Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/AkMwFVKZVLWngRlO0YopdoXlPFk.roa
File: AkMwFVKZVLWngRlO0YopdoXlPFk.roa (raw, json)
Hash identifier: 3NDH5oHn3VxYAPrFBgqnVq5rQpIlhH0+g8SStBxzvgw=
Subject key identifier: 02:43:30:15:52:99:54:B5:A7:81:19:4E:D1:8A:29:76:85:E5:3C:59
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 06D117F9
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/AkMwFVKZVLWngRlO0YopdoXlPFk.roa
Signing time: Sat 01 Jan 2022 03:59:27 +0000
ROA not before: Sat 01 Jan 2022 03:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208545
IP address blocks: 195.8.245.0/24 maxlen: 24
2a01:170:1050::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114366457 (0x6d117f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 03:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02433015529954b5a781194ed18a297685e53c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:14:43:da:6c:29:89:f5:aa:20:00:e8:f7:2f:
2b:03:d9:9f:36:21:97:38:e9:00:48:09:00:7e:04:
a3:fe:17:8c:61:81:c5:67:97:f6:68:15:09:e9:06:
09:2a:95:7c:95:2c:ff:e6:51:cc:63:54:c2:cf:28:
25:01:9c:b2:87:5e:bd:72:91:40:94:92:61:6e:1e:
2e:5d:47:9e:f7:32:31:fb:c0:45:01:eb:a8:03:08:
3f:ff:cc:ad:f8:f2:3a:7f:ea:f5:7e:90:ac:12:9b:
7c:c1:0e:0a:42:e4:fd:0e:85:de:de:7b:ff:86:6b:
52:03:1b:0e:e2:18:3a:96:07:ed:9c:bd:03:8e:74:
6d:9a:cd:eb:44:99:f7:1d:d4:7a:08:90:57:1a:36:
0d:24:62:38:54:7a:50:6a:8d:b6:a9:91:a4:bd:06:
cc:ff:31:8e:af:67:41:bb:df:eb:89:cb:48:54:86:
49:b3:5b:af:78:f1:87:f4:54:27:78:cd:af:67:0d:
b9:fe:06:a5:f3:14:06:ec:57:10:d9:b3:e5:3d:e3:
cd:c7:8d:4f:fc:85:6c:6a:cb:c4:69:f6:73:52:fb:
db:c7:b9:e2:f9:f7:16:1d:eb:09:5d:db:68:80:7f:
62:fe:0a:0d:45:55:0d:d8:86:42:6e:a1:99:e3:80:
bf:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:43:30:15:52:99:54:B5:A7:81:19:4E:D1:8A:29:76:85:E5:3C:59
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/AkMwFVKZVLWngRlO0YopdoXlPFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.245.0/24
IPv6:
2a01:170:1050::/48
Signature Algorithm: sha256WithRSAEncryption
99:15:78:fc:f4:e5:b3:78:ef:59:aa:a6:a1:d0:fe:68:14:ce:
43:f5:54:a4:08:7a:a4:45:62:c8:32:b5:de:d2:de:37:40:2f:
f8:0c:65:52:76:0e:0a:96:20:a1:45:2a:00:12:9c:c5:c5:e2:
79:4b:70:86:12:d9:ea:03:f5:6a:d7:6a:a9:c4:f8:74:44:c4:
b1:eb:f9:82:b4:c6:04:aa:7c:6b:48:fd:b7:6f:50:4c:ed:e1:
36:50:29:48:c1:ed:01:0e:b3:1a:c3:8a:39:67:d6:e8:6f:97:
33:49:d8:b0:d7:0f:55:7f:b1:e3:15:20:73:b7:62:35:4c:a1:
00:c0:c4:8c:51:0d:42:19:b4:a9:dc:2a:63:41:95:ca:e6:a7:
ad:fc:7a:2d:07:55:1a:47:f5:c2:77:7a:06:db:81:49:7b:b9:
21:55:6d:92:79:67:ff:ea:3a:da:ad:4b:64:b2:5d:72:41:0a:
78:42:b1:28:3a:6d:13:06:cf:c4:9d:09:64:e5:1b:ba:73:20:
88:30:44:49:0b:66:f8:06:96:d3:f6:79:06:ff:a7:b1:8c:82:
ec:c4:e5:0c:b5:4d:3b:f1:61:74:94:f5:b6:77:d8:55:15:39:
c4:35:a2:57:7a:67:fb:a2:ff:15:23:75:89:b2:79:42:0b:2b:
29:93:de:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:06 2024 by rpki-client on console-ams.rpki-client.org