Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8e4518-0dd0-4cbb-ba78-bb86d4ba02de/1/zSq9MAXUE4PHGlFkflAty343lAs.roa
File: zSq9MAXUE4PHGlFkflAty343lAs.roa (raw, json)
Hash identifier: t8v1O5KqBFet/3awmNvJjNvltGJS9oBy+qBytkaMuvw=
Subject key identifier: CD:2A:BD:30:05:D4:13:83:C7:1A:51:64:7E:50:2D:CB:7E:37:94:0B
Certificate issuer: /CN=4452633274b1d886a92757f65219c2e7546ecdf5
Certificate serial: 0FCFCC10
Authority key identifier: 44:52:63:32:74:B1:D8:86:A9:27:57:F6:52:19:C2:E7:54:6E:CD:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFJjMnSx2IapJ1f2UhnC51RuzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8e4518-0dd0-4cbb-ba78-bb86d4ba02de/1/zSq9MAXUE4PHGlFkflAty343lAs.roa
Signing time: Sat 01 Jan 2022 10:59:22 +0000
ROA not before: Sat 01 Jan 2022 10:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48294
IP address blocks: 195.137.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265276432 (0xfcfcc10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4452633274b1d886a92757f65219c2e7546ecdf5
Validity
Not Before: Jan 1 10:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd2abd3005d41383c71a51647e502dcb7e37940b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b4:83:02:4b:64:e8:bd:ff:5b:b3:36:f8:94:
98:fb:1d:e1:a0:6b:1e:e4:2f:b8:07:cd:af:62:d7:
4d:fa:8a:b8:e5:49:d9:37:f4:5b:7e:43:d6:2c:ca:
50:ae:7e:b3:73:04:1e:b8:45:61:09:b8:a4:fc:43:
29:a7:0b:4b:2e:36:14:39:81:eb:5b:5f:03:52:d8:
33:d0:6e:15:2b:db:8d:86:ab:82:e3:b6:73:d3:ab:
23:30:ce:88:92:f7:d8:41:61:9a:b3:9e:e1:fa:df:
eb:25:80:12:a8:c2:47:bd:a2:eb:e1:c0:1f:3d:aa:
71:90:1d:8a:86:c8:d5:4d:85:5c:33:bc:26:29:c7:
2a:b6:fe:84:d0:2f:59:6a:20:a3:89:08:ac:6d:4f:
00:82:01:56:7e:12:3f:57:52:ed:f5:34:36:6e:57:
af:5b:b8:0e:d0:ce:ac:ef:63:2c:2a:76:57:66:8a:
0e:7c:ae:46:18:c2:65:d0:a3:bc:b0:48:4f:2c:48:
24:ef:f1:04:cc:ab:03:2d:18:90:e8:e9:06:33:51:
46:03:4f:cf:e2:30:c0:1e:ff:f5:92:cc:e3:85:aa:
72:9b:1b:22:e4:bc:68:c6:80:af:d3:1a:1b:29:0b:
fd:80:d8:49:ed:bf:ac:e7:d3:05:05:70:06:25:7f:
4e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2A:BD:30:05:D4:13:83:C7:1A:51:64:7E:50:2D:CB:7E:37:94:0B
X509v3 Authority Key Identifier:
keyid:44:52:63:32:74:B1:D8:86:A9:27:57:F6:52:19:C2:E7:54:6E:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFJjMnSx2IapJ1f2UhnC51RuzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8e4518-0dd0-4cbb-ba78-bb86d4ba02de/1/zSq9MAXUE4PHGlFkflAty343lAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8e4518-0dd0-4cbb-ba78-bb86d4ba02de/1/RFJjMnSx2IapJ1f2UhnC51RuzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.176.0/24
Signature Algorithm: sha256WithRSAEncryption
58:d3:82:a4:60:64:e2:37:0f:24:2c:58:bc:17:08:5a:1d:e5:
21:83:9f:83:4b:ec:8f:d4:0b:2c:d5:6c:ef:c8:0c:37:db:b6:
ad:30:ff:30:ca:14:e4:4a:eb:0d:65:4c:6b:b8:0a:ef:fa:b2:
3e:a9:64:a0:3e:e3:0e:a1:f8:49:40:87:d1:18:9f:45:97:ec:
79:6c:3e:90:99:98:de:22:6e:bf:32:8a:c2:c3:33:f0:a5:6a:
0e:f9:41:84:99:a1:b5:06:e2:98:04:e3:e3:e2:37:6c:5a:df:
1a:15:b5:77:3f:7b:ed:35:01:e6:36:3d:de:c6:cc:7c:44:0c:
52:2f:18:62:12:5f:3c:a9:fb:9d:74:ce:10:46:01:e9:07:4c:
09:04:cc:cd:98:c2:ab:d3:4d:14:1c:8a:da:0c:7e:f7:e9:54:
ff:1c:69:d9:f2:e6:1a:25:5f:a3:3f:9e:78:2f:55:e5:b6:fa:
57:d1:1b:ed:9d:ef:f6:07:df:67:fc:6a:88:69:fb:3a:8f:29:
b2:03:f5:7c:12:3f:62:4c:ee:3b:c7:e6:53:22:2e:4c:7f:41:
cd:49:16:2d:b1:81:15:30:02:c8:9f:a5:6c:99:11:05:1a:a4:
50:bf:df:b5:69:3b:e6:06:ca:f7:fd:2f:1d:5c:ee:e9:5a:80:
e3:21:78:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org