Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/THVqRxU0qhMA2k3bR8_UPAfOkV4.roa
File: THVqRxU0qhMA2k3bR8_UPAfOkV4.roa (raw, json)
Hash identifier: HFyD8JUKQTRV5MLVuMDgMFhyuZISN00gopeU1N5hQYE=
Subject key identifier: 4C:75:6A:47:15:34:AA:13:00:DA:4D:DB:47:CF:D4:3C:07:CE:91:5E
Certificate issuer: /CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Certificate serial: 09BF3BEE
Authority key identifier: 0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/THVqRxU0qhMA2k3bR8_UPAfOkV4.roa
Signing time: Sat 01 Jan 2022 12:55:12 +0000
ROA not before: Sat 01 Jan 2022 12:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44207
IP address blocks: 195.184.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163527662 (0x9bf3bee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Validity
Not Before: Jan 1 12:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c756a471534aa1300da4ddb47cfd43c07ce915e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:77:bd:4a:73:fe:b1:2f:7d:a2:05:c6:bd:34:
5d:a1:97:3e:30:41:4f:b9:37:73:f0:fd:0c:56:c4:
86:b6:62:66:24:09:6f:d7:4d:73:1d:bd:78:90:87:
e8:d0:c5:8c:bf:52:d2:a6:62:24:5d:b6:91:9e:32:
49:c3:4c:5e:3f:4b:dc:32:b6:86:99:2b:78:68:b5:
a7:fc:5f:53:29:1f:b1:bb:d6:4b:92:f1:7d:5f:f5:
97:7d:78:d1:f6:48:52:ba:67:1d:22:44:a8:bf:27:
96:39:95:a3:7b:37:db:c0:55:1c:4c:52:ec:2f:55:
c5:2b:18:17:11:9a:14:cf:c1:d3:ce:68:ca:26:9d:
2e:0c:98:5f:12:a1:8c:18:ac:ba:f8:5f:6b:cb:82:
5b:aa:54:d6:ad:b2:de:dc:cc:79:1a:2e:df:56:b8:
94:02:56:8f:28:d3:f6:77:f9:6a:cc:99:23:54:65:
f6:fa:68:00:5f:ee:c0:6a:82:e1:1f:f2:9f:71:7a:
67:71:7a:16:96:cd:5a:78:a1:8f:73:28:4e:1b:32:
d1:9c:a8:52:31:7c:0a:df:1d:e5:4c:05:81:4a:59:
2e:3b:86:09:03:59:fa:9d:c0:4a:62:38:01:04:f3:
21:a8:a1:dd:bd:92:4d:97:e8:80:f1:3d:d6:3b:45:
19:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:75:6A:47:15:34:AA:13:00:DA:4D:DB:47:CF:D4:3C:07:CE:91:5E
X509v3 Authority Key Identifier:
keyid:0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/THVqRxU0qhMA2k3bR8_UPAfOkV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/ClMYxYv1unQySyXQN0BN2N2p_yQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.94.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:8d:f9:fe:2a:d5:c9:60:da:dd:27:fa:75:83:63:46:8b:ea:
78:95:ba:40:39:66:54:3b:a5:ed:24:12:d7:4a:34:3d:0f:37:
ec:09:f7:ab:00:28:9b:ca:f4:3c:dd:9f:47:61:be:da:17:62:
76:9b:15:9f:6d:43:5f:bc:b0:09:8b:0b:5e:a6:18:f5:fd:9b:
70:c3:51:45:5a:17:96:91:4a:f8:a5:8b:7e:59:38:b5:e5:1c:
6e:b5:f1:de:99:ac:6a:a0:b0:22:85:b8:c8:d9:fc:6d:61:5d:
05:95:33:c7:a0:f0:35:32:14:a3:ee:79:e2:cf:9f:80:82:0b:
9b:99:eb:54:01:33:14:97:88:6c:dd:f5:01:ad:ce:38:50:d8:
49:a4:6c:a7:e7:d7:ce:9f:18:91:03:81:89:47:38:24:6c:25:
3f:93:13:09:d0:a0:fd:ed:a9:f9:ab:19:46:09:a6:5c:7c:14:
33:35:0a:cc:c2:aa:53:1a:a4:76:fc:e4:30:0e:81:10:75:a0:
44:ad:b6:41:1e:9d:c8:b0:73:8c:a0:fe:97:eb:fb:62:69:00:
09:88:c8:56:ac:22:b5:ef:03:4e:3e:5e:4d:ad:bc:75:f7:e8:
6f:67:11:49:f7:08:ca:2e:79:79:95:e9:73:b2:10:5d:04:17:
c8:fe:d0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net