Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/fZ4NTivf7yzElBmpPpo3H0wFQ9w.roa
File: fZ4NTivf7yzElBmpPpo3H0wFQ9w.roa (raw, json)
Hash identifier: 41EX398PUjT3ylM8OHQudVIT0zrawNmQ7Z6rVblnu/k=
Subject key identifier: 7D:9E:0D:4E:2B:DF:EF:2C:C4:94:19:A9:3E:9A:37:1F:4C:05:43:DC
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0181D8EC26D856E72F6F258F87341DF01DB6
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/fZ4NTivf7yzElBmpPpo3H0wFQ9w.roa
Signing time: Thu 07 Jul 2022 13:49:23 +0000
ROA not before: Thu 07 Jul 2022 13:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 195.252.173.0/24 maxlen: 24
195.180.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:ec:26:d8:56:e7:2f:6f:25:8f:87:34:1d:f0:1d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jul 7 13:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9e0d4e2bdfef2cc49419a93e9a371f4c0543dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d3:a7:b3:6a:d4:6d:28:ba:63:62:ac:aa:91:
cb:d2:01:f5:6d:d4:8e:d8:98:7b:7e:bc:e2:54:2f:
59:45:e7:7d:bc:86:9d:31:2b:1f:f8:af:4a:79:c6:
e3:05:22:a7:51:1c:e4:f7:95:03:65:ac:7e:74:7e:
dd:14:ef:47:b3:de:8e:fe:b8:c4:b4:99:74:c0:fa:
8b:75:4e:8d:e0:c9:51:f8:02:c6:11:f3:92:09:61:
48:4f:ca:1f:83:bd:32:33:20:dd:b0:e3:85:11:fe:
50:31:c2:b4:c5:9c:3c:b9:98:f3:ac:a0:7a:f8:5a:
9e:b8:9c:2a:4d:51:92:2c:e1:ff:ba:8e:ba:0d:a2:
cc:41:07:78:89:08:7d:dd:67:23:2d:e0:a7:f6:04:
c8:59:6b:49:fd:5e:ac:6d:b7:08:4d:75:be:e6:7e:
51:56:78:61:64:5d:ee:1f:9a:d9:72:f4:dc:3b:22:
4e:f3:2c:72:0f:df:8e:9b:d1:2a:2a:49:40:fc:31:
73:1d:95:e7:b4:3d:3d:8e:8e:75:20:ab:1a:60:a7:
4e:f9:54:72:9d:1c:a4:99:dc:67:48:42:b7:9e:a0:
7e:0b:8c:36:83:a9:63:39:a5:5e:03:aa:fb:07:7f:
47:9b:22:8a:e4:d5:43:84:b1:f2:a9:ba:86:62:a0:
17:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9E:0D:4E:2B:DF:EF:2C:C4:94:19:A9:3E:9A:37:1F:4C:05:43:DC
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/fZ4NTivf7yzElBmpPpo3H0wFQ9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.191.0/24
195.252.173.0/24
Signature Algorithm: sha256WithRSAEncryption
47:da:25:28:d2:61:5d:cf:02:70:9c:42:fc:e2:d1:d4:e6:f5:
43:9e:c6:c8:cc:b9:4b:d4:54:0d:f7:ec:f4:a8:bc:66:08:9d:
44:7b:4c:57:82:16:b6:00:25:f8:8d:2c:45:c1:0d:b7:a7:ad:
83:a5:38:06:1d:71:5e:19:6f:c1:94:9c:d0:5f:da:5a:aa:b7:
9b:39:91:8f:4c:a6:6a:e8:06:0f:a7:38:4a:91:fe:17:de:42:
c3:c8:11:53:33:2b:cf:ea:01:3a:82:71:c1:7f:40:1c:92:71:
cc:40:85:d7:50:75:a4:dd:4b:5f:e8:cd:93:91:4c:4e:21:58:
7c:8a:17:49:c1:81:25:2d:64:8b:c7:a3:34:7d:23:6d:7c:de:
18:cd:c5:09:a7:14:45:ed:4d:4d:a0:9e:cb:32:87:40:b2:19:
f2:a4:34:43:3a:bc:13:f6:b2:c8:78:0e:40:7b:e2:ca:cf:62:
d7:6e:a2:dd:73:b5:d0:cb:b7:3e:23:49:86:8d:21:60:b0:5a:
18:be:78:b5:01:07:ee:c9:84:f3:f4:d8:d4:27:b1:15:5f:6f:
7f:d1:6a:db:22:98:2b:aa:23:0c:a7:9a:c8:9b:06:31:6a:1c:
db:2d:5b:c9:72:54:74:8f:97:51:95:31:76:b1:8b:0c:0d:46:
40:e2:68:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:24 2023 by rpki-client on console.sobornost.net