Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/1fokHI4z6py5Ng6qEsmywR3hQhw.roa
File: 1fokHI4z6py5Ng6qEsmywR3hQhw.roa (raw, json)
Hash identifier: YNIJvCyPnvoJaASi7bqmPVXAhuCb4XgYwJTqWSTgc+Q=
Subject key identifier: D5:FA:24:1C:8E:33:EA:9C:B9:36:0E:AA:12:C9:B2:C1:1D:E1:42:1C
Certificate issuer: /CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Certificate serial: 0E18610C
Authority key identifier: 41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/1fokHI4z6py5Ng6qEsmywR3hQhw.roa
Signing time: Thu 10 Feb 2022 08:09:37 +0000
ROA not before: Thu 10 Feb 2022 08:09:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210336
IP address blocks: 195.242.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236478732 (0xe18610c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Validity
Not Before: Feb 10 08:09:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5fa241c8e33ea9cb9360eaa12c9b2c11de1421c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e3:9b:73:55:9d:f6:7b:42:ef:e9:92:14:2b:
b8:dd:d3:12:ab:dd:8c:9a:49:2b:33:54:5d:76:15:
b3:14:83:4c:9c:37:f3:7c:3a:4d:3e:11:73:be:1d:
c6:6e:de:f7:71:8e:bf:16:ea:b1:6f:cb:f1:77:b7:
d6:cc:c2:bb:4a:30:d9:ea:89:3a:78:68:8a:6c:30:
56:8e:1a:39:75:e0:c0:bf:e8:87:85:3d:50:99:e4:
5e:50:af:cb:c2:8a:2a:9d:42:ae:43:75:ec:78:f0:
a4:46:a0:8b:51:33:8b:7c:29:b0:57:71:78:67:f8:
7a:8a:14:39:57:cc:c8:76:b2:ef:c3:48:d8:f3:10:
c1:e6:b8:db:1a:cd:ff:32:43:3d:84:6b:3c:15:1e:
e8:22:52:e4:4c:07:2b:f9:8f:df:17:38:46:3e:ac:
4e:6d:fa:32:0d:d1:34:e9:cf:36:7a:70:ac:eb:45:
8c:b3:32:ca:2b:04:e7:dd:1d:23:25:08:5a:3a:3c:
c2:8b:78:4c:67:58:75:f5:0b:79:56:3f:37:85:36:
4c:01:29:4e:b5:68:14:9c:61:88:c3:7a:fb:0e:06:
3f:be:67:6c:56:8b:36:13:93:41:c5:b7:09:04:31:
d9:c9:45:4a:07:a6:aa:aa:4b:1a:c2:5a:f4:2d:68:
86:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FA:24:1C:8E:33:EA:9C:B9:36:0E:AA:12:C9:B2:C1:1D:E1:42:1C
X509v3 Authority Key Identifier:
keyid:41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/1fokHI4z6py5Ng6qEsmywR3hQhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.90.0/23
Signature Algorithm: sha256WithRSAEncryption
44:60:57:d3:26:4c:a1:f6:8f:4c:ae:b5:24:d9:52:7e:ff:16:
2b:9b:6f:9e:b1:dd:e7:c1:47:6e:cd:77:ba:0d:59:46:cf:63:
b2:ca:b0:7a:8d:0b:8e:77:78:20:3b:fe:9d:10:8c:ff:6d:7f:
4a:4e:ab:38:4a:03:f7:21:5d:78:df:01:ed:0c:f9:c3:45:c7:
e0:21:88:bf:96:9b:1d:36:92:cb:6a:bc:38:db:03:c3:d6:19:
ef:97:a8:82:f1:48:8d:92:98:d8:53:4e:c3:ba:24:21:0a:b1:
a1:eb:af:09:7d:6c:49:48:9f:8d:aa:b2:30:e5:d9:b9:d6:8c:
2f:67:bf:c6:96:a5:35:b9:7e:07:a9:9f:eb:5b:b2:e6:8b:29:
58:ac:8f:a2:0c:0d:14:29:1b:ad:6e:21:65:a3:ff:ee:26:59:
e5:12:c5:2a:70:57:3a:8d:43:c5:da:01:52:35:c9:79:4c:9f:
62:63:7a:cd:be:1a:52:51:4d:e3:e7:bd:b1:ad:f4:c3:c0:e2:
0c:c3:f5:80:76:45:20:29:91:7d:29:3a:bc:20:08:c7:b6:34:
3e:d0:05:20:00:28:f4:60:67:41:86:d8:45:11:69:b5:8c:04:
e6:8c:31:07:20:9c:f7:a3:d8:90:9c:04:0b:1f:29:81:ae:ed:
5f:89:e0:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:48 2024 by rpki-client on console-ams.rpki-client.org