Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/xxBiwICMwvx3B7WN601XAhekLDw.roa
File: xxBiwICMwvx3B7WN601XAhekLDw.roa (raw, json)
Hash identifier: +60yF1+tSKT9hnmsIHz3LMg23JQRu7gQMD1VvI+tcaM=
Subject key identifier: C7:10:62:C0:80:8C:C2:FC:77:07:B5:8D:EB:4D:57:02:17:A4:2C:3C
Certificate issuer: /CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Certificate serial: 026C8E
Authority key identifier: 1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/xxBiwICMwvx3B7WN601XAhekLDw.roa
Signing time: Thu 26 May 2022 06:47:13 +0000
ROA not before: Thu 26 May 2022 06:47:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51325
IP address blocks: 195.226.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158862 (0x26c8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Validity
Not Before: May 26 06:47:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c71062c0808cc2fc7707b58deb4d570217a42c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:60:fb:df:14:8a:52:19:c3:5d:a4:c6:07:4d:
b3:3f:e8:98:a2:b9:f1:bd:92:7d:4c:51:6b:bd:82:
c3:cc:01:6a:89:5f:9f:01:97:48:20:eb:c6:4d:b5:
ba:2d:cd:60:da:ca:10:17:3b:ff:44:f2:9b:e9:1e:
d2:b8:2c:ba:2a:35:75:aa:95:ef:85:5c:90:ad:83:
47:b2:a5:2b:15:e9:8f:ef:98:f4:76:fe:f4:f1:a9:
3c:75:f9:f0:00:31:0f:59:17:ca:2e:9c:a3:5f:2a:
01:dc:4d:99:a7:26:ec:4b:3d:76:e2:25:1b:5c:b4:
38:97:a1:ae:4f:2b:44:c8:23:4b:9f:d9:02:61:f5:
9c:0d:7d:e8:0c:69:d9:42:85:cd:0e:da:05:d5:13:
1d:16:82:f1:3e:40:78:99:56:9e:9d:57:cf:8f:65:
8f:b6:fd:c3:d5:80:fe:09:df:0d:33:44:e8:c3:b2:
59:ef:d3:d4:c1:de:48:f1:72:0c:6d:c0:40:a6:38:
eb:a6:67:11:f2:65:d9:7a:88:5a:d0:5a:38:6f:c2:
e2:47:ec:b5:01:cd:29:7b:42:3e:96:8b:96:77:d4:
2e:82:92:90:2b:59:66:1a:a5:f7:57:9a:0d:46:82:
4f:09:dc:57:18:bb:22:4b:10:22:84:75:40:1b:d2:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:10:62:C0:80:8C:C2:FC:77:07:B5:8D:EB:4D:57:02:17:A4:2C:3C
X509v3 Authority Key Identifier:
keyid:1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/xxBiwICMwvx3B7WN601XAhekLDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.214.0/24
Signature Algorithm: sha256WithRSAEncryption
42:8f:d9:b7:4f:f9:1b:4f:90:1e:f3:4a:71:51:58:68:89:17:
62:65:04:e4:e7:c2:14:7a:0b:b2:af:3f:79:2a:0a:d0:e6:43:
8b:a9:e1:37:3f:c7:be:d4:b6:69:a4:04:bc:a4:aa:8c:a4:d1:
82:ec:e2:6c:4b:18:ba:82:46:b2:74:94:32:99:14:4e:23:72:
6f:df:06:3c:11:64:4b:e4:72:9e:ab:1a:81:b3:e3:1c:16:8a:
de:4b:66:f3:4f:67:35:72:df:46:89:f3:55:ee:b3:a1:ce:ee:
c2:78:94:91:23:d9:cf:56:5a:2b:ac:cf:28:a0:be:1f:8d:31:
6c:29:de:ed:0a:cf:24:0f:1f:31:66:86:36:cf:24:69:98:e2:
a1:ab:a2:53:f2:b2:ce:63:c2:12:66:cd:bd:93:a0:8c:c6:1c:
3e:e0:50:11:67:e6:f0:c7:25:43:7b:33:8b:8b:61:04:fd:ce:
4f:57:97:a4:0a:fe:b2:59:7e:38:2a:42:a0:de:3d:39:94:60:
9c:21:b1:78:26:ea:16:d0:1e:25:6e:59:9f:da:12:bd:51:89:
f1:0b:76:65:c0:bf:26:ef:54:17:51:0e:4e:48:83:5e:d0:76:
f7:8c:f6:d1:74:1e:c5:7d:f8:3f:8c:a8:db:0f:df:69:bf:88:
ec:cd:62:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-fra.rpki-client.org