Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/FLaHb_9U6oyYYk_Thp-cI05zaSM.roa
File: FLaHb_9U6oyYYk_Thp-cI05zaSM.roa (raw, json)
Hash identifier: YeuciufqRFLlUwGxqQeGS8BDOgYLjcM6bFyy0IuQ1K8=
Subject key identifier: 14:B6:87:6F:FF:54:EA:8C:98:62:4F:D3:86:9F:9C:23:4E:73:69:23
Certificate issuer: /CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e
Certificate serial: 0513F1B3
Authority key identifier: 07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/FLaHb_9U6oyYYk_Thp-cI05zaSM.roa
Signing time: Sat 01 Jan 2022 16:10:26 +0000
ROA not before: Sat 01 Jan 2022 16:10:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197763
IP address blocks: 195.22.120.0/24 maxlen: 24
2001:67c:2f00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85193139 (0x513f1b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e
Validity
Not Before: Jan 1 16:10:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14b6876fff54ea8c98624fd3869f9c234e736923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:43:65:c5:cc:64:dc:ab:28:f7:65:14:f8:10:
69:48:75:36:6f:3e:27:e8:bd:ae:d8:10:89:a0:86:
ad:5c:75:18:24:91:b4:42:9a:89:65:b0:3e:db:91:
be:55:86:45:5e:cb:48:79:23:90:b5:67:69:c1:32:
24:13:7a:65:41:52:68:ea:f3:71:9a:46:56:1a:53:
15:31:4b:51:a1:0a:7e:0d:3e:d4:7e:80:d1:7c:15:
79:91:47:92:98:73:92:dc:29:a7:36:52:24:a9:b8:
fc:fd:e6:c3:4b:54:c5:ee:50:a9:ac:a9:2e:56:02:
f2:ff:ef:70:b2:a1:04:aa:4d:13:4b:6d:02:de:67:
9b:72:21:54:52:eb:6c:74:22:d9:0e:de:e8:e2:0b:
c4:c6:75:40:9a:9f:ba:52:f1:26:30:14:cf:68:77:
f3:a8:24:35:ca:b7:6d:a6:63:7d:03:40:f5:be:f1:
70:3b:45:c1:bf:0d:0f:b8:9c:c3:04:b5:62:55:59:
54:fd:0d:97:98:98:cd:2d:06:6f:72:bd:b2:2b:30:
41:66:20:5f:1a:58:f6:75:f3:56:8e:4c:0f:f7:df:
68:eb:65:92:7e:93:60:94:d9:c3:e9:3f:32:89:4e:
b2:1f:b6:2f:e2:7d:3c:11:37:ed:8a:ef:9d:01:68:
1a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B6:87:6F:FF:54:EA:8C:98:62:4F:D3:86:9F:9C:23:4E:73:69:23
X509v3 Authority Key Identifier:
keyid:07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/FLaHb_9U6oyYYk_Thp-cI05zaSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.120.0/24
IPv6:
2001:67c:2f00::/48
Signature Algorithm: sha256WithRSAEncryption
53:53:23:af:ed:d4:76:3f:83:5f:45:d7:63:f0:48:66:e6:b2:
fa:45:8b:5d:d9:43:1b:92:c7:f2:f2:e8:32:f6:e0:7c:e9:c9:
9e:7c:8b:c5:f3:9f:aa:ba:d7:9b:44:dd:b3:f8:c2:9e:7e:9e:
be:cc:79:d0:28:4d:1e:79:5e:fd:c0:6c:4f:13:5e:ca:00:21:
fd:1e:9e:7d:5e:84:8d:4d:98:26:ad:3a:ee:a7:24:5e:f0:0d:
65:91:51:05:81:71:45:e3:76:8a:12:8e:18:86:23:a2:7a:3d:
8f:f6:a6:61:62:30:16:df:aa:f0:4a:05:a8:f0:4d:a5:4f:07:
03:71:4b:e0:dd:37:9f:ad:0b:2d:d9:38:11:40:00:08:d7:b9:
77:b1:f8:1f:12:d2:6e:72:b6:b4:7f:05:72:69:10:09:85:f6:
7d:36:1e:3d:59:84:71:be:29:cc:06:62:34:99:71:d7:d6:23:
17:d8:f5:2f:65:ac:85:bc:19:c4:76:ad:2d:44:7f:19:c9:51:
c5:06:2e:b2:c7:56:5a:7a:c9:d1:50:38:f5:14:5f:b5:41:c6:
cf:50:da:79:2d:b8:e6:82:be:59:05:df:b7:54:6f:47:ff:4d:
37:97:62:3e:21:d5:49:2a:1b:60:db:e6:a2:67:93:2e:3c:42:
f6:e6:8a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-fra.rpki-client.org