Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/a4nRImfSAaU051JuhPr5LP7-suo.roa
File: a4nRImfSAaU051JuhPr5LP7-suo.roa (raw, json)
Hash identifier: LlCkquWk8RXcOtADsNnugwMIUQyEIcUuW0aJWQEeq6U=
Subject key identifier: 6B:89:D1:22:67:D2:01:A5:34:E7:52:6E:84:FA:F9:2C:FE:FE:B2:EA
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 01855D4558A1DF1456BEB1F26B35B7E51DEE
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/a4nRImfSAaU051JuhPr5LP7-suo.roa
Signing time: Thu 29 Dec 2022 09:45:03 +0000
ROA not before: Thu 29 Dec 2022 09:45:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 138.124.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:45:58:a1:df:14:56:be:b1:f2:6b:35:b7:e5:1d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Dec 29 09:45:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b89d12267d201a534e7526e84faf92cfefeb2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c1:a9:a9:40:62:42:1e:85:34:05:ce:0a:b4:
d5:ce:c3:78:da:cc:e7:b2:90:e6:9a:7b:14:4e:78:
e9:9d:b0:79:96:1c:5b:ed:f8:79:14:84:4c:58:2a:
15:06:56:81:28:5b:c6:d3:57:5c:8f:e4:9a:d5:6a:
5f:76:a5:40:cf:93:0c:fe:12:07:9a:58:37:ea:cc:
a3:54:42:90:73:eb:c7:f5:9f:17:b5:fa:cc:91:bc:
52:81:26:61:0f:b3:b6:63:b0:0a:a5:bc:fa:62:73:
59:6e:fe:02:8d:cf:a5:05:7f:a9:8c:ba:c4:a6:d1:
f5:4c:05:c0:12:c2:4b:53:81:3b:92:91:05:b7:b8:
4e:58:e0:8c:3b:bb:d4:a2:09:3e:e9:56:e4:67:4f:
98:fd:9d:4b:ed:e5:01:87:fc:96:78:46:1a:36:b2:
ab:df:b2:72:13:d2:84:e8:15:fe:1b:77:39:bb:77:
0f:9b:4d:d0:6e:ea:b7:67:9e:32:4c:df:3e:7c:bb:
9e:04:d5:48:2d:5f:cc:e6:e6:ff:0d:45:60:fc:94:
3c:bb:75:07:f9:3b:b4:fa:4b:9f:9c:6f:3e:4e:04:
4b:88:18:88:23:47:33:17:c6:07:39:4a:ec:32:a8:
df:a6:b9:ee:66:62:29:c1:ee:79:ba:ee:af:44:c8:
c1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:89:D1:22:67:D2:01:A5:34:E7:52:6E:84:FA:F9:2C:FE:FE:B2:EA
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/a4nRImfSAaU051JuhPr5LP7-suo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.181.0/24
Signature Algorithm: sha256WithRSAEncryption
95:05:d1:fa:a0:0e:cb:48:8f:c5:e4:91:96:af:40:f5:02:e9:
4c:02:79:25:2e:f9:e5:06:19:23:f2:f7:1d:61:14:df:01:39:
b5:ab:93:f0:15:16:42:50:1f:86:c4:c1:77:a7:9a:67:70:c1:
72:72:b3:c7:e0:f1:a9:ba:81:ff:d9:fa:56:1f:05:19:c9:7b:
0f:80:ef:f4:e2:51:c0:19:78:ed:dd:fa:36:44:a6:eb:62:37:
d1:f0:b2:ff:a4:86:e9:b5:41:d2:f6:d2:7d:68:18:e7:86:b3:
fe:df:f4:cc:65:51:b6:f7:2c:11:59:5c:67:67:b5:5c:d4:d9:
15:72:48:ef:c6:65:49:10:54:0e:31:b3:26:79:bc:1f:3a:07:
0d:2c:bc:2b:1d:75:83:2c:c0:ef:35:e8:29:4d:44:ad:f8:31:
33:3c:3e:85:0b:3f:e1:32:45:f1:ff:99:96:75:8a:d9:7b:51:
37:db:3a:93:c9:56:3e:d9:a0:78:62:e4:6d:a9:9a:fa:28:12:
d7:e1:a9:e8:db:a0:bc:cd:dc:f6:7d:af:4e:4d:ba:a8:eb:a1:
6c:91:30:84:2c:a5:d8:19:93:85:59:84:b8:bc:66:cd:95:e8:
ee:61:c2:de:04:ae:4e:16:bb:67:13:6a:e6:bf:2f:82:73:2e:
d7:ba:4a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:45 2024 by rpki-client on console-fra.rpki-client.org