Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vOJkU75IcMr7VN-l-wr8j7OwP9k.roa
File: vOJkU75IcMr7VN-l-wr8j7OwP9k.roa (raw, json)
Hash identifier: FYPErWGNZcAbRgweKMRIVTsRlB5oSfCnMJ2xQdEtsRw=
Subject key identifier: BC:E2:64:53:BE:48:70:CA:FB:54:DF:A5:FB:0A:FC:8F:B3:B0:3F:D9
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01835BB854BACBB020A09EABB1B296BD4E6E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vOJkU75IcMr7VN-l-wr8j7OwP9k.roa
Signing time: Tue 20 Sep 2022 16:25:50 +0000
ROA not before: Tue 20 Sep 2022 16:25:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205221
IP address blocks: 195.19.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:b8:54:ba:cb:b0:20:a0:9e:ab:b1:b2:96:bd:4e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Sep 20 16:25:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bce26453be4870cafb54dfa5fb0afc8fb3b03fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:71:e9:19:f9:42:64:b8:e4:82:26:a6:5e:
b1:c2:65:c8:d1:29:29:d7:44:1a:f7:a0:7d:12:89:
2e:6a:5f:9c:70:ee:04:cf:3f:42:b1:79:b6:ba:ca:
ab:b3:73:f4:cd:d7:74:6e:6e:0d:28:e8:11:7a:6c:
4a:49:1f:19:58:87:34:e8:e0:57:88:72:7e:36:03:
6d:7a:59:0c:cd:cb:9b:39:30:8f:91:de:6c:eb:c2:
3e:eb:e7:fd:ca:31:2f:c3:ad:c8:f2:a1:bd:7c:37:
c8:0a:37:91:4e:a8:f5:48:0a:0d:d9:67:d7:af:0f:
41:d8:dc:9c:c5:62:f7:23:c0:80:00:54:33:c8:46:
f9:b7:c2:ae:3b:0d:3d:76:a7:48:c0:6c:0e:74:4c:
55:48:3f:37:b1:6b:52:30:59:a6:c6:0e:7b:51:65:
19:48:8a:fd:4a:39:85:f2:e8:83:99:ec:38:c9:c9:
1c:a4:78:e1:72:5a:8c:3a:eb:31:16:8c:8d:3e:20:
eb:18:3e:8b:7d:a8:01:90:93:12:f0:65:45:42:07:
f9:72:ff:1d:cd:00:3a:5a:a7:04:dc:b4:c9:47:b4:
31:d9:5a:72:95:da:ff:22:26:06:55:64:cd:12:2d:
14:06:51:6c:8c:c3:d2:ca:41:f7:2b:2e:79:c5:9a:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E2:64:53:BE:48:70:CA:FB:54:DF:A5:FB:0A:FC:8F:B3:B0:3F:D9
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/vOJkU75IcMr7VN-l-wr8j7OwP9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.19.207.0/24
Signature Algorithm: sha256WithRSAEncryption
19:01:1c:13:03:38:f2:77:e9:9d:5c:b6:2f:02:b2:01:80:27:
22:a5:b3:f2:ae:b2:f8:dc:f5:ba:b7:95:31:fe:53:f7:21:6c:
44:48:1d:4b:d4:68:46:da:a0:16:4a:b3:bf:5b:76:e4:db:90:
86:ff:0f:4f:cb:02:1d:9a:fc:be:3c:2b:5b:52:f8:0d:9e:4a:
3f:47:65:5b:4f:31:86:c1:e6:04:59:4c:ac:c3:90:2b:26:a1:
37:b7:ad:45:21:93:91:bd:d6:37:21:ef:cf:5e:91:6a:8c:5f:
52:52:ef:90:1a:95:3d:f5:a2:22:f2:c6:b2:f4:08:a9:d2:c7:
64:0e:90:cb:53:40:d3:1b:45:78:07:ff:ea:14:d9:68:46:35:
0e:5f:bb:f6:a8:07:44:d7:4e:fb:49:44:69:52:5b:59:f7:d0:
da:40:1f:ba:49:e9:db:58:b1:8c:51:8e:17:6a:62:a4:eb:76:
b3:20:4b:77:d4:dd:28:e5:17:5f:55:bf:5a:28:f8:1f:34:6e:
86:bf:f4:56:73:bc:cf:ca:45:e0:4b:f2:89:74:1e:dc:35:56:
f2:29:c8:0b:07:02:86:4f:7b:f6:14:c7:d7:4a:41:e0:2a:84:
ce:e4:06:7a:57:c3:12:2f:38:6a:c7:5d:10:53:99:7d:6b:1f:
f8:0d:de:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org