Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c6152d-1c90-40cc-a206-ec3cb36d1026/1/fZp0J6G-YCuJi_bicwU7ErI0JlM.roa
File: fZp0J6G-YCuJi_bicwU7ErI0JlM.roa (raw, json)
Hash identifier: SQy7TT9MYtstpc2+JwzwmkRKlDWvMKREZr71OCfWI5U=
Subject key identifier: 7D:9A:74:27:A1:BE:60:2B:89:8B:F6:E2:73:05:3B:12:B2:34:26:53
Certificate issuer: /CN=1c78b1836decab4ff5bdfa5e377a3df87f18fc0f
Certificate serial: 60438E
Authority key identifier: 1C:78:B1:83:6D:EC:AB:4F:F5:BD:FA:5E:37:7A:3D:F8:7F:18:FC:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHixg23sq0_1vfpeN3o9-H8Y_A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c6152d-1c90-40cc-a206-ec3cb36d1026/1/fZp0J6G-YCuJi_bicwU7ErI0JlM.roa
Signing time: Tue 01 Mar 2022 09:03:05 +0000
ROA not before: Tue 01 Mar 2022 09:03:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43500
IP address blocks: 212.46.44.0/24 maxlen: 24
195.189.144.0/24 maxlen: 24
2a12:b40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6308750 (0x60438e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c78b1836decab4ff5bdfa5e377a3df87f18fc0f
Validity
Not Before: Mar 1 09:03:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9a7427a1be602b898bf6e273053b12b2342653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:50:60:ea:67:b3:f7:aa:32:54:db:90:a5:2d:
f9:a6:b5:fb:fa:bb:85:09:ce:ba:7a:a9:26:5e:5f:
b6:b3:a6:58:97:c1:1f:d4:66:d2:3e:7a:83:f5:d0:
68:7b:68:61:2f:79:bc:e0:57:74:06:10:d0:4f:55:
52:f9:8f:de:da:55:63:69:13:e5:85:55:8f:87:c0:
a6:5f:7d:9c:67:dc:83:19:69:e4:bc:20:a4:98:68:
7e:39:b6:b9:fb:bd:0c:00:4c:b3:5d:c7:aa:b1:79:
28:f0:56:46:44:14:36:9e:d9:fe:23:4e:1b:b3:4f:
0d:d0:33:81:c5:b6:a4:3e:e3:e4:b7:19:a6:bc:39:
fe:1c:7d:9e:75:11:ee:bf:f5:26:8c:84:44:fe:82:
c5:db:b4:dd:f1:67:f9:6e:ad:be:31:80:78:0c:ce:
8d:09:08:05:61:e8:0d:19:50:dc:ac:60:b8:71:2e:
d1:60:0a:97:7a:de:a7:34:62:5e:a4:e1:71:8f:35:
b4:3e:8e:0e:19:e0:6e:bf:d1:23:e6:c3:5e:b9:56:
eb:ca:06:e3:d5:74:76:80:df:ee:33:41:3c:db:48:
6e:77:8b:09:fd:4a:ec:63:a0:46:6f:8d:ec:8e:6b:
af:3e:f6:f9:a9:ea:5c:a1:81:49:0b:48:7a:a2:e5:
bc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9A:74:27:A1:BE:60:2B:89:8B:F6:E2:73:05:3B:12:B2:34:26:53
X509v3 Authority Key Identifier:
keyid:1C:78:B1:83:6D:EC:AB:4F:F5:BD:FA:5E:37:7A:3D:F8:7F:18:FC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHixg23sq0_1vfpeN3o9-H8Y_A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c6152d-1c90-40cc-a206-ec3cb36d1026/1/fZp0J6G-YCuJi_bicwU7ErI0JlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c6152d-1c90-40cc-a206-ec3cb36d1026/1/HHixg23sq0_1vfpeN3o9-H8Y_A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.144.0/24
212.46.44.0/24
IPv6:
2a12:b40::/29
Signature Algorithm: sha256WithRSAEncryption
67:b6:c5:9b:e0:dd:a3:81:6b:d9:5c:4c:be:5f:c4:99:2a:f6:
86:54:93:28:1a:b4:81:48:dc:44:f0:85:b8:80:96:25:39:65:
d1:5b:cc:44:e7:2e:1a:a8:b6:9e:aa:f4:5f:75:be:17:87:9f:
e3:f9:79:72:8c:e7:d8:df:03:25:7f:2c:d8:25:b2:bb:2d:67:
c4:f5:7b:4e:fb:a4:f7:95:12:d7:f3:3d:0d:38:45:04:0d:65:
97:91:13:5a:06:1b:9f:4e:5e:88:2c:8d:a8:0d:a9:55:5e:d0:
13:b4:e7:f3:7f:fa:95:d2:77:5f:36:74:bf:7b:7b:a7:ad:7a:
84:0c:02:c7:10:f3:c6:5a:a5:2f:8b:fd:77:65:3b:40:81:9e:
4b:9a:5f:a1:9a:73:28:5f:b4:cb:19:fc:4a:b3:aa:73:5c:c5:
12:04:23:cb:ad:7b:d0:be:f0:b7:93:76:cd:2c:38:95:16:ac:
6c:79:27:97:84:e4:f4:89:f4:c8:d2:7c:b9:5c:22:2a:5c:f7:
af:f8:c5:6f:05:49:5b:e1:70:66:77:c0:66:a0:93:2d:ef:82:
e8:b6:ba:1c:25:20:84:66:9c:2c:29:86:2a:eb:59:10:ab:8e:
6b:a9:56:25:2a:09:5c:99:a1:80:a4:04:c4:59:ab:08:99:5e:
53:c3:75:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:36 2023 by rpki-client on console-ams.rpki-client.org