Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SX6sBhLLLEDxWfQkhl3V6J5eg-8.roa
File: SX6sBhLLLEDxWfQkhl3V6J5eg-8.roa (raw, json)
Hash identifier: MSHX7VOjgsQzrhduyz+LHyS+mGP2W900ejI6ztO48yk=
Subject key identifier: 49:7E:AC:06:12:CB:2C:40:F1:59:F4:24:86:5D:D5:E8:9E:5E:83:EF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0FAA2F7A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SX6sBhLLLEDxWfQkhl3V6J5eg-8.roa
Signing time: Sat 07 May 2022 15:58:46 +0000
ROA not before: Sat 07 May 2022 15:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 195.133.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262811514 (0xfaa2f7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 7 15:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=497eac0612cb2c40f159f424865dd5e89e5e83ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f7:a4:28:b2:c4:dc:f5:62:69:a3:30:55:3a:
c5:f4:a5:3f:b1:f5:44:99:ee:37:8a:05:f2:3d:68:
29:33:55:f4:9a:c0:ee:2e:d3:e3:cd:79:8f:c9:53:
30:c7:f7:b3:01:32:67:cb:e2:01:d2:85:9c:0a:2d:
83:a2:c0:79:53:62:86:db:9b:72:33:d4:a4:41:9f:
9e:2a:f6:dc:c3:0f:a3:e0:50:80:a9:96:1e:32:19:
2e:51:78:a7:15:eb:e8:80:7c:fb:19:40:6b:af:b0:
9b:88:60:51:4b:05:cb:d2:b7:f9:1d:0c:3c:6b:36:
f8:3c:4e:8c:32:d7:0f:b7:bf:b6:8b:15:e5:b1:01:
a7:7c:6a:8c:e4:2d:12:2d:ff:fd:fe:fa:34:ab:e4:
98:f1:19:9d:9f:2d:58:b0:f0:a4:a3:ed:85:7c:23:
06:09:0a:09:b2:93:e9:05:ee:fc:c9:02:16:21:b9:
c1:bb:5f:1e:03:5d:64:6d:ca:e4:d8:a9:2c:b3:14:
f9:38:1e:c2:5f:8e:fc:53:67:39:21:b7:eb:c2:3c:
57:42:f9:68:35:c0:57:51:4d:71:85:03:2d:f3:8b:
c5:ff:03:6a:52:1e:b1:69:24:4c:0d:0c:5e:94:e9:
d5:89:4c:d8:e5:5d:6b:98:1a:47:89:22:27:98:ee:
36:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7E:AC:06:12:CB:2C:40:F1:59:F4:24:86:5D:D5:E8:9E:5E:83:EF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SX6sBhLLLEDxWfQkhl3V6J5eg-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.81.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:84:87:d6:29:b1:68:ee:94:83:47:1b:d3:37:db:4b:02:3f:
fc:82:4e:ed:71:ea:1b:d9:c7:ff:e1:16:da:f1:be:cc:68:89:
de:7b:41:e2:0e:5a:6f:1f:d7:ec:36:5e:ac:64:a0:f4:af:6d:
51:63:7e:e7:2b:91:1d:91:49:3a:2d:ff:a2:9b:96:40:a0:74:
a8:13:e4:40:c0:98:c7:79:43:58:d4:8a:a8:b7:92:00:90:72:
31:8e:55:87:90:7d:13:18:e3:20:60:9c:fc:e9:5b:61:d3:b1:
6e:b4:70:5a:4c:72:89:b4:a4:ff:ab:e9:ef:71:98:e7:3c:03:
cc:98:60:f8:8e:45:2c:c9:9c:e4:4e:6a:77:aa:dd:7b:5a:26:
dd:0c:50:e8:4e:d8:30:6b:c3:41:f0:75:09:2d:78:4f:30:51:
24:a8:6c:c8:ff:bd:dc:d4:29:6d:2d:2e:8a:3f:f7:a6:d5:b2:
44:50:be:06:91:32:9e:aa:ef:14:15:48:e6:b7:d2:4a:15:4f:
d8:39:c5:f4:e7:e7:18:cd:5a:1d:57:01:bd:a3:3d:cb:13:f5:
6c:01:87:c7:b7:df:cf:1f:2f:27:33:21:fb:cb:0e:d0:36:6a:
82:f6:31:a4:82:69:4e:5c:64:d9:8e:12:b3:1a:e4:bd:e7:0e:
ad:e0:cb:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-ams.rpki-client.org