Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PUOhoEcr4Ihx3I_ZskSKlsgu2Sc.roa
File: PUOhoEcr4Ihx3I_ZskSKlsgu2Sc.roa (raw, json)
Hash identifier: IeYLNRnYbFQV5ff7argcb2dRjh9FDdwuZoxuiUiJ1Ng=
Subject key identifier: 3D:43:A1:A0:47:2B:E0:88:71:DC:8F:D9:B2:44:8A:96:C8:2E:D9:27
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018458390AA902EE9C69DCE93379A5115671
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PUOhoEcr4Ihx3I_ZskSKlsgu2Sc.roa
Signing time: Tue 08 Nov 2022 17:10:44 +0000
ROA not before: Tue 08 Nov 2022 17:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34879
IP address blocks: 195.209.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:58:39:0a:a9:02:ee:9c:69:dc:e9:33:79:a5:11:56:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 8 17:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d43a1a0472be08871dc8fd9b2448a96c82ed927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:3b:72:70:37:00:dc:09:4c:64:bb:a8:f7:
4a:ef:de:3b:88:54:ae:f7:8e:da:e0:ed:52:14:57:
6d:ab:81:98:d0:84:fb:f0:24:34:ca:81:9b:94:fe:
de:67:cb:26:7b:cc:da:03:e6:43:ec:78:ea:a1:32:
17:5c:e6:e9:02:7f:ca:2e:4d:57:5f:4e:6e:f1:8b:
f2:85:a5:39:f5:9c:b0:c9:17:ae:e0:65:05:c8:93:
ae:89:c3:86:c0:b5:56:ec:e7:b6:51:11:48:a0:6a:
24:73:40:27:2d:c2:1a:17:84:dc:6d:95:b4:59:b3:
a3:d2:75:2a:ae:56:1a:d1:ff:8c:c9:f8:00:70:b1:
1a:cc:9b:ac:d1:ba:57:f5:20:6c:07:e9:6f:2b:f0:
85:1e:f5:69:06:ae:ed:42:f5:b9:52:0a:d0:d5:5f:
24:10:2a:ac:45:95:be:3f:70:48:be:83:fe:6f:7c:
5c:a0:46:17:76:5d:de:15:bb:38:77:77:6a:74:6f:
1b:91:ce:24:74:33:46:01:27:4d:11:5d:54:d6:64:
81:f1:95:f6:9f:ed:f4:5a:de:9c:4e:25:0b:e2:d4:
cd:1f:10:00:85:69:2a:6f:70:3d:4e:74:70:b3:a4:
a8:53:4b:a5:a1:92:f5:47:5d:50:5c:20:07:66:df:
6b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:43:A1:A0:47:2B:E0:88:71:DC:8F:D9:B2:44:8A:96:C8:2E:D9:27
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PUOhoEcr4Ihx3I_ZskSKlsgu2Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.72.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:c2:f0:db:a9:28:71:3b:df:2b:c9:08:f5:c8:9d:d8:e3:80:
b7:1f:5a:7f:bd:cb:11:03:25:e9:13:4c:47:58:7d:e3:7a:0b:
39:58:05:4e:da:9c:83:e1:58:b3:64:e1:b3:b5:07:79:15:de:
0f:e9:42:02:91:c5:d5:48:a8:94:be:c5:77:cb:f4:9d:7c:a4:
09:e7:28:c4:1e:e2:36:3e:ea:98:1f:a2:99:77:10:19:8b:6e:
81:84:98:dc:8e:d1:60:dc:07:cf:ea:86:07:ac:09:0e:3e:ca:
a3:ba:b3:0a:fa:7a:ed:36:e1:d7:e8:18:2d:2d:df:67:23:40:
80:9e:6d:94:2c:18:cf:4e:c4:a3:2c:6a:11:16:b2:22:06:07:
b6:24:f1:13:d6:d8:b5:41:2c:8e:93:8b:84:59:69:2a:d1:94:
2a:b7:48:9e:99:41:4e:0f:d1:b5:05:bb:d1:00:27:21:3c:e3:
60:10:b1:58:05:a3:0c:6b:fa:1e:33:d1:b6:09:a4:f6:7f:82:
d1:a4:a4:50:45:6c:a1:11:f5:09:7f:16:95:a8:ce:e9:2b:4b:
60:d4:fa:9f:c6:27:79:da:9e:fe:2b:65:65:a8:42:da:2a:1f:
46:b1:53:36:b2:27:f9:1b:e8:1b:83:66:2c:7d:9f:b1:1e:ef:
2c:e3:e1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org