Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/uLIcndDLI5RxsHVlL4eJK8V167A.roa
File: uLIcndDLI5RxsHVlL4eJK8V167A.roa (raw, json)
Hash identifier: OzmBqOrDxhWTALX5Iy9N6WULj3G0AN0CiTIAVSRVLVo=
Subject key identifier: B8:B2:1C:9D:D0:CB:23:94:71:B0:75:65:2F:87:89:2B:C5:75:EB:B0
Certificate issuer: /CN=585e4f4b4a9ef5531dfe50f41541c912a335fbf1
Certificate serial: 0183212B35C923E26ABE7F39EB8630CABEF4
Authority key identifier: 58:5E:4F:4B:4A:9E:F5:53:1D:FE:50:F4:15:41:C9:12:A3:35:FB:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WF5PS0qe9VMd_lD0FUHJEqM1-_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/uLIcndDLI5RxsHVlL4eJK8V167A.roa
Signing time: Fri 09 Sep 2022 07:33:43 +0000
ROA not before: Fri 09 Sep 2022 07:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 195.246.97.0/24 maxlen: 24
195.246.96.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:2b:35:c9:23:e2:6a:be:7f:39:eb:86:30:ca:be:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=585e4f4b4a9ef5531dfe50f41541c912a335fbf1
Validity
Not Before: Sep 9 07:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8b21c9dd0cb239471b075652f87892bc575ebb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:6e:37:0f:e3:df:07:61:ae:38:48:26:c7:
dc:74:b9:bc:ed:7c:f1:dc:c3:18:3f:de:d9:4f:56:
71:57:b2:a6:5e:66:ab:9c:6f:1a:26:e7:6a:6e:78:
ce:07:4d:26:7f:dc:0e:27:a5:4a:63:74:ab:63:8d:
32:d7:7e:dc:7d:70:6d:50:29:92:ad:0a:d3:ac:34:
8e:46:81:4c:1c:54:51:b1:b9:8a:77:d1:e0:4e:38:
50:6b:2c:1c:71:64:a7:6a:60:ad:ac:da:d3:24:52:
f1:69:c8:ec:28:16:13:72:40:76:dd:20:78:7d:ee:
2b:5c:ba:64:cb:9a:a8:ac:67:dd:58:fb:5f:3a:e6:
d6:34:68:a2:21:61:8c:6a:4c:c3:0a:12:e2:79:fe:
ef:70:01:e5:cd:ca:16:59:40:3b:9e:69:7d:41:aa:
ee:d6:7d:a9:90:eb:61:9d:51:ac:43:da:31:88:22:
28:c7:30:d4:63:d5:e6:30:b0:8e:b6:b8:31:7e:ca:
e8:b0:4d:a0:58:1e:65:18:ca:57:2f:9e:79:a7:1e:
a6:49:64:65:0a:3b:bf:96:0a:ad:51:39:90:79:b9:
a4:74:34:47:cd:d8:84:ba:eb:51:d1:4f:ea:78:ac:
3d:bf:c5:34:f6:9d:b5:87:21:64:5f:be:10:0a:23:
4e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B2:1C:9D:D0:CB:23:94:71:B0:75:65:2F:87:89:2B:C5:75:EB:B0
X509v3 Authority Key Identifier:
keyid:58:5E:4F:4B:4A:9E:F5:53:1D:FE:50:F4:15:41:C9:12:A3:35:FB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WF5PS0qe9VMd_lD0FUHJEqM1-_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/uLIcndDLI5RxsHVlL4eJK8V167A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/WF5PS0qe9VMd_lD0FUHJEqM1-_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.246.96.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:94:6f:75:7b:4a:09:06:e9:d6:fa:6e:f7:8b:01:67:e9:e9:
dd:7d:12:d4:d4:51:16:62:ac:22:db:ec:d0:c2:fd:d0:43:2e:
49:40:e8:73:d9:9f:d9:d7:76:a2:4d:6a:66:8f:77:ca:0b:7f:
12:c1:51:b6:a9:2c:97:20:a5:b9:d6:f0:a7:40:b6:71:c3:94:
dd:bd:9a:69:ad:ae:dc:e4:18:d5:c0:cd:95:db:c6:3e:0a:cb:
c3:49:4a:c5:02:4e:56:a5:2d:e2:17:f9:79:a3:a2:f7:4c:e7:
53:6c:a1:34:53:b7:a7:ca:7b:f7:14:2a:6b:e4:be:02:1a:da:
e0:10:4d:29:5b:78:19:b9:c7:fc:9b:a3:a9:35:23:41:af:ee:
6b:1e:b0:da:ce:1d:07:52:3e:25:97:c3:96:3c:63:20:64:1a:
ef:7a:4e:15:4e:08:9b:0d:24:29:d5:e2:ef:8a:d7:d3:ec:9c:
20:07:9b:6b:cf:2a:f7:59:78:ae:aa:6b:61:54:85:20:74:05:
f8:a9:11:f7:30:be:87:fc:63:e5:8e:6f:22:84:7d:22:d7:ab:
b5:a2:41:58:87:da:d6:27:5b:71:d8:df:23:cc:b3:29:d0:6b:
10:19:11:77:ba:3e:d7:78:37:14:37:a2:95:53:cc:b9:2c:34:
9f:a5:62:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:31 2024 by rpki-client on console-ams.rpki-client.org