Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/PF4P5OaxssqZIBBAYRkgDmCneDU.roa
File: PF4P5OaxssqZIBBAYRkgDmCneDU.roa (raw, json)
Hash identifier: fZ11CR44WwpaEhUL6og6zWOj8PEzdtr9Gcrq8kQ+L/M=
Subject key identifier: 3C:5E:0F:E4:E6:B1:B2:CA:99:20:10:40:61:19:20:0E:60:A7:78:35
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 018210115E989A528D0B4B1D89C2BED3ABC0
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/PF4P5OaxssqZIBBAYRkgDmCneDU.roa
Signing time: Mon 18 Jul 2022 06:49:09 +0000
ROA not before: Mon 18 Jul 2022 06:49:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49590
IP address blocks: 195.95.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:11:5e:98:9a:52:8d:0b:4b:1d:89:c2:be:d3:ab:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Jul 18 06:49:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c5e0fe4e6b1b2ca992010406119200e60a77835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e9:c5:ab:04:b1:33:68:c4:64:47:40:3a:e5:
49:03:fc:08:ba:21:81:df:0b:1c:85:8a:1a:85:10:
a4:06:3e:cc:8c:f0:5c:f2:22:03:28:1c:97:0b:60:
8c:39:f0:b7:2d:cc:73:c3:3a:32:60:80:46:28:81:
53:b9:3d:38:ff:a7:5d:40:8b:1c:41:41:02:1a:29:
a0:fd:89:e1:22:84:a2:2f:f3:b0:38:b9:e5:a8:fa:
2b:05:46:aa:16:f7:22:0d:89:2b:c6:79:37:27:bc:
62:88:08:60:7e:93:c4:80:23:06:aa:89:c5:e8:65:
9a:85:d4:56:3d:7d:d4:f9:54:a0:b9:40:ab:b2:31:
80:b0:8e:1f:ae:3b:71:cc:6f:6b:73:8f:98:50:f9:
45:99:7c:73:b0:3b:4b:2d:af:37:49:eb:e5:62:78:
2e:12:4d:ad:71:01:77:a4:35:db:0e:52:8c:a0:4d:
ad:3d:40:dc:98:83:60:74:90:a9:dd:dd:f5:04:47:
68:f9:db:f1:04:ba:39:de:88:7d:b6:84:41:b9:c1:
54:21:3d:0c:d6:7e:38:4d:59:e9:04:5c:9b:7c:4e:
ae:36:23:3c:25:65:f6:66:41:2b:74:89:4e:72:c2:
af:f4:22:2c:80:4c:5b:8c:7b:95:b9:bb:4b:79:7f:
4d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5E:0F:E4:E6:B1:B2:CA:99:20:10:40:61:19:20:0E:60:A7:78:35
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/PF4P5OaxssqZIBBAYRkgDmCneDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.161.0/24
Signature Algorithm: sha256WithRSAEncryption
47:75:03:86:3e:10:11:55:9c:85:49:ba:8d:a9:f5:92:73:15:
8b:4d:0d:95:e3:aa:31:08:94:93:9d:2f:4b:d7:6c:89:93:29:
dd:17:34:d3:00:e8:20:3d:34:bd:fb:63:4e:87:5b:38:8d:97:
a4:e5:6e:8f:c5:6b:9b:42:ee:53:60:bb:10:e7:98:7d:bd:f7:
bf:93:06:4f:2b:b7:4c:33:7d:24:b4:c4:fc:0c:af:a5:af:d5:
92:e7:1f:a2:19:ae:57:4e:16:19:11:58:97:19:1a:55:ca:be:
e4:e4:04:ef:d7:78:24:81:fd:d9:ff:78:dd:ee:33:b3:0d:13:
2b:83:22:9f:73:f0:6e:06:84:a8:ac:3e:4c:6a:36:d0:ec:10:
5a:cd:4e:79:1a:7d:aa:cd:b5:6b:1e:e8:02:6b:89:cf:d7:13:
94:4f:0a:44:ee:9f:d7:ac:81:a4:46:a7:b9:e1:7e:e0:2b:5b:
28:09:a1:1b:23:de:55:f7:a5:0e:b8:89:38:29:df:60:e4:e5:
6a:df:05:9f:f2:c3:de:a5:6c:dd:8a:d9:d8:81:7c:a2:9b:f7:
43:cc:33:d4:b2:23:b1:4e:3e:a6:a7:f2:93:43:23:99:70:0b:
76:0f:28:90:04:74:89:29:30:2a:bf:54:18:ab:14:c8:65:41:
18:bd:fb:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:35 2024 by rpki-client on console-ams.rpki-client.org