Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DnayjfEVBR94sVhBa5Bv_hvTFro.roa
File: DnayjfEVBR94sVhBa5Bv_hvTFro.roa (raw, json)
Hash identifier: jvh4+ImhfzGNlo+sPAEVE4CbG1Yj6o5ILSurTUvdTM4=
Subject key identifier: 0E:76:B2:8D:F1:15:05:1F:78:B1:58:41:6B:90:6F:FE:1B:D3:16:BA
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42934E0E
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DnayjfEVBR94sVhBa5Bv_hvTFro.roa
Signing time: Sat 01 Jan 2022 06:04:53 +0000
ROA not before: Sat 01 Jan 2022 06:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8382
IP address blocks: 213.228.120.0/21 maxlen: 21
195.46.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116950030 (0x42934e0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e76b28df115051f78b158416b906ffe1bd316ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:83:5e:85:1d:4a:15:a0:65:32:47:ef:11:
73:4a:35:cc:27:7e:f5:c2:81:7b:08:8c:4d:cb:ad:
3e:4d:0f:6f:b2:e3:a1:59:02:10:c1:f0:5b:54:c1:
1a:e2:1e:ef:e8:af:ad:fd:f3:a8:3d:f0:f8:65:b4:
32:b9:58:f1:8c:2f:dd:d8:54:44:bd:0a:73:b8:0e:
6e:94:27:43:3f:de:41:59:f7:88:5e:7b:83:d0:5b:
e1:00:64:c6:95:fa:b4:a4:be:65:ac:ae:b8:b1:f1:
71:53:71:4c:3f:73:55:02:77:26:02:cc:52:94:87:
e8:6a:ea:12:c4:b0:66:2e:70:4b:04:7a:a4:db:30:
ac:f4:c9:ad:65:73:83:52:e9:16:89:73:8a:90:26:
17:d2:28:3c:60:61:2d:9e:4e:dd:35:66:de:cb:a8:
2d:64:83:08:b7:d1:f4:15:f4:f8:9a:fd:9c:08:58:
11:a2:56:d0:42:5f:db:38:c3:5c:9a:7b:33:70:c5:
f8:4f:45:c4:02:2a:1b:8d:0a:99:d4:19:1d:41:e1:
4d:5c:65:5a:dd:4d:e4:b8:88:6b:65:d9:a6:78:96:
f9:48:61:89:eb:a0:02:e2:49:35:1f:81:c1:1d:44:
6f:50:e6:f4:cb:2d:1f:17:20:45:6a:81:13:ea:54:
c9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:76:B2:8D:F1:15:05:1F:78:B1:58:41:6B:90:6F:FE:1B:D3:16:BA
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DnayjfEVBR94sVhBa5Bv_hvTFro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.46.126.0/24
213.228.120.0/21
Signature Algorithm: sha256WithRSAEncryption
29:ad:09:89:5a:e9:f1:f2:8f:06:09:76:fa:96:0d:c7:f4:cd:
21:47:53:b7:dd:f0:d6:11:21:d1:df:53:fc:db:4f:c5:6f:aa:
41:65:b8:98:61:60:95:44:89:2e:1b:eb:fb:b1:98:52:d6:fc:
be:41:a8:6e:2b:5c:82:25:13:f5:98:d0:0a:fd:9d:63:7d:1a:
a8:0b:0f:e6:ca:de:5c:45:05:37:70:5f:f8:53:39:50:95:87:
6f:9f:48:53:84:12:5f:9d:82:af:98:68:04:ed:18:1c:0d:cc:
68:cd:26:ce:87:19:75:2c:34:42:77:b4:e5:12:13:cf:61:ba:
9e:a5:f6:c4:dc:6c:77:89:60:2e:95:f2:d9:5c:f2:40:77:eb:
df:65:15:85:2b:40:ab:01:7f:d9:6e:3f:e9:6d:13:bc:c4:18:
76:67:29:6a:aa:c2:f2:8d:4b:9a:ff:90:36:5f:47:66:a1:44:
7b:cf:a6:ce:52:67:f8:b3:b0:33:db:b6:50:46:07:f8:f3:f3:
91:14:3c:31:b2:57:ae:89:33:09:2d:aa:dc:d6:38:4b:6f:6e:
6d:92:f0:89:8a:51:ee:f1:eb:41:bb:63:12:9c:25:aa:07:ad:
73:72:a3:37:2f:cd:81:3d:45:5b:94:23:e2:8e:61:54:e8:bb:
78:ca:9b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:24 2024 by rpki-client on console-ams.rpki-client.org