Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/kJTtFu7tLJ7jMlUafQAxljdmjv0.roa
File: kJTtFu7tLJ7jMlUafQAxljdmjv0.roa (raw, json)
Hash identifier: hRMOGtcMV/lIK0Vc6oKg2tZ+3p6XpaIlD/CO71MDbtY=
Subject key identifier: 90:94:ED:16:EE:ED:2C:9E:E3:32:55:1A:7D:00:31:96:37:66:8E:FD
Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Certificate serial: 06FABEF8
Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/kJTtFu7tLJ7jMlUafQAxljdmjv0.roa
Signing time: Sat 01 Jan 2022 07:54:03 +0000
ROA not before: Sat 01 Jan 2022 07:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47167
IP address blocks: 195.216.224.0/24 maxlen: 24
2001:67c:294::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117096184 (0x6fabef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Validity
Not Before: Jan 1 07:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9094ed16eeed2c9ee332551a7d00319637668efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9c:3c:a9:fa:d8:7e:b3:0a:c7:88:fb:fb:09:
6c:dd:8c:43:5b:c4:55:fe:3f:06:49:bc:88:73:13:
20:da:c9:57:a9:b6:21:50:8d:61:86:52:07:1a:ed:
20:a4:ee:f8:9e:ac:7f:a4:d8:0d:b3:9e:47:2c:3c:
b5:2d:83:b4:74:c7:fb:4c:df:12:1a:87:96:f1:0a:
c4:62:6e:ab:87:9b:7a:72:2b:9e:77:89:d7:89:84:
68:38:9b:e4:b4:b3:5a:0f:84:13:fe:28:52:81:a6:
ad:6a:67:c7:da:da:8a:41:d9:f5:ae:e3:85:bc:8f:
03:6a:37:27:87:5d:cc:fe:11:2e:c0:8b:ff:d9:50:
a6:5a:70:7c:b3:40:23:ea:69:d2:60:c7:b7:6f:25:
36:fe:7d:8d:94:c3:da:90:27:87:b9:59:7c:50:39:
58:2f:e2:e9:a7:fb:e0:a7:c0:2f:b5:6e:18:f5:01:
a7:e9:f2:35:6c:a6:42:d6:d0:bb:5e:01:59:6c:73:
b1:2a:ff:cd:bb:c2:f8:0d:00:78:46:a2:00:16:d8:
31:a2:76:a3:8f:c9:69:24:57:75:72:a0:d5:a7:a7:
20:2a:33:c4:aa:bd:0f:f2:bf:3f:36:c3:8e:59:66:
0e:cb:6c:47:db:49:30:09:7e:da:b1:c4:82:53:c1:
86:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:94:ED:16:EE:ED:2C:9E:E3:32:55:1A:7D:00:31:96:37:66:8E:FD
X509v3 Authority Key Identifier:
keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/kJTtFu7tLJ7jMlUafQAxljdmjv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.224.0/24
IPv6:
2001:67c:294::/48
Signature Algorithm: sha256WithRSAEncryption
04:a9:a3:26:65:43:4d:35:84:73:ab:ad:a9:06:86:93:c1:32:
07:9e:5f:7e:22:2c:af:3b:e4:7e:9c:19:6e:ec:e4:9b:0f:fd:
32:1d:62:1a:99:de:af:e3:87:89:d7:c7:c8:ba:04:11:4b:e0:
72:bc:d4:27:cb:b3:fb:55:17:bb:58:ab:98:4f:2b:ed:7e:61:
e7:a7:a1:fc:b4:cc:68:57:af:ba:fb:66:e7:80:5d:4b:f1:6b:
33:d0:6e:ea:18:51:5b:e1:83:9e:e1:fd:cf:12:c5:c4:bc:a4:
d4:19:06:7a:19:c0:1c:72:31:57:ca:f2:14:7c:77:af:4e:11:
b5:e9:ee:4f:d2:ce:43:31:e7:c8:1d:27:59:bf:e3:dd:db:f4:
20:a5:1e:fa:91:49:3f:89:ec:5d:dc:cd:18:77:76:e3:6d:1f:
f2:df:5a:7a:77:13:dd:82:1b:ce:e7:d3:4b:ec:96:69:a2:36:
8e:3d:4e:68:30:d3:b9:71:c1:68:b4:42:89:a1:02:0a:4e:63:
23:50:78:0c:b8:8e:d2:cb:59:21:98:38:ce:ac:3c:93:dc:36:
02:89:2e:79:80:eb:0f:d8:cb:5e:9f:59:f9:10:c3:b2:74:12:
1e:86:b5:f2:46:c9:37:40:01:b4:ef:8d:f7:59:91:3f:1f:95:
45:c7:dd:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:20 2024 by rpki-client on console-fra.rpki-client.org