Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AWtZ-dk4Mf5LdwlkBXSFjJNSxIg.roa
File: AWtZ-dk4Mf5LdwlkBXSFjJNSxIg.roa (raw, json)
Hash identifier: 50PxPgDwGmKviDGaV8zdPUPwDuFwIWgSQWgzg1RP/nQ=
Subject key identifier: 01:6B:59:F9:D9:38:31:FE:4B:77:09:64:05:74:85:8C:93:52:C4:88
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0EA0D3D0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AWtZ-dk4Mf5LdwlkBXSFjJNSxIg.roa
Signing time: Sun 06 Feb 2022 16:52:18 +0000
ROA not before: Sun 06 Feb 2022 16:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34534
IP address blocks: 195.133.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245421008 (0xea0d3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 6 16:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=016b59f9d93831fe4b7709640574858c9352c488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:0d:b4:9e:44:41:26:0a:10:01:c3:81:fd:
76:e9:83:52:50:74:89:8b:6d:c6:b9:25:21:0d:68:
cb:97:01:9a:8b:ea:15:c9:b3:32:e1:21:21:7b:40:
fa:a3:b4:92:84:cb:43:2c:1b:1a:32:db:8d:62:d2:
42:f7:40:e0:aa:4a:f7:0e:e2:d2:c5:b4:5e:c9:67:
a9:91:52:89:06:93:8c:68:11:7e:bf:0b:22:38:64:
46:ce:49:53:0a:9f:22:d6:81:60:61:fb:e9:67:ec:
b4:37:69:b2:d9:e1:3a:b3:39:2c:b5:c4:ed:93:4d:
02:53:95:5f:4c:6b:15:9a:71:37:ee:5a:38:f7:1e:
61:ef:68:40:81:f0:92:98:b8:0e:1b:ac:80:54:20:
c5:ea:b4:b6:4b:20:3d:51:29:b4:31:1c:fe:a4:20:
af:6b:18:7a:19:f5:ce:84:3c:fa:42:12:5d:1a:48:
7d:91:d6:24:1f:0c:3b:cd:4d:c2:21:05:86:a3:05:
a9:4e:07:67:59:c8:ca:96:a3:4d:bc:12:e9:4b:7f:
04:a8:a2:48:00:5c:a6:69:2f:da:e8:3a:30:0d:27:
bb:85:ba:6e:02:9b:72:61:64:6a:46:bd:74:09:f7:
94:85:71:33:47:86:4b:5b:39:ec:42:2d:41:56:6c:
7e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6B:59:F9:D9:38:31:FE:4B:77:09:64:05:74:85:8C:93:52:C4:88
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AWtZ-dk4Mf5LdwlkBXSFjJNSxIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.81.0/24
Signature Algorithm: sha256WithRSAEncryption
42:93:69:19:ad:83:9d:53:64:50:25:b6:94:4d:d8:3c:4a:f6:
1b:fd:13:bd:d6:a9:5f:a5:40:89:4c:a6:37:43:23:29:64:d0:
44:ec:3c:1a:aa:12:ed:21:b6:49:e4:b0:93:18:86:6d:8f:29:
4c:b0:10:1e:d6:3d:ad:18:df:5d:5e:9c:a4:28:5f:ca:ec:89:
ba:17:be:c5:78:e4:55:17:74:ef:76:bb:dd:c0:e1:5b:e0:68:
5c:c2:4a:50:dd:a4:47:c5:32:59:45:5d:2c:74:7b:fd:bf:9e:
f6:cb:94:d9:75:e7:e3:cd:b8:a0:1d:5c:86:af:31:f1:e2:6f:
75:24:4b:cc:67:08:91:8b:ec:fd:8f:5c:6f:2e:2d:df:9c:63:
5d:77:24:06:e1:68:cb:e4:77:21:56:5e:0d:05:32:53:3e:ce:
0d:59:fa:30:85:80:90:fa:cd:cc:de:82:25:dc:40:35:54:17:
f5:ce:f0:12:29:fe:17:79:a4:a5:9f:df:05:d5:5c:f0:1f:b6:
c1:ab:f1:61:3c:9d:9d:28:d9:ea:2c:27:63:97:de:1c:b7:3a:
ec:22:ed:37:2b:42:c7:09:5d:00:fa:93:6f:0e:54:ac:e4:6c:
6e:3c:af:67:14:13:2d:dd:95:fa:01:64:dc:25:d5:f4:fa:c5:
25:59:6a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:57 2023 by rpki-client on console-fra.rpki-client.org