Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3e0935-6a95-47a4-ad4c-3542f99be63b/1/PhVQHTOV9gUNBVYswRKMRVAVIyI.roa
File: PhVQHTOV9gUNBVYswRKMRVAVIyI.roa (raw, json)
Hash identifier: b9lOSaT7Mlha6PgvZ4U8M3DiI2LunGn5LLBk/mjalg8=
Subject key identifier: 3E:15:50:1D:33:95:F6:05:0D:05:56:2C:C1:12:8C:45:50:15:23:22
Certificate issuer: /CN=ee6f421c253096280347dc2e92ca10cc398c134f
Certificate serial: 02140D
Authority key identifier: EE:6F:42:1C:25:30:96:28:03:47:DC:2E:92:CA:10:CC:39:8C:13:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7m9CHCUwligDR9wuksoQzDmME08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3e0935-6a95-47a4-ad4c-3542f99be63b/1/PhVQHTOV9gUNBVYswRKMRVAVIyI.roa
Signing time: Mon 07 Feb 2022 09:25:25 +0000
ROA not before: Mon 07 Feb 2022 09:25:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21334
IP address blocks: 195.230.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136205 (0x2140d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee6f421c253096280347dc2e92ca10cc398c134f
Validity
Not Before: Feb 7 09:25:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e15501d3395f6050d05562cc1128c4550152322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9b:a7:b7:81:43:bf:ae:0f:2a:ac:69:7d:4e:
a1:c7:aa:e0:37:e8:56:0a:cc:89:12:8a:d5:14:6f:
1b:86:0b:66:bf:6a:2a:aa:fb:5b:d5:70:97:94:3b:
42:22:db:18:a2:ec:61:7e:1c:82:1b:e9:59:62:0a:
a6:98:d9:eb:62:ba:cb:a9:00:16:32:92:3f:78:ec:
94:b4:13:e9:93:5e:01:00:5e:b3:ac:4d:2b:b8:e1:
5d:87:e4:4f:7e:4f:81:40:e0:2a:fd:16:83:08:23:
b4:27:19:4b:66:f3:e0:2e:44:35:e8:74:d7:03:8c:
41:12:49:91:85:fb:28:92:29:91:23:49:9a:b1:7b:
fc:75:66:85:e3:47:83:ba:ae:7d:86:7b:9d:87:5e:
0a:10:83:0b:90:17:e5:f9:c9:a3:01:13:0c:22:91:
85:06:9c:a2:22:2b:bc:e9:c6:10:b1:1f:fe:14:fe:
72:54:be:aa:14:95:df:c0:4a:93:56:7f:a7:18:90:
25:b9:97:a3:96:33:54:ed:7e:33:1f:52:81:56:1a:
6f:39:85:8f:0a:54:13:bb:87:55:30:55:63:4d:21:
ed:f8:28:a0:a4:02:2d:90:45:6c:a3:c5:a8:89:e2:
93:92:47:84:5e:12:57:03:79:41:51:00:fc:44:23:
fa:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:15:50:1D:33:95:F6:05:0D:05:56:2C:C1:12:8C:45:50:15:23:22
X509v3 Authority Key Identifier:
keyid:EE:6F:42:1C:25:30:96:28:03:47:DC:2E:92:CA:10:CC:39:8C:13:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7m9CHCUwligDR9wuksoQzDmME08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3e0935-6a95-47a4-ad4c-3542f99be63b/1/PhVQHTOV9gUNBVYswRKMRVAVIyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3e0935-6a95-47a4-ad4c-3542f99be63b/1/7m9CHCUwligDR9wuksoQzDmME08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.106.0/24
Signature Algorithm: sha256WithRSAEncryption
06:dd:80:be:a5:1e:56:3c:95:67:32:64:a3:d6:22:c7:c7:99:
fd:b2:2f:0d:dc:5e:46:1d:94:c0:4b:e8:7d:3b:6e:5e:73:18:
e9:eb:ed:1c:0b:d8:bd:bc:a5:2d:b8:15:85:a2:71:11:1b:f8:
ea:61:de:36:d0:89:44:62:ea:a1:b4:3e:72:99:15:8b:e9:35:
68:8b:92:e7:53:be:e4:7e:23:4f:07:10:1e:71:27:cd:4e:24:
e4:99:6e:11:ab:03:aa:9b:96:08:be:e6:60:f4:4b:5f:f2:14:
1e:f0:b9:28:78:69:52:38:95:f2:22:3f:8e:df:6d:98:d6:9d:
31:49:3f:6e:46:28:36:26:7e:36:9f:7e:15:9d:28:d0:ed:4a:
ba:14:0f:87:af:2e:f5:e1:40:ca:ce:c1:60:12:f8:3c:b1:d7:
ed:70:0f:4b:e7:3f:52:b3:aa:a7:78:08:b1:8c:88:f7:11:cc:
5b:b5:a8:39:af:d6:ca:ee:45:79:87:d3:cb:61:d4:26:59:6a:
20:eb:6c:d1:7e:c1:2d:d7:91:7e:e1:2a:c6:0c:83:ec:8c:3e:
be:cb:70:a5:aa:66:6d:86:24:a3:f6:54:0b:73:f1:27:5f:13:
29:c6:97:96:a1:85:6b:db:4c:04:06:c4:21:13:b9:2e:dd:4f:
ef:af:1c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:28 2023 by rpki-client on console-fra.rpki-client.org