Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/x85oqP8EInbMJIhy8zo5Is9qzMQ.roa
File: x85oqP8EInbMJIhy8zo5Is9qzMQ.roa (raw, json)
Hash identifier: iymiZtzt6cK4lAROyofer9xo3Vom5berXVB2RjlXwsI=
Subject key identifier: C7:CE:68:A8:FF:04:22:76:CC:24:88:72:F3:3A:39:22:CF:6A:CC:C4
Certificate issuer: /CN=b4f115424c181c67966ccc2467ede69d060ccf53
Certificate serial: 03F7092D
Authority key identifier: B4:F1:15:42:4C:18:1C:67:96:6C:CC:24:67:ED:E6:9D:06:0C:CF:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/x85oqP8EInbMJIhy8zo5Is9qzMQ.roa
Signing time: Sat 01 Jan 2022 13:56:53 +0000
ROA not before: Sat 01 Jan 2022 13:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202269
IP address blocks: 195.248.240.0/24 maxlen: 24
195.248.243.0/24 maxlen: 24
195.248.242.0/24 maxlen: 24
195.248.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66521389 (0x3f7092d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f115424c181c67966ccc2467ede69d060ccf53
Validity
Not Before: Jan 1 13:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7ce68a8ff042276cc248872f33a3922cf6accc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:4e:9e:1d:5b:88:3f:74:54:91:81:a1:5d:
8f:8c:57:cf:03:b3:ab:e4:53:8f:8f:c5:f7:de:de:
85:a7:00:a7:40:8b:40:85:39:95:3a:2a:28:f7:98:
a1:6f:0f:ed:67:af:1b:20:93:9e:d0:16:e2:7e:53:
2a:75:fe:94:c5:56:69:da:57:44:b9:43:7b:9f:71:
f1:89:4b:b5:3b:57:04:af:98:b2:3d:0a:a1:d6:0a:
b3:6b:88:2f:ac:f3:20:b2:5f:aa:8c:1e:ee:b5:ec:
9d:e8:ba:7d:f5:0a:f4:1f:33:2b:94:9e:d6:9a:ff:
86:c6:1b:56:a4:a7:b7:69:c8:c7:43:c2:d4:8a:be:
f4:a2:dc:08:74:3f:d2:0f:25:42:63:3b:ac:d4:b9:
8f:5d:fd:37:d3:34:d5:08:73:78:c3:4b:16:14:7d:
54:ce:d1:b7:51:d8:83:7a:70:cd:42:ed:84:44:6d:
83:91:e9:24:7c:2d:65:a5:16:87:58:86:3e:f5:ac:
4d:67:ab:1e:e9:74:31:64:9f:84:d4:0c:c2:d9:ef:
e0:2c:dd:05:f8:1a:c8:4d:a7:89:af:b7:3c:19:b8:
2f:f6:8c:b6:48:84:d3:03:ac:45:4c:c7:59:9b:76:
49:1e:49:ec:0f:73:23:6b:9d:90:18:2f:88:10:08:
26:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CE:68:A8:FF:04:22:76:CC:24:88:72:F3:3A:39:22:CF:6A:CC:C4
X509v3 Authority Key Identifier:
keyid:B4:F1:15:42:4C:18:1C:67:96:6C:CC:24:67:ED:E6:9D:06:0C:CF:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/x85oqP8EInbMJIhy8zo5Is9qzMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.240.0/22
Signature Algorithm: sha256WithRSAEncryption
12:55:6e:1b:1c:be:d5:8a:06:9e:69:18:d0:07:7b:9a:2b:0b:
ad:2a:36:76:10:df:cd:8b:3e:ce:57:df:70:fb:40:f8:df:e4:
6b:2d:87:8d:56:05:af:d9:84:25:8f:77:4b:cb:4c:dd:9f:ac:
c4:cc:b1:1d:31:85:72:0a:8d:8b:d9:8f:83:a7:40:c2:3e:44:
9d:b6:f2:0e:d0:fc:bb:89:c3:58:98:a4:e6:ae:41:06:6d:56:
4f:14:d5:28:a6:0b:a1:24:e3:9f:d9:a6:ce:3c:86:ae:fe:82:
5c:be:5c:4e:bb:95:0f:0c:91:db:d1:23:71:79:b4:9e:12:28:
35:e6:38:1f:76:8a:0e:69:3f:28:3a:f9:59:7d:01:5a:54:bd:
8d:21:29:7f:4f:81:84:61:9f:7e:74:4f:48:fd:96:e8:46:4a:
63:75:9b:cd:27:56:03:02:92:7f:e1:85:37:21:0b:f7:2b:a4:
79:b1:74:ea:95:a9:8f:89:bc:60:c5:d9:37:9e:a4:57:f7:b1:
89:9e:7a:f5:a4:1d:80:ed:4b:a3:ca:ca:23:8a:9d:38:70:f4:
e7:39:c7:a6:92:13:c1:be:b5:0e:fe:75:6d:21:57:64:9a:2b:
e0:ca:75:55:c4:e3:9d:f6:e5:fd:49:3d:80:38:3e:e5:64:97:
49:2c:1e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net