Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/iZImBDxo6KdT7d5ESDXevhAv9c0.roa
File: iZImBDxo6KdT7d5ESDXevhAv9c0.roa (raw, json)
Hash identifier: hv7Cgnk3D25Qh8pPXvtiOWufNKIciOctFWFS4cltZyQ=
Subject key identifier: 89:92:26:04:3C:68:E8:A7:53:ED:DE:44:48:35:DE:BE:10:2F:F5:CD
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 180B1FC4
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/iZImBDxo6KdT7d5ESDXevhAv9c0.roa
Signing time: Tue 04 Jan 2022 02:57:36 +0000
ROA not before: Tue 04 Jan 2022 02:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 195.7.2.0/24 maxlen: 24
45.12.161.0/24 maxlen: 32
147.78.221.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403382212 (0x180b1fc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 4 02:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=899226043c68e8a753edde444835debe102ff5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:b1:0a:b9:33:2b:5b:96:d2:58:e1:86:8b:
10:5f:44:6b:1c:91:1b:e3:dc:0b:bf:7c:f2:10:3b:
c8:b0:b3:2c:a8:76:9c:28:d5:b8:f3:ae:b7:c1:e3:
ea:5a:eb:72:15:cc:09:73:f5:a5:fa:4c:87:65:44:
98:4c:9d:0d:e4:41:17:62:9a:85:a6:67:99:06:cd:
d6:24:a5:3a:df:90:a2:04:9e:75:40:2c:a2:8c:c3:
bb:ab:c4:c4:d3:81:ee:62:b0:ba:55:0d:d2:01:f4:
10:d0:ab:e9:31:29:25:f2:45:14:7e:22:6f:8a:84:
d1:53:51:be:a9:28:b2:36:03:d8:0b:87:4d:8f:80:
88:c9:5d:4b:0c:20:bf:9c:3f:ad:ea:81:60:5c:5c:
33:b9:27:10:8a:fd:1b:4f:30:3a:5d:93:8d:e7:e5:
66:8e:a4:09:3d:b4:75:d4:23:ec:d0:2f:d6:55:a6:
32:aa:a7:43:18:a4:a1:f1:ad:ee:9d:d5:34:0e:25:
fc:6c:39:ff:83:01:68:92:1a:72:8e:56:8b:18:af:
d3:04:c2:78:ef:e9:48:64:a1:7a:29:f7:9b:a8:76:
49:2b:03:dc:5f:4f:69:e5:1c:2e:cd:6a:3c:17:48:
52:8a:41:77:2a:3a:5a:e3:b4:e6:3c:09:aa:11:ec:
f8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:92:26:04:3C:68:E8:A7:53:ED:DE:44:48:35:DE:BE:10:2F:F5:CD
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/iZImBDxo6KdT7d5ESDXevhAv9c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.161.0/24
147.78.221.0/24
195.7.2.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:2c:81:a9:99:20:8f:86:4e:5a:ba:b7:71:49:0c:74:47:96:
8d:be:dc:f9:0a:a6:7c:c6:8e:61:77:0a:a4:8f:fc:25:19:bc:
f5:e6:49:8d:ca:a7:c7:f6:c8:01:51:ef:b9:75:94:10:57:5b:
1a:7b:f5:85:57:24:62:15:a6:e3:f2:ae:ce:d6:84:73:41:c2:
49:58:dc:3b:13:fb:b0:73:b1:1c:18:7c:3a:02:b8:d2:f7:8e:
3e:f9:e2:ac:c4:e4:b1:af:3f:09:21:78:54:4d:38:d1:a6:0e:
86:ba:33:07:25:54:5a:16:6f:c1:73:19:99:23:17:2f:12:7c:
24:e8:b5:25:55:c8:6c:c2:9f:f9:4f:ee:2d:7e:92:07:a9:74:
b2:ce:2d:1e:76:e1:b2:8d:3a:ca:fe:dd:99:e3:b9:77:36:cd:
0c:85:7f:ad:63:79:05:ca:bd:6f:f8:7f:64:2b:8f:75:44:69:
2c:f2:88:d9:94:c5:fd:6d:eb:94:03:67:49:ca:3c:30:49:46:
fd:1e:7e:bb:ff:5a:e9:83:4b:60:2c:ff:1e:5a:58:59:fe:76:
94:e8:42:b9:d9:8a:03:f0:d5:15:bc:d1:b5:7e:f2:e9:5f:ba:
35:63:66:6e:53:89:83:27:10:f8:c8:32:f8:47:ba:01:df:4a:
c7:2c:53:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org