Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/reTfc7ZTeii5X_788mgyh4BJiwg.roa
File: reTfc7ZTeii5X_788mgyh4BJiwg.roa (raw, json)
Hash identifier: sXdxqR0+rrDZYpTjLVx8+qFYTvDqoR1n1n0W50s7XwA=
Subject key identifier: AD:E4:DF:73:B6:53:7A:28:B9:5F:FE:FC:F2:68:32:87:80:49:8B:08
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 066652B7
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/reTfc7ZTeii5X_788mgyh4BJiwg.roa
Signing time: Thu 19 May 2022 12:17:30 +0000
ROA not before: Thu 19 May 2022 12:17:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51318
IP address blocks: 195.89.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107369143 (0x66652b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: May 19 12:17:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ade4df73b6537a28b95ffefcf268328780498b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:6e:b5:47:35:1e:1c:8e:d3:8b:f2:2d:dd:
44:93:fa:3d:d6:ef:26:5b:b2:7e:d1:d8:c4:7e:17:
91:11:85:7f:c7:37:69:96:32:70:ac:a1:5e:72:66:
4a:68:58:02:7e:f6:c6:8f:5d:6e:7a:7f:97:97:cb:
cd:5b:57:56:6b:16:10:c1:51:b8:2c:45:3e:bf:6c:
e5:3e:ef:1b:e4:e6:c2:21:5e:4a:d9:f8:e5:0c:d4:
a8:cd:d2:b9:f8:9c:72:b5:f5:f2:13:9c:48:6c:11:
42:61:3d:68:77:0a:14:ce:7f:c3:1e:54:dd:10:98:
fa:13:5b:42:7b:d7:39:1e:ae:39:cd:6a:d9:a8:45:
2b:e0:90:ba:8e:ea:a6:c2:45:a4:04:1c:5c:1c:a6:
11:c6:9a:d8:f5:7d:5d:42:bb:2d:97:39:ca:6c:b0:
a2:da:b5:41:4a:76:94:b8:83:31:ee:06:25:72:5a:
01:2d:5d:85:b5:7f:61:b7:19:0f:9c:5e:2c:12:62:
91:03:12:32:99:1a:f5:63:d2:44:3a:2d:ae:09:85:
10:24:9b:35:90:73:86:c1:94:69:e9:70:91:2e:65:
c8:59:71:ff:f5:f0:fb:9c:b3:f1:40:48:be:7d:18:
69:93:86:fe:a8:67:01:6f:54:96:e7:cc:19:7d:5d:
b9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E4:DF:73:B6:53:7A:28:B9:5F:FE:FC:F2:68:32:87:80:49:8B:08
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/reTfc7ZTeii5X_788mgyh4BJiwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.89.13.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d9:be:d1:5f:8e:e2:e3:18:96:09:41:c7:1f:2d:1e:df:95:
ee:a0:3f:c5:b4:c2:f1:20:bf:1c:8e:01:99:7d:76:d2:89:ac:
9e:71:ad:dc:cd:38:82:da:47:72:3e:db:da:21:28:76:86:2f:
cd:cd:71:38:04:b8:d1:38:45:5a:e3:fa:d2:a0:4b:12:56:f1:
06:d8:8a:00:84:f9:b9:5c:71:cb:c3:cb:a7:ad:19:aa:06:8e:
e6:13:5c:12:cd:f4:15:70:2a:a3:05:16:3f:ee:ed:71:6b:e7:
e9:a5:db:a7:86:eb:d3:66:18:3c:24:51:25:14:be:19:d3:4a:
1f:f0:a3:5b:20:05:78:ce:04:77:03:63:2a:62:e1:5b:b1:b5:
86:ea:f7:78:84:46:e2:e1:24:09:11:a6:59:77:fd:fc:33:17:
ad:50:26:54:f5:2f:f3:9d:e4:cb:f6:9c:01:6f:0d:96:93:8f:
9a:56:b5:e6:5f:bb:66:27:20:7e:ef:a5:e8:37:b8:20:6a:0d:
a7:af:6b:ae:a7:84:0b:0e:85:1a:e9:50:8b:ba:ae:2f:32:a1:
5d:d3:13:0e:a8:7c:31:fd:44:7f:ff:fa:6c:dc:77:ea:fd:62:
10:c3:0e:cc:7c:30:ce:d3:5a:11:06:8a:a4:da:2d:64:a9:3a:
6a:a2:93:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org