Authority key identifier: 6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/N12NHDsk3bgwTQmL-Fh6BDisls4.roa
Signing time: Sat 01 Jan 2022 12:56:28 +0000
ROA not before: Sat 01 Jan 2022 12:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 95.156.251.0/24 maxlen: 24
185.223.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51136489 (0x30c47e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Validity
Not Before: Jan 1 12:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375d8d1c3b24ddb8304d098bf8587a0438ac96ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:29:5b:26:80:ea:b9:9c:ab:e4:80:c6:c9:24:
3e:06:af:c8:a0:09:20:4d:b6:8b:1f:23:f7:82:38:
1e:13:d1:76:1b:ef:3c:bf:66:b3:11:ab:14:9c:f6:
cb:91:bf:ec:53:d0:02:09:cb:35:61:d6:df:50:31:
4c:13:e5:bb:45:79:89:19:b4:80:28:69:f8:be:f4:
dd:e1:a9:54:37:20:84:f8:5e:b2:78:64:76:40:1f:
99:78:53:d7:ce:83:35:f6:09:b2:c1:3b:4a:1b:08:
0f:d6:84:71:b5:ca:46:60:1c:4a:2a:45:91:7e:ba:
4e:c9:32:01:7f:ed:cc:dd:90:70:37:4f:ad:1d:b0:
06:d2:c9:80:a9:19:59:59:96:ea:c6:62:e5:35:a0:
66:5e:83:2a:79:46:c4:d9:a6:ce:7d:b8:46:33:2f:
bc:67:ec:a5:d3:f6:f3:2e:cf:b1:5f:74:1f:81:08:
d6:67:28:a0:07:f0:3e:41:e4:4b:2a:cf:b0:2a:7a:
97:b0:0b:46:76:cc:9c:7c:ab:16:2f:38:25:5b:34:
b1:b0:cb:bc:e7:5d:39:f0:0b:9b:f0:14:c1:1d:6a:
19:01:e6:ca:33:88:31:cb:38:1a:9e:ea:42:4b:35:
1c:df:f0:47:19:74:bb:f9:48:b4:d0:d7:2f:23:23:
8c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5D:8D:1C:3B:24:DD:B8:30:4D:09:8B:F8:58:7A:04:38:AC:96:CE
X509v3 Authority Key Identifier:
keyid:6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/N12NHDsk3bgwTQmL-Fh6BDisls4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/ardZKec1zmWma9gtyotlHZhWzSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.156.251.0/24
185.223.161.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d9:5a:3e:4b:62:f9:fd:5f:98:45:b0:ec:e1:f5:a4:e3:59:
80:6b:5f:83:55:96:fc:1b:86:f9:f8:8f:d6:e4:20:98:b5:63:
fb:33:c6:4f:95:c7:6f:24:c3:ce:2f:9e:7b:40:58:da:aa:6a:
af:5c:6c:d8:85:ed:72:0e:b2:31:bd:ce:bd:95:70:64:2e:19:
75:57:5d:7c:b8:ea:a9:d3:51:e0:f5:4d:97:99:40:a3:26:18:
88:a6:ce:fb:a7:b8:d1:2f:f1:04:93:be:a6:e5:89:ab:e7:ba:
9c:16:9f:ba:1e:51:91:f9:de:07:76:25:23:5b:fe:e8:dd:b8:
fe:b4:6e:b1:81:4a:ac:36:8d:89:41:a8:8a:07:dc:a8:23:84:
e8:f9:3b:68:df:55:39:8f:72:e7:94:26:66:f0:1a:e1:d5:d9:
4a:12:57:d5:c5:eb:36:8c:7e:87:cb:42:16:bd:d2:92:5c:e4:
68:04:d7:84:56:5d:25:3d:8a:8a:04:20:32:d0:f9:d9:d7:8e:
f7:5e:2b:28:f8:8d:9b:d1:0b:97:83:1d:5e:96:32:5f:0b:df:
1b:d9:3b:90:43:d5:3b:1c:38:fb:e4:5f:7e:70:57:f7:30:cb:
23:64:91:b4:ca:3d:c1:5c:a4:2d:4c:58:71:4f:60:eb:23:17:
d7:ac:f9:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:48 2023 by rpki-client on console-fra.rpki-client.org