Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/448453-3285-4fb7-ac8a-69b52244d90a/1/Dyb0cITPFN5HQpO8LAtQtftYBfo.roa
File: Dyb0cITPFN5HQpO8LAtQtftYBfo.roa (raw, json)
Hash identifier: Ap9eps5ACpok7x4g2iWaQmiVE08BI7KCsbZ7CxgLJXE=
Subject key identifier: 0F:26:F4:70:84:CF:14:DE:47:42:93:BC:2C:0B:50:B5:FB:58:05:FA
Certificate issuer: /CN=f92c47f54075a373d8e0c11697aec90244376de3
Certificate serial: C5F45A
Authority key identifier: F9:2C:47:F5:40:75:A3:73:D8:E0:C1:16:97:AE:C9:02:44:37:6D:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-SxH9UB1o3PY4MEWl67JAkQ3beM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/448453-3285-4fb7-ac8a-69b52244d90a/1/Dyb0cITPFN5HQpO8LAtQtftYBfo.roa
Signing time: Sat 01 Jan 2022 00:54:53 +0000
ROA not before: Sat 01 Jan 2022 00:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42295
IP address blocks: 195.191.34.0/23 maxlen: 23
2001:67c:530::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12973146 (0xc5f45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f92c47f54075a373d8e0c11697aec90244376de3
Validity
Not Before: Jan 1 00:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f26f47084cf14de474293bc2c0b50b5fb5805fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0f:6d:9a:6b:bb:8f:cf:54:21:8f:25:20:99:
0f:38:5a:91:8e:0d:ac:07:9a:34:71:cc:92:dc:f3:
78:20:2e:f7:b9:b0:fb:f4:65:32:99:f3:a5:5f:45:
e8:e1:13:48:a0:e9:1f:a7:7d:32:45:1b:0b:12:e1:
08:fd:ee:17:65:25:04:45:54:c7:3b:8d:19:94:d4:
a7:c8:69:d4:20:45:7c:0b:ec:77:49:eb:33:72:84:
3b:78:09:b2:94:25:e5:17:80:39:6d:57:aa:27:75:
3a:4a:04:10:6c:9b:27:4d:2d:56:9e:55:42:84:9e:
d1:a5:31:6e:88:96:6a:0a:83:11:76:6d:d7:bb:77:
95:39:28:8d:76:15:82:a3:2f:67:57:aa:4a:2c:27:
89:60:d6:95:a6:de:08:57:3a:45:a3:3d:b3:a4:1d:
f9:05:76:c3:11:be:97:95:45:59:7f:2e:69:a5:a3:
83:f6:04:75:85:cd:4a:50:b5:19:53:be:0f:91:c8:
17:8d:38:3b:d9:d5:6d:c6:1b:d9:ac:32:ac:c4:0e:
6b:ed:3f:42:8f:92:c9:34:27:d6:93:ed:f1:fc:cf:
0d:54:20:fa:9f:af:88:92:36:72:a9:0a:19:8c:49:
eb:bf:da:1c:56:d4:5d:e2:6f:9e:02:cd:e6:74:bf:
7c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:26:F4:70:84:CF:14:DE:47:42:93:BC:2C:0B:50:B5:FB:58:05:FA
X509v3 Authority Key Identifier:
keyid:F9:2C:47:F5:40:75:A3:73:D8:E0:C1:16:97:AE:C9:02:44:37:6D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-SxH9UB1o3PY4MEWl67JAkQ3beM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/448453-3285-4fb7-ac8a-69b52244d90a/1/Dyb0cITPFN5HQpO8LAtQtftYBfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/448453-3285-4fb7-ac8a-69b52244d90a/1/1-SxH9UB1o3PY4MEWl67JAkQ3beM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.34.0/23
IPv6:
2001:67c:530::/48
Signature Algorithm: sha256WithRSAEncryption
77:fb:b9:c4:32:0c:06:ff:6a:6c:16:cd:73:b0:28:69:35:76:
68:2c:e6:ac:a3:a7:f5:61:6f:31:cf:b8:1e:c4:ac:33:c2:86:
27:ed:19:8a:c3:b9:b5:d3:a9:7f:4b:dc:73:ea:4a:c4:bc:00:
93:26:6f:19:ab:a6:03:eb:a9:06:3f:ee:56:21:b1:78:6f:19:
be:5c:52:45:6d:3c:31:44:37:43:2b:07:36:e3:f7:ed:8b:2e:
6d:a3:16:2d:a2:9d:0d:39:5f:cd:3d:56:70:fb:88:55:b8:a7:
3a:b9:c6:ef:8b:37:36:95:16:63:67:c7:f5:e7:3a:ca:ec:be:
f7:64:34:20:55:d4:f0:e6:c5:33:7b:f3:8c:76:01:01:38:4a:
c0:34:15:77:29:77:c3:50:89:e2:4d:4c:b0:25:bb:f1:f7:8e:
dc:87:d3:3b:12:55:a1:1e:f8:1b:ea:de:ad:07:e5:6e:2c:eb:
a5:2c:b3:10:f2:49:b9:18:19:ef:16:c1:c0:6e:d3:3c:b2:7a:
0f:d5:8e:24:45:f3:c4:ec:5e:3d:15:72:39:f2:a1:26:5c:16:
0a:85:31:23:ca:0b:93:84:7a:4b:61:55:bc:71:46:05:60:2f:
f9:e8:b8:a5:da:9c:fc:53:54:fe:05:83:63:ad:33:a1:26:56:
78:41:81:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:05 2024 by rpki-client on console-ams.rpki-client.org