Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fp80inY6SpWDTzzxnV0XVhsmPgc.roa
File: Fp80inY6SpWDTzzxnV0XVhsmPgc.roa (raw, json)
Hash identifier: wB2zQwlyuZwNrqzSSmFO6xidmaFfDJQ6i/Uot3YT71U=
Subject key identifier: 16:9F:34:8A:76:3A:4A:95:83:4F:3C:F1:9D:5D:17:56:1B:26:3E:07
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0F1F2B15
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fp80inY6SpWDTzzxnV0XVhsmPgc.roa
Signing time: Thu 17 Mar 2022 07:51:19 +0000
ROA not before: Thu 17 Mar 2022 07:51:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 195.133.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253700885 (0xf1f2b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 17 07:51:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=169f348a763a4a95834f3cf19d5d17561b263e07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:21:ac:84:3f:e2:42:1c:73:57:df:6e:f5:6e:
b5:de:0f:cd:f4:ce:88:d9:dc:9e:1c:8c:83:c8:3c:
80:5d:45:56:71:f2:1a:95:86:28:ea:58:d9:b2:60:
dd:d0:09:ab:0c:c8:e2:93:57:f1:da:99:e6:8b:04:
f2:e2:98:aa:11:71:87:37:e3:2d:2f:db:11:e4:ef:
0a:3e:e1:87:cb:26:e8:d5:1a:49:93:73:89:aa:fb:
2d:93:50:7f:2b:54:12:f3:eb:ab:18:81:15:2e:9b:
f1:a1:53:8c:9b:8f:d3:6f:af:3a:ea:92:db:d7:d4:
4e:2f:50:02:be:03:5b:f1:cf:3f:b7:56:cb:98:e2:
e6:dc:d5:99:b2:fe:4e:56:b1:f0:4c:e5:fa:84:fb:
3f:62:51:8a:26:a7:c6:c6:f8:65:4d:35:f5:f9:c7:
5b:6d:bd:c0:44:f3:9f:77:82:dd:3d:9e:29:b0:23:
eb:13:54:de:f0:65:f5:8e:a2:99:4a:2b:4f:d5:82:
e2:0f:64:11:bb:e5:a3:cc:ab:ea:b5:4f:48:6c:11:
4d:5f:8e:01:e0:ee:20:46:c5:f7:c1:9b:95:64:b6:
ab:81:d0:19:e5:60:46:72:68:20:d3:9a:55:8c:1d:
77:8c:bd:bb:f6:37:31:e0:34:3a:f4:60:00:d8:6c:
6e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:9F:34:8A:76:3A:4A:95:83:4F:3C:F1:9D:5D:17:56:1B:26:3E:07
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fp80inY6SpWDTzzxnV0XVhsmPgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.77.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:45:ef:c9:50:ed:21:76:13:0e:7b:24:cb:66:86:dc:81:da:
b3:86:b8:b1:87:b1:8d:03:15:50:f2:a0:73:ef:c8:da:18:d6:
6e:a6:3b:fe:01:eb:8b:aa:fc:66:b7:ce:a7:80:31:29:85:a1:
19:d7:75:6c:5a:0f:c1:d0:ff:34:4d:d5:2b:94:dc:60:f5:ed:
f1:4d:c5:d6:42:84:de:d1:3b:e0:a2:a5:87:7d:f1:f9:31:f7:
4d:fa:08:fb:ae:5c:4e:f4:cf:c2:f6:28:de:9b:2f:3e:91:53:
86:d1:f0:cd:ba:62:a0:b7:9b:21:5e:57:56:2f:2c:0a:f0:69:
21:d2:f8:a2:20:fc:3f:f1:19:89:b5:82:b3:6d:a6:09:5e:d2:
17:74:3c:28:85:c9:8c:f7:92:1a:40:2c:1e:a4:7f:50:fa:9f:
42:63:46:c0:dd:aa:a3:8f:91:4b:7f:9a:31:fc:be:39:63:6e:
36:e7:1b:26:fe:1f:b2:ba:3c:dc:1d:13:b0:56:e2:fa:8e:55:
4f:91:a7:33:9f:24:c9:96:4b:ae:e6:29:6d:07:e3:0f:a3:16:
22:ad:92:03:f9:94:65:db:83:f4:76:76:45:b9:68:5e:b5:8f:
ba:ca:c9:03:8a:3d:c9:5a:08:43:b4:03:22:39:25:5c:53:b0:
37:82:96:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:11 2024 by rpki-client on console-fra.rpki-client.org