Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/bb7556-9fc7-406e-b38a-9262e53e1d10/1/Tbkf3tcS4wMCUai-x0Uu_Pw7-1Q.roa
File: Tbkf3tcS4wMCUai-x0Uu_Pw7-1Q.roa (raw, json)
Hash identifier: tP31q1IXayFvazwewvYg2Qup2mNAQpVll79HmKdwAvo=
Subject key identifier: 4D:B9:1F:DE:D7:12:E3:03:02:51:A8:BE:C7:45:2E:FC:FC:3B:FB:54
Certificate issuer: /CN=8c692d29ac312d2ab6061e44a9de0ed3751aea7e
Certificate serial: 016693FC
Authority key identifier: 8C:69:2D:29:AC:31:2D:2A:B6:06:1E:44:A9:DE:0E:D3:75:1A:EA:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jGktKawxLSq2Bh5Eqd4O03Ua6n4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/bb7556-9fc7-406e-b38a-9262e53e1d10/1/Tbkf3tcS4wMCUai-x0Uu_Pw7-1Q.roa
Signing time: Sat 01 Jan 2022 13:01:06 +0000
ROA not before: Sat 01 Jan 2022 13:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41916
IP address blocks: 195.138.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23499772 (0x16693fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c692d29ac312d2ab6061e44a9de0ed3751aea7e
Validity
Not Before: Jan 1 13:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4db91fded712e3030251a8bec7452efcfc3bfb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:92:a9:b5:d8:80:22:60:7c:43:56:b0:63:18:
92:e2:15:5b:f9:6f:a7:94:67:ca:19:6f:47:28:f5:
5b:b3:d5:ba:94:07:25:88:c2:03:0b:ef:1f:3d:6f:
79:31:04:ba:69:fa:89:dc:76:b3:2e:d5:5d:01:84:
e9:c3:1f:93:55:b6:39:dc:76:6d:85:a0:70:1f:fd:
b5:a7:8d:d7:cb:09:35:85:e2:a0:e4:44:8d:44:b5:
c6:55:ee:b5:a1:7f:b9:f4:b7:54:b8:74:b9:4b:7a:
fa:dd:54:d8:a6:b7:bf:74:55:e7:1f:b6:9b:bf:3d:
f1:40:f9:20:e1:5b:78:26:0e:4e:5d:8d:a2:d8:18:
52:e0:52:3e:27:fd:a9:02:8b:3d:0a:2f:92:a9:e6:
8e:f6:53:97:d3:34:fc:51:07:ba:47:81:a0:20:0d:
44:f0:13:29:09:2d:c3:1e:bb:62:e2:93:4d:19:3d:
98:70:82:8c:ed:32:aa:4d:4d:8a:62:c6:b1:3b:7e:
f7:24:30:b0:98:26:f0:c5:c0:db:49:61:59:93:43:
9d:c0:81:15:cd:dc:31:8e:1c:ae:8d:b3:b3:70:33:
4f:1f:e6:8a:c9:77:78:a6:b6:ea:82:50:c7:e8:eb:
45:a3:47:cb:70:82:f0:4b:b2:5f:5f:32:60:aa:c0:
fb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B9:1F:DE:D7:12:E3:03:02:51:A8:BE:C7:45:2E:FC:FC:3B:FB:54
X509v3 Authority Key Identifier:
keyid:8C:69:2D:29:AC:31:2D:2A:B6:06:1E:44:A9:DE:0E:D3:75:1A:EA:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jGktKawxLSq2Bh5Eqd4O03Ua6n4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/bb7556-9fc7-406e-b38a-9262e53e1d10/1/Tbkf3tcS4wMCUai-x0Uu_Pw7-1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/bb7556-9fc7-406e-b38a-9262e53e1d10/1/jGktKawxLSq2Bh5Eqd4O03Ua6n4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.196.0/24
Signature Algorithm: sha256WithRSAEncryption
86:90:af:4c:db:cc:3e:bb:99:a4:ce:02:d4:56:f1:4c:12:db:
83:f0:73:47:a5:f7:91:c9:23:73:bc:e7:df:e9:ca:3d:2a:e5:
e8:0b:59:78:d8:9c:91:c9:93:a9:67:7f:1e:08:9f:c2:1a:f9:
38:24:e3:ea:83:e4:45:6e:1a:dc:c7:1e:46:e9:a0:28:b8:ac:
1e:3c:31:6e:c5:b2:d9:ed:c1:8c:41:3c:58:35:6c:9d:f3:a0:
5b:de:06:f1:c0:42:ef:a5:77:03:64:1c:53:6c:fa:76:cc:36:
6f:51:53:ea:87:a6:60:53:90:e2:c0:de:79:3c:76:b6:67:ec:
c3:b7:6c:75:52:92:b3:d9:97:c5:fe:9e:4c:b4:55:fc:1f:bf:
96:8b:c6:63:52:ff:e5:54:a6:fb:79:f2:64:1d:b0:b4:9d:08:
ed:61:a8:d1:c3:5c:1d:d2:1e:66:aa:54:3a:3a:0e:db:29:87:
62:44:83:0a:49:06:a2:31:c4:90:dd:a9:38:2c:4e:6b:c2:0e:
96:b3:da:f3:8f:f0:e5:35:50:1e:81:63:b1:4b:07:98:33:c9:
55:86:af:38:4e:a5:86:43:c2:b0:08:4e:91:40:15:0b:b0:64:
51:8b:8c:ba:63:f5:6e:d6:f3:be:8e:e4:fd:75:66:80:43:a7:
de:33:cd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:54 2024 by rpki-client on console-fra.rpki-client.org