Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/wDxvT5q8UGmosT9hPibigh4IRrM.roa
File: wDxvT5q8UGmosT9hPibigh4IRrM.roa (raw, json)
Hash identifier: qLIEKCbzkJtQeibI1JefsBW9RWzxZhCb6WW1B+9Umk8=
Subject key identifier: C0:3C:6F:4F:9A:BC:50:69:A8:B1:3F:61:3E:26:E2:82:1E:08:46:B3
Certificate issuer: /CN=83d829263b3c5f63968037f9e863fd0fd01e7869
Certificate serial: 039CE49A
Authority key identifier: 83:D8:29:26:3B:3C:5F:63:96:80:37:F9:E8:63:FD:0F:D0:1E:78:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g9gpJjs8X2OWgDf56GP9D9AeeGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/wDxvT5q8UGmosT9hPibigh4IRrM.roa
Signing time: Tue 12 Apr 2022 11:38:14 +0000
ROA not before: Tue 12 Apr 2022 11:38:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13274
IP address blocks: 195.42.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60613786 (0x39ce49a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83d829263b3c5f63968037f9e863fd0fd01e7869
Validity
Not Before: Apr 12 11:38:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c03c6f4f9abc5069a8b13f613e26e2821e0846b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:24:d4:7d:4d:2b:a8:ad:69:dc:40:8b:d6:ba:
2c:3e:b7:4d:87:b8:20:50:e5:49:e2:be:d0:bd:04:
98:fd:15:ff:5f:d2:31:d5:60:fb:46:03:be:bf:c7:
a8:36:32:71:bb:e7:04:6e:d5:b4:8c:9f:c7:3a:9b:
2d:8b:b8:0a:13:23:9d:60:34:aa:20:f3:af:6f:ea:
4c:fd:c0:cd:8e:18:08:1e:9a:62:fe:e9:3e:de:90:
83:66:26:9d:c4:27:fc:06:84:c3:6a:e7:2a:8d:1d:
c2:41:87:2c:6a:d0:25:8f:fd:ac:d8:ab:14:8c:c7:
cd:df:aa:b0:1d:a1:5f:39:d7:9a:4a:4d:b3:47:35:
79:74:fd:5e:f8:2e:06:ed:79:36:e0:ac:3a:cc:a9:
3a:e2:d6:99:ff:dc:31:18:d8:11:af:a3:35:95:98:
7a:2d:3b:5a:b3:1f:b3:f8:26:64:37:ec:eb:1b:fc:
0f:33:ee:f1:3b:17:3b:d3:f7:97:0b:19:f9:e4:f4:
70:4e:ed:79:df:64:1c:48:d1:f2:16:e2:6e:7c:3f:
99:a0:4c:28:c6:0f:3c:c1:a1:9c:09:cd:5a:f9:ba:
aa:41:d8:54:42:a3:51:73:f6:54:3c:91:f0:52:cd:
6d:ee:53:f8:ba:9a:dd:8a:33:a6:33:b6:00:cd:b1:
1f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3C:6F:4F:9A:BC:50:69:A8:B1:3F:61:3E:26:E2:82:1E:08:46:B3
X509v3 Authority Key Identifier:
keyid:83:D8:29:26:3B:3C:5F:63:96:80:37:F9:E8:63:FD:0F:D0:1E:78:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g9gpJjs8X2OWgDf56GP9D9AeeGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/wDxvT5q8UGmosT9hPibigh4IRrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/g9gpJjs8X2OWgDf56GP9D9AeeGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.249.0/24
Signature Algorithm: sha256WithRSAEncryption
57:cf:3d:c5:e2:ca:16:8e:a4:54:b9:0e:97:23:e8:1c:22:4f:
26:f5:b4:5a:48:91:75:96:0a:e3:d6:05:b1:26:9b:a0:ff:f0:
f7:d8:09:b8:17:96:8f:fe:64:2b:38:16:1c:32:32:2e:df:2e:
03:41:90:d4:ed:34:a3:5a:27:ad:bf:66:4b:62:59:1d:d2:7c:
85:8b:95:f2:f2:86:a2:b3:f0:1c:57:5b:f3:04:fd:81:8e:01:
45:67:da:8f:4a:56:26:7a:41:04:a6:70:9e:86:b7:d2:43:09:
cc:2b:64:0e:51:04:f9:90:32:be:0d:41:26:6d:a7:88:c4:fa:
7c:e6:c3:46:27:b2:ec:fd:93:f6:08:4c:92:98:99:8f:d8:57:
11:86:04:e7:1d:b7:69:98:d3:79:02:fa:17:4c:17:d5:d7:52:
c9:5b:73:7e:71:73:21:38:9e:1d:ce:eb:b4:b4:20:4d:83:e7:
f2:2b:0a:47:f9:92:d8:48:56:dd:2e:9a:c1:6c:49:c0:fc:6e:
4d:4b:40:b5:93:61:f8:99:15:da:cb:84:97:bf:d7:a5:d3:83:
d9:7e:19:7b:af:ee:69:b3:5a:85:45:53:af:15:f5:bb:f9:a9:
7f:f5:25:e7:df:98:d3:52:84:ab:56:27:a9:47:74:0f:a0:b1:
ff:d1:16:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:34 2024 by rpki-client on console-fra.rpki-client.org