Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2pkml74ZjESj6xJXp7-DhloJFlA.roa
File: 2pkml74ZjESj6xJXp7-DhloJFlA.roa (raw, json)
Hash identifier: PbGR9stZWvY0tLDEZ8jsxT8CAY0E3kmBDs4UImfhQG4=
Subject key identifier: DA:99:26:97:BE:19:8C:44:A3:EB:12:57:A7:BF:83:86:5A:09:16:50
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018457E6357586C35C8C73248C06A3669F79
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2pkml74ZjESj6xJXp7-DhloJFlA.roa
Signing time: Tue 08 Nov 2022 15:40:15 +0000
ROA not before: Tue 08 Nov 2022 15:40:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34879
IP address blocks: 195.209.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:e6:35:75:86:c3:5c:8c:73:24:8c:06:a3:66:9f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 8 15:40:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da992697be198c44a3eb1257a7bf83865a091650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:46:27:31:bb:67:25:ff:f2:e0:5c:0d:66:dc:
80:2b:d3:74:a8:aa:49:20:dd:98:a6:3a:1a:dc:4c:
a1:39:cb:3a:c8:52:6c:9c:2c:74:6e:d4:56:80:77:
9e:96:ef:5e:53:9b:26:e8:a1:90:00:9a:b8:ac:c7:
c5:18:76:49:95:80:81:6f:06:c8:e8:c2:8e:31:eb:
d8:2a:3c:30:9c:5d:e0:3c:09:69:85:b5:32:33:4d:
e4:ed:86:4a:d8:9e:cf:2c:45:11:d5:39:ce:cc:c2:
fd:b9:5d:ed:e1:5e:5b:10:23:86:b6:e1:5a:87:4a:
7e:d3:85:e2:bf:48:d6:16:d1:f0:05:eb:68:29:07:
cb:31:3e:4e:73:b7:2b:51:e6:14:76:fc:cc:91:c4:
d7:af:80:a4:49:6e:b1:a5:5b:7f:bb:ad:72:9b:02:
f5:da:3d:ca:7a:84:54:a0:0f:81:6c:ce:d9:c3:fc:
00:1f:35:2f:e8:4b:4b:3b:5c:80:85:5b:f6:7a:97:
93:6c:f5:1d:b6:05:cb:62:28:32:fc:11:b3:fe:8b:
6c:a5:57:cb:21:17:7d:36:6f:cf:8e:89:9a:11:51:
9d:33:e4:6b:52:0c:e0:3b:29:52:26:65:38:9f:6a:
3e:23:cb:c5:df:6f:a0:41:b6:f1:e0:6b:de:ba:a7:
63:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:99:26:97:BE:19:8C:44:A3:EB:12:57:A7:BF:83:86:5A:09:16:50
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2pkml74ZjESj6xJXp7-DhloJFlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.72.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:68:a6:30:1b:50:a7:5b:be:f2:93:c1:3a:70:48:23:87:24:
c4:d0:36:d5:03:aa:ba:69:1e:d3:e6:68:3f:0b:fd:c5:a8:e9:
85:92:4d:c2:52:e8:07:9e:69:87:6f:97:aa:bb:84:d3:6f:19:
df:0d:ca:5c:bb:bf:7d:92:e7:d8:22:3d:46:c6:98:7a:cd:2c:
fb:3e:c6:1d:20:e5:d9:19:9f:cf:0c:6e:dc:2f:3d:c3:97:48:
7c:4c:82:dd:6d:cf:da:a9:78:61:71:80:3c:07:c0:d5:93:7c:
b3:75:ef:89:da:2d:8e:91:42:6f:f9:1d:5e:5f:9d:86:b4:54:
ec:97:c8:32:d8:13:56:03:c5:0d:e3:d0:60:40:e9:7b:cb:e5:
3b:36:0d:bb:35:59:15:86:94:85:07:7f:cd:fb:1c:c3:1b:41:
f1:39:6f:15:21:5d:e9:c6:f2:22:15:73:ab:39:23:29:59:26:
e0:62:10:18:d7:a4:aa:47:66:b7:14:a1:d6:bd:67:a8:f1:35:
2e:b3:8d:35:29:de:0e:66:78:24:72:e0:bc:2f:e2:ff:65:01:
cc:02:25:fc:81:09:6d:f1:5c:66:34:8b:2e:a1:57:91:4a:f7:
ae:d1:4a:17:a5:20:0b:64:eb:65:66:c7:60:81:89:f2:3f:7a:
9f:76:42:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org