Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/Th17y1OgClgTeg0lyxnZuHwYOkA.roa
File: Th17y1OgClgTeg0lyxnZuHwYOkA.roa (raw, json)
Hash identifier: IVuRxiiRTSpJC3860ye62O6p4qlXjJw/a+6wO6X+SdY=
Subject key identifier: 4E:1D:7B:CB:53:A0:0A:58:13:7A:0D:25:CB:19:D9:B8:7C:18:3A:40
Certificate issuer: /CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Certificate serial: 03EAE384
Authority key identifier: 84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/Th17y1OgClgTeg0lyxnZuHwYOkA.roa
Signing time: Sat 01 Jan 2022 13:57:31 +0000
ROA not before: Sat 01 Jan 2022 13:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206191
IP address blocks: 195.110.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65725316 (0x3eae384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Validity
Not Before: Jan 1 13:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e1d7bcb53a00a58137a0d25cb19d9b87c183a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:82:cf:82:04:ca:ad:1e:e8:fd:15:6c:6f:
04:c5:76:7c:b2:86:b6:1d:17:0d:29:36:06:2d:82:
0a:f7:94:f3:f0:e7:df:fd:3f:a2:6a:ee:cc:1c:bb:
67:96:a8:6f:d5:b7:21:4e:17:1b:91:c0:7e:ea:56:
a4:d2:a1:54:5e:fe:8c:d7:70:03:72:a2:ae:3f:de:
bf:48:e6:27:9b:b5:5d:ce:be:f9:34:59:d2:ab:33:
fc:41:06:42:84:4f:75:28:9a:a0:92:b8:4f:1d:85:
a3:30:fb:87:c9:71:7d:1d:42:ce:1f:78:e0:c4:2c:
62:27:7b:07:da:e5:e3:3a:78:5a:0c:bb:c1:e5:ac:
16:b4:0c:11:a7:73:19:f8:79:3e:4a:bf:e3:e7:6a:
a6:17:a5:0d:f2:d3:73:4e:64:d9:f2:a9:de:c4:ba:
f4:53:12:b4:06:e2:be:e4:d6:5c:e7:73:2a:bb:de:
bf:6a:db:3d:3c:aa:d6:9d:e3:eb:84:65:90:54:71:
a1:9d:f0:03:15:e2:bc:54:8b:87:73:94:27:e9:ea:
08:01:04:7f:be:66:45:0b:49:a6:38:d7:29:53:7e:
32:6e:4b:78:b5:d9:a3:64:13:6b:5e:51:ad:82:e4:
c2:ef:74:22:71:0e:45:4d:06:5e:51:f4:67:01:83:
43:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1D:7B:CB:53:A0:0A:58:13:7A:0D:25:CB:19:D9:B8:7C:18:3A:40
X509v3 Authority Key Identifier:
keyid:84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/Th17y1OgClgTeg0lyxnZuHwYOkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:78:03:41:2b:a6:b2:98:0b:17:1a:53:e8:dc:95:cc:33:4b:
69:fc:2e:85:43:e0:f2:e7:f2:a7:b6:73:15:2f:c7:49:d4:06:
a7:1c:49:28:13:51:10:8a:f1:12:a5:58:f5:b2:20:63:07:c4:
8f:3a:31:14:fd:8a:48:f9:e9:50:ce:99:45:b1:bc:8c:0e:f9:
e3:b9:aa:a8:74:e5:d2:45:1a:d7:65:37:f0:52:b1:95:42:a2:
ad:70:bc:65:c6:d6:6b:64:3d:15:2f:7e:1c:23:52:eb:ee:96:
72:72:2e:6e:0e:bc:c6:85:08:fb:ea:41:35:6c:55:10:4c:08:
28:e6:16:f8:37:68:ef:b1:80:1a:85:85:9a:9e:75:bc:6e:67:
9c:38:7c:7a:74:fa:53:73:ca:65:10:38:e2:00:f1:75:79:d3:
ca:3e:fa:e0:9e:1c:73:49:87:22:1d:96:f6:51:d9:a7:bc:b3:
3d:8f:ea:51:1f:da:dd:5c:c8:37:5a:3d:1b:1e:8f:14:a0:d8:
d4:24:1c:1a:28:a8:66:1f:1d:ad:37:79:c6:43:41:d1:6b:fa:
13:9e:71:fc:7c:4a:d1:c9:5b:fb:1d:8d:67:c0:9e:bf:a9:ad:
ee:0b:ed:e9:92:c0:9c:5c:22:96:21:57:2f:eb:10:ae:da:7c:
b3:0b:21:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:24 2023 by rpki-client on console.sobornost.net