Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/wd8rQEa1l8WG6bhQ7PK22RPlp48.roa
File: wd8rQEa1l8WG6bhQ7PK22RPlp48.roa (raw, json)
Hash identifier: EnGhV8Eu6d7F9LASz/kI2gepSDABqC+RMPAyh1hEJKk=
Subject key identifier: C1:DF:2B:40:46:B5:97:C5:86:E9:B8:50:EC:F2:B6:D9:13:E5:A7:8F
Certificate issuer: /CN=24350aa8a94af666099fd073ec621cd15d04b316
Certificate serial: 2896DB43
Authority key identifier: 24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/wd8rQEa1l8WG6bhQ7PK22RPlp48.roa
Signing time: Sat 01 Jan 2022 02:01:36 +0000
ROA not before: Sat 01 Jan 2022 02:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211884
IP address blocks: 195.250.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680975171 (0x2896db43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24350aa8a94af666099fd073ec621cd15d04b316
Validity
Not Before: Jan 1 02:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1df2b4046b597c586e9b850ecf2b6d913e5a78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:13:f3:ea:ec:43:0c:8b:5d:b5:bb:65:37:
2f:42:03:f4:a0:ca:8d:be:f2:c6:84:48:a5:93:61:
50:e2:6c:87:ae:8b:ac:9c:57:33:08:2c:b3:06:f7:
38:6e:a6:87:47:c6:42:57:8f:68:ee:df:7d:c9:c4:
96:ca:4b:f0:b5:34:4f:09:8f:05:b7:88:07:36:32:
cc:6a:08:3e:f8:3e:e6:90:5b:cb:bc:25:49:84:28:
22:0f:19:1d:35:97:bf:6e:35:1c:81:58:cf:2a:c3:
71:47:f1:a3:ae:f8:4b:f2:1a:fd:19:d9:8f:30:aa:
66:18:0f:af:68:70:af:56:f4:87:cf:27:8d:f3:04:
ae:1b:10:30:05:da:3a:76:de:b1:30:2f:a4:fd:78:
9b:5f:a0:2c:3b:d7:89:41:83:2d:54:c0:22:b5:bc:
6c:2e:ff:ce:28:4c:ee:68:c0:7d:12:ef:3c:a2:9a:
06:52:6e:e5:d7:89:b1:97:f1:cd:6f:46:e3:d0:0b:
b1:4a:47:67:25:e2:9d:b6:75:34:24:8d:f9:05:cd:
94:dc:fe:62:a5:3c:9a:88:3b:86:77:00:6c:a6:1b:
68:8f:56:5c:cf:ef:44:f5:2f:b4:ab:f4:7c:dc:55:
94:d6:37:9a:ec:cb:79:46:48:6f:24:c5:51:7b:7b:
ff:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DF:2B:40:46:B5:97:C5:86:E9:B8:50:EC:F2:B6:D9:13:E5:A7:8F
X509v3 Authority Key Identifier:
keyid:24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/wd8rQEa1l8WG6bhQ7PK22RPlp48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.212.0/24
Signature Algorithm: sha256WithRSAEncryption
38:f2:5d:bd:0f:20:9f:97:a0:d6:ea:b4:de:ac:66:59:e2:2f:
df:03:5e:36:dc:a7:05:07:ca:42:f1:d8:c5:e7:cb:3d:37:93:
37:f3:ba:3c:50:08:60:f5:f7:e4:19:a6:65:8d:42:d9:5d:ec:
43:af:ba:f5:cf:25:8e:69:53:7d:ea:ee:41:72:94:4d:c3:79:
42:16:3e:de:19:67:35:6a:d7:c0:a4:0d:00:bc:07:9e:53:af:
6a:aa:d4:84:38:5c:e9:31:d6:8e:50:01:83:4a:70:7d:42:cf:
1f:28:fb:c5:f1:a5:77:ff:01:cb:29:09:ef:f5:42:8a:39:b9:
75:61:75:5c:b2:4c:7e:c7:77:1e:8a:e2:e0:ff:32:af:fe:dc:
b5:f9:e4:a5:e8:0f:3d:f0:77:5c:2a:2c:cb:c1:e3:50:ee:34:
97:ce:4b:a6:16:de:0a:72:25:c6:8f:f5:dd:b9:c4:0f:37:7f:
14:c3:6f:d9:27:52:b7:8c:8a:de:34:93:c1:69:4e:fc:f0:2f:
dd:68:88:d2:6b:ac:a0:b1:48:07:37:6f:c3:37:84:e7:1d:e6:
06:fa:dc:b3:33:60:21:3d:58:20:76:aa:58:85:be:3a:a4:74:
d2:ee:67:a0:49:79:9e:c4:c5:3a:d0:4c:20:9d:65:4b:66:b6:
38:98:12:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org