Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/ASB3UmLGojPd0FfmclJOzxjgT1E.roa
File: ASB3UmLGojPd0FfmclJOzxjgT1E.roa (raw, json)
Hash identifier: diO1TmVovgN8kccdVG0YXpYAmU9cCawk39EsrwnewPs=
Subject key identifier: 01:20:77:52:62:C6:A2:33:DD:D0:57:E6:72:52:4E:CF:18:E0:4F:51
Certificate issuer: /CN=f589823ba14758007cde873af4bf47fd9c39737b
Certificate serial: 01EEBB8D
Authority key identifier: F5:89:82:3B:A1:47:58:00:7C:DE:87:3A:F4:BF:47:FD:9C:39:73:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YmCO6FHWAB83oc69L9H_Zw5c3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/ASB3UmLGojPd0FfmclJOzxjgT1E.roa
Signing time: Sat 01 Jan 2022 04:53:32 +0000
ROA not before: Sat 01 Jan 2022 04:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6782
IP address blocks: 195.196.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32422797 (0x1eebb8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f589823ba14758007cde873af4bf47fd9c39737b
Validity
Not Before: Jan 1 04:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0120775262c6a233ddd057e672524ecf18e04f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:27:aa:6b:9e:54:3e:71:28:b9:14:ab:40:
7f:7b:9b:4f:dc:f3:24:60:59:90:59:46:78:cc:ea:
03:da:cc:0f:6e:09:4b:97:8e:f2:f5:55:a8:3d:3d:
15:42:b1:c5:a8:a7:e4:18:f4:3d:ee:b1:c0:e1:36:
a1:f2:6c:d2:d8:ba:75:b0:ed:ba:fb:35:f5:9d:34:
dd:9b:b5:74:5a:f0:08:58:48:6c:79:52:bc:7d:67:
78:db:08:92:c5:ed:c2:23:7f:36:50:85:ea:fb:fb:
cd:8b:61:ac:df:6f:35:d0:8a:a5:98:43:c3:75:63:
b4:83:f4:f0:58:57:ea:ea:fe:6e:9c:a0:da:cf:00:
7d:b2:a8:29:70:b1:fa:77:42:c6:99:1d:83:44:e2:
d8:1f:71:55:4c:f8:5d:e2:a3:8c:97:48:1b:57:2c:
aa:c6:85:8c:8d:0f:de:2a:6d:2a:8c:59:53:cc:f1:
6f:c7:86:16:84:45:a2:87:ad:4d:17:44:24:0d:0b:
2d:2b:ac:2b:d5:f0:4f:9c:e4:9d:72:80:22:cb:3b:
82:a8:b1:c9:40:42:ee:c3:a4:ac:11:95:2e:b7:27:
3e:f1:02:01:16:77:83:2f:1b:e2:ed:f5:b9:50:ac:
ed:97:f0:f9:cd:71:95:2c:d5:56:3e:94:e6:43:57:
c7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:20:77:52:62:C6:A2:33:DD:D0:57:E6:72:52:4E:CF:18:E0:4F:51
X509v3 Authority Key Identifier:
keyid:F5:89:82:3B:A1:47:58:00:7C:DE:87:3A:F4:BF:47:FD:9C:39:73:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YmCO6FHWAB83oc69L9H_Zw5c3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/ASB3UmLGojPd0FfmclJOzxjgT1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/9YmCO6FHWAB83oc69L9H_Zw5c3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.196.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:b8:e1:7f:ef:e8:a3:25:13:6b:7f:1d:39:48:a9:9d:a1:2d:
25:8d:26:d1:08:57:dc:e1:58:a6:19:57:39:d3:3d:26:d0:05:
7c:95:f0:c5:c8:01:74:94:db:44:4a:ab:ac:bb:0a:6c:bb:65:
41:91:51:53:70:88:c8:9a:bd:5a:0e:dd:11:4e:4f:12:84:84:
d9:db:64:c7:3c:b4:83:7f:09:87:0a:b0:70:ef:c6:ab:de:8a:
37:ea:2f:fe:77:6c:57:bb:f0:8f:f8:49:e4:84:79:02:2f:5c:
f2:71:12:81:89:f3:1f:fa:45:ad:26:74:7d:d4:e0:00:53:44:
91:23:cd:bc:8d:b7:0e:04:d2:f6:29:95:cd:85:76:6c:be:5c:
70:16:3c:4d:b0:d0:36:84:96:69:1a:37:29:89:fb:e4:af:64:
05:8b:9a:85:30:22:17:45:3a:c6:6f:ba:fb:cc:04:d3:0e:2c:
5e:b2:e5:8b:29:4c:10:2a:5e:f7:aa:c3:4b:c8:83:90:ea:a2:
94:d3:28:79:a3:17:41:79:52:dc:cb:be:a4:bb:f0:73:a6:13:
4e:1e:12:8f:c3:50:6e:5e:a5:2f:4d:1b:a5:da:5f:d9:79:73:
d3:a2:d2:a8:c1:c3:91:28:30:f6:9e:ce:44:41:c6:fb:97:73:
7a:53:55:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org