Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/265efa-f049-4647-8cf1-824ccefd9c81/1/rph3WvAceg2WOqfVaOTSyBAuLrI.roa
File: rph3WvAceg2WOqfVaOTSyBAuLrI.roa (raw, json)
Hash identifier: BHUgtXvxTl++XAgIRT8HP8+lnly2PoT9pVW0ji7ofmk=
Subject key identifier: AE:98:77:5A:F0:1C:7A:0D:96:3A:A7:D5:68:E4:D2:C8:10:2E:2E:B2
Certificate issuer: /CN=0f91e5b58da326e654e994fef2195276759579be
Certificate serial: 22D2EC
Authority key identifier: 0F:91:E5:B5:8D:A3:26:E6:54:E9:94:FE:F2:19:52:76:75:95:79:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5HltY2jJuZU6ZT-8hlSdnWVeb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/265efa-f049-4647-8cf1-824ccefd9c81/1/rph3WvAceg2WOqfVaOTSyBAuLrI.roa
Signing time: Fri 27 May 2022 08:50:13 +0000
ROA not before: Fri 27 May 2022 08:50:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41638
IP address blocks: 195.138.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2282220 (0x22d2ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f91e5b58da326e654e994fef2195276759579be
Validity
Not Before: May 27 08:50:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae98775af01c7a0d963aa7d568e4d2c8102e2eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5a:e3:29:d6:95:72:17:bc:84:54:ae:dc:22:
08:db:6b:da:0e:7f:5e:10:2e:72:c3:05:83:e0:23:
8c:ec:41:7b:ed:be:e9:b1:7a:68:08:03:fc:e5:1f:
bf:2b:03:33:7a:3b:79:d6:6b:1f:56:ad:53:1c:e2:
2a:a4:ad:5a:44:7a:22:db:1e:c9:87:37:7f:f1:9b:
3f:5c:e0:d9:d6:0b:5d:23:32:58:ce:9a:2d:db:d2:
7b:13:2a:45:7b:bb:fe:12:21:3f:25:7f:76:0d:43:
75:2e:e7:71:67:77:ac:6e:2f:b0:88:00:eb:66:f5:
bd:4e:66:90:a1:da:11:1d:4f:1e:ae:78:d3:0a:cc:
39:8d:eb:e2:18:9d:bd:23:a1:85:e8:2a:8f:83:5e:
0a:1d:0d:73:cb:e2:1f:1b:fd:51:9e:62:04:7c:d0:
3a:39:72:83:f6:bb:a6:0c:76:ed:c6:ee:0a:e7:c9:
f4:6b:27:32:b6:cd:df:a7:cd:f3:1b:f0:c6:bd:3e:
a3:d6:72:4f:03:8e:70:49:53:8e:f7:98:88:c5:9f:
02:3e:f2:7d:74:91:91:70:81:6f:e9:67:f8:d0:81:
5f:18:a3:91:76:ca:db:03:f8:1b:49:9e:4e:06:69:
2f:25:b5:dd:b9:2d:54:78:83:e8:6f:c9:4c:bf:ee:
d4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:98:77:5A:F0:1C:7A:0D:96:3A:A7:D5:68:E4:D2:C8:10:2E:2E:B2
X509v3 Authority Key Identifier:
keyid:0F:91:E5:B5:8D:A3:26:E6:54:E9:94:FE:F2:19:52:76:75:95:79:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5HltY2jJuZU6ZT-8hlSdnWVeb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/265efa-f049-4647-8cf1-824ccefd9c81/1/rph3WvAceg2WOqfVaOTSyBAuLrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/265efa-f049-4647-8cf1-824ccefd9c81/1/D5HltY2jJuZU6ZT-8hlSdnWVeb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.222.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e9:0e:85:97:21:b2:63:61:25:89:b9:6b:0e:5a:a2:0c:17:
de:25:51:91:5b:a4:8b:7a:86:c2:36:f3:1c:2d:f3:49:5c:07:
c6:bc:b9:0e:48:2c:00:8e:0b:5b:00:37:6e:7c:44:c0:29:05:
41:f0:43:af:88:03:4c:6a:9b:7d:cf:26:1f:b1:b8:55:fa:b7:
76:96:0d:a3:02:f8:ff:b9:7b:23:2e:92:d2:ec:5e:9c:55:25:
e5:ea:5e:63:ec:3f:3b:bc:c7:47:bd:2a:a4:57:b8:aa:ad:b8:
5c:8b:78:a4:0d:71:43:20:8d:a1:44:27:e1:77:e8:c0:71:26:
8b:7f:a0:42:d3:96:85:94:51:18:55:9d:5b:db:c7:f3:cc:fc:
76:d4:ad:d5:b3:c5:3e:2e:00:29:1e:d2:8c:e2:1e:5b:63:68:
98:44:5a:8d:6a:6c:67:4c:d0:fd:44:e7:ab:4a:23:dc:24:2b:
89:39:3a:e0:ba:5a:0a:d8:e9:de:79:2b:f2:44:5c:6c:89:3a:
79:dd:4a:f1:b5:66:8b:4a:8e:c5:06:dc:91:c9:cc:51:29:43:
51:ae:4d:ca:be:bd:e4:cf:c6:5f:04:a2:d4:6c:de:74:29:3b:
a0:3d:33:22:91:75:9b:61:16:9c:49:44:fc:31:73:8d:f4:28:
3a:87:13:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:23 2023 by rpki-client on console-fra.rpki-client.org