Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/XZH4jyK0T30qj5TkvjoJ9TFzxJc.roa
File: XZH4jyK0T30qj5TkvjoJ9TFzxJc.roa (raw, json)
Hash identifier: PZd8woDZbBmC91RZPSniBD8WcI9zrDyKhqO5lKuxqhA=
Subject key identifier: 5D:91:F8:8F:22:B4:4F:7D:2A:8F:94:E4:BE:3A:09:F5:31:73:C4:97
Certificate issuer: /CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Certificate serial: 0517016E
Authority key identifier: AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/XZH4jyK0T30qj5TkvjoJ9TFzxJc.roa
Signing time: Sat 01 Jan 2022 04:56:43 +0000
ROA not before: Sat 01 Jan 2022 04:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211389
IP address blocks: 195.10.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85393774 (0x517016e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Validity
Not Before: Jan 1 04:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d91f88f22b44f7d2a8f94e4be3a09f53173c497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e7:13:b7:bd:3b:e8:18:6b:5e:2d:0f:86:77:
a0:d2:cc:db:9a:ea:bb:a7:ce:f7:71:59:9f:25:93:
11:3a:9d:94:74:17:b3:dd:21:0c:34:f3:01:b6:12:
7f:7a:d8:89:95:a4:87:92:01:cb:90:b5:e7:73:7e:
93:32:ea:09:93:ec:40:00:d8:86:63:d2:e7:f3:2a:
5d:d4:83:30:e5:5c:65:b0:9c:9f:9f:52:f6:71:c0:
01:ed:08:6e:f6:c1:4e:df:de:44:e7:ac:88:2a:76:
7d:d5:1f:44:b2:5f:23:a7:a1:6a:ea:15:6c:8d:f4:
c5:e9:ea:b9:4c:27:79:83:30:30:23:04:3c:6d:be:
92:8d:16:1f:65:b5:a5:f6:44:29:88:00:70:e0:fd:
d3:e3:a0:25:c9:bf:6b:5a:ae:32:e8:2d:73:1b:88:
91:87:4d:36:82:ee:83:9b:a5:06:89:49:e9:8a:6d:
b9:b3:f6:b6:63:26:27:4d:37:5b:79:2d:d6:60:49:
17:c9:f1:bc:69:c1:5f:88:6b:50:6a:f9:ff:a2:7c:
c5:93:7e:e7:a5:5c:2c:ed:40:d8:86:97:bf:73:82:
fa:f8:7c:d2:1a:35:79:b5:79:15:16:fd:a6:f0:9e:
ae:d4:45:45:ee:27:6a:d1:c5:65:b7:bd:48:3d:94:
ea:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:91:F8:8F:22:B4:4F:7D:2A:8F:94:E4:BE:3A:09:F5:31:73:C4:97
X509v3 Authority Key Identifier:
keyid:AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/XZH4jyK0T30qj5TkvjoJ9TFzxJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/rUQr3aKjUyCpbYBr8WjVuEp21CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.219.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a9:a7:86:f1:5d:46:7d:cc:4f:12:9d:a8:2a:ee:de:d6:b9:
dd:1c:81:fd:33:8a:99:ee:58:0c:a0:d8:6c:c3:96:7a:83:3b:
51:98:e8:5d:81:95:c5:7a:bd:71:02:81:6b:36:10:3a:4c:8d:
e2:17:b0:e5:80:8e:ad:17:13:68:39:ae:a9:2a:19:f9:c8:74:
d5:d8:26:5d:8b:00:df:76:a2:50:32:7d:a0:31:86:66:1f:dd:
16:7b:5f:2c:b0:86:45:2e:45:9a:d6:89:7e:e4:bc:8f:17:43:
cf:51:6d:da:53:8a:e2:e0:01:a1:75:e9:06:9d:c0:b6:61:16:
10:97:07:7b:bb:c3:c3:2d:3b:4c:2a:71:f8:3e:32:2e:1e:c8:
20:48:1a:03:e4:ca:86:f8:84:7d:26:49:ad:43:85:08:d2:9a:
b8:c8:c8:0e:9e:be:76:27:29:d4:0a:b1:bc:92:49:a2:e1:d3:
4b:8c:e9:d3:26:6d:43:48:1e:a7:49:67:da:ba:de:5d:c5:2b:
18:06:9d:7a:3a:68:02:71:f2:c5:12:42:b7:5c:61:15:c3:3b:
e4:ca:12:dc:37:bb:12:ac:1b:be:b5:08:2e:b8:99:67:fb:ab:
32:07:9f:14:76:b4:81:14:64:fd:85:56:2b:1e:ab:df:c2:ba:
97:13:46:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-ams.rpki-client.org