Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/132jO9Rn3Slb6D6O0y87_d78XB0.roa
File: 132jO9Rn3Slb6D6O0y87_d78XB0.roa (raw, json)
Hash identifier: 4/pwJ9Yan+DudR1ISFGBvyXZ3MIopL7ZlzfVLgJpNIw=
Subject key identifier: D7:7D:A3:3B:D4:67:DD:29:5B:E8:3E:8E:D3:2F:3B:FD:DE:FC:5C:1D
Certificate issuer: /CN=02b980c10d7110f91fff9e0eceb639d9e75b35e2
Certificate serial: 023AACCF
Authority key identifier: 02:B9:80:C1:0D:71:10:F9:1F:FF:9E:0E:CE:B6:39:D9:E7:5B:35:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArmAwQ1xEPkf_54OzrY52edbNeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/132jO9Rn3Slb6D6O0y87_d78XB0.roa
Signing time: Sat 01 Jan 2022 15:00:57 +0000
ROA not before: Sat 01 Jan 2022 15:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 195.74.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37399759 (0x23aaccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02b980c10d7110f91fff9e0eceb639d9e75b35e2
Validity
Not Before: Jan 1 15:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d77da33bd467dd295be83e8ed32f3bfddefc5c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:58:45:4a:c1:6c:ef:d2:07:3c:a5:fd:e4:22:
28:8b:0b:df:ca:16:07:a7:69:fd:bd:8d:38:6a:8a:
25:93:56:22:22:a2:dc:d8:e8:61:24:23:04:27:be:
9f:6e:bb:f0:ae:79:bf:c8:52:7b:5f:7b:ba:dc:f9:
cb:bd:da:9d:ba:24:b9:a2:11:39:29:df:80:87:13:
69:cf:05:52:0f:82:09:bc:08:13:07:db:fb:e5:73:
39:7b:09:d1:3f:5e:e9:8b:4c:e2:97:b5:11:bd:98:
71:8a:4d:c4:10:9b:cf:74:5f:1c:ed:d2:e0:86:fd:
89:49:58:e3:18:72:0b:7c:5a:e1:95:b0:c7:5f:03:
9d:fb:99:c3:98:79:d4:4d:c7:b8:ea:03:59:cb:31:
29:c7:c5:7a:46:75:49:2b:ad:60:e2:00:6a:48:6f:
4b:21:a5:ff:2f:5f:63:83:d3:25:4a:6f:8c:5f:fa:
16:76:50:30:7a:c6:64:0c:e0:fb:71:91:d8:d1:c9:
45:34:54:9a:4a:76:32:43:b8:36:c5:98:75:ac:1b:
7d:f7:43:cf:3b:9c:ea:f0:df:0b:3f:c7:31:8e:33:
b1:e3:b9:af:26:92:9a:23:60:7b:f5:4d:00:8d:9d:
f3:1e:44:3d:8d:95:ef:72:f1:1e:53:1c:e6:fd:a0:
eb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7D:A3:3B:D4:67:DD:29:5B:E8:3E:8E:D3:2F:3B:FD:DE:FC:5C:1D
X509v3 Authority Key Identifier:
keyid:02:B9:80:C1:0D:71:10:F9:1F:FF:9E:0E:CE:B6:39:D9:E7:5B:35:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArmAwQ1xEPkf_54OzrY52edbNeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/132jO9Rn3Slb6D6O0y87_d78XB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/ArmAwQ1xEPkf_54OzrY52edbNeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.74.60.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:e3:2f:0a:88:06:fc:57:4a:77:27:bd:e5:36:2e:3d:ca:54:
fa:d9:b7:4c:a6:89:69:12:83:55:57:38:23:63:17:ba:4a:c3:
af:53:db:5f:c0:61:d6:18:08:10:ed:b8:35:27:51:a2:eb:36:
5d:08:ac:16:33:35:1c:b5:bd:1c:c9:a5:78:25:61:e2:4f:69:
49:c4:3f:3c:6d:f3:7b:7d:cc:5e:b7:f8:e1:c7:3a:cb:9c:bb:
a2:a4:51:be:e6:dc:07:bb:fc:ca:98:74:d7:38:39:3e:67:94:
75:1c:ab:92:5d:0a:2b:db:d6:08:27:36:75:ca:61:0c:86:e7:
07:60:cf:2d:2a:4d:8e:c8:7a:88:1a:6a:ea:ab:86:61:0f:bf:
ce:29:67:9a:96:fc:9c:c0:a8:a1:f5:a0:b2:12:5c:89:09:6e:
ac:b8:ff:90:e5:d2:ad:d4:59:10:45:e8:e3:1c:6e:c9:33:8b:
ad:4b:32:0b:6b:30:02:b1:c5:0c:d1:a3:b3:d4:69:61:be:40:
42:ac:37:d5:c7:9a:bb:ee:f8:94:df:08:d9:3d:46:e3:22:c4:
42:0b:6d:d8:fc:7f:a6:8a:07:64:9e:5d:3a:fe:8d:a9:49:7a:
1e:c3:28:ae:a5:62:16:2e:b9:7e:e3:64:b6:8a:7d:79:3a:ef:
88:43:9a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org