Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sX_OhBNS3J3By245_xTBGFb-UXU.roa
File: sX_OhBNS3J3By245_xTBGFb-UXU.roa (raw, json)
Hash identifier: ZOJuUR6W1tyEdM/q6DWCjFypBlleT/5P8/EI0aWTVpI=
Subject key identifier: B1:7F:CE:84:13:52:DC:9D:C1:CB:6E:39:FF:14:C1:18:56:FE:51:75
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01825EF447321C1E9C6B292E289BD44B2034
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sX_OhBNS3J3By245_xTBGFb-UXU.roa
Signing time: Tue 02 Aug 2022 14:27:23 +0000
ROA not before: Tue 02 Aug 2022 14:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 195.133.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:f4:47:32:1c:1e:9c:6b:29:2e:28:9b:d4:4b:20:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 2 14:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b17fce841352dc9dc1cb6e39ff14c11856fe5175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:c0:de:b1:f1:b0:b5:86:b2:0a:74:3e:7c:
0f:fa:ae:36:46:08:1a:ac:19:0a:38:13:ba:fc:b3:
92:28:4c:85:8b:0c:39:0a:ee:60:11:78:4f:7c:37:
f2:e4:4f:a2:1a:ac:51:f1:92:70:b8:bc:02:8d:84:
79:7a:77:dd:04:df:e7:c0:a5:93:66:a3:04:6b:d6:
83:04:f2:10:6d:f0:8a:b9:13:19:c4:9e:41:ee:c5:
d3:2f:68:49:e3:57:07:87:a8:8b:d7:8b:d8:74:ac:
3a:21:04:16:41:23:d9:30:04:51:14:26:f7:b5:07:
b9:84:31:a6:25:41:15:6b:8c:40:0a:69:fa:60:d2:
51:65:0b:11:b4:4e:d6:3f:40:68:a6:0a:b8:d2:dc:
74:b6:e8:7b:89:83:04:0f:31:48:a7:44:b2:cc:28:
27:a1:d7:19:04:c2:d2:84:83:0a:23:97:2f:89:e4:
f7:0c:7f:72:8d:cc:4f:4c:97:3b:42:e5:ce:ff:a7:
3d:62:8b:90:13:18:63:08:b9:b2:88:f8:72:f1:8e:
1c:5a:22:31:68:67:1a:e9:e5:87:cb:21:68:7a:1d:
5a:b3:1c:54:53:2d:b6:24:d5:8c:3a:25:69:2b:65:
b8:1a:45:cf:1e:83:4c:92:e9:74:3f:d0:87:b6:11:
cb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7F:CE:84:13:52:DC:9D:C1:CB:6E:39:FF:14:C1:18:56:FE:51:75
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sX_OhBNS3J3By245_xTBGFb-UXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.12.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:19:2d:f3:7b:2f:06:9e:37:e7:a4:0c:c7:21:36:dd:b4:12:
47:2e:90:b7:79:aa:17:6a:47:61:fd:06:43:36:f0:35:93:d3:
66:15:dd:9b:64:49:a0:01:43:f3:86:15:9b:eb:9c:88:4d:cf:
d5:5a:9c:fc:55:95:52:e2:c4:55:a1:fb:1f:bb:43:16:a9:8f:
0a:60:1e:ba:7b:4e:c3:83:8d:a1:ef:c7:1f:71:1b:4d:ca:83:
a5:3a:80:5e:9f:47:28:31:c4:8e:28:65:bb:32:c3:9c:33:89:
a9:52:e5:ee:8e:0a:ab:76:b8:91:c7:5e:51:a0:0e:6f:c7:69:
04:6f:2f:0f:e0:78:35:34:37:4a:4d:18:1d:4d:28:e9:8f:a3:
a9:67:9a:83:03:8d:14:94:59:d4:2a:9d:39:eb:64:6d:99:3d:
5d:00:d3:81:4c:b2:fc:d1:99:a9:39:3c:34:08:26:52:2b:5e:
93:75:11:22:77:d1:23:31:e3:77:71:5c:bb:ab:f2:0d:3b:ca:
dd:59:a4:e8:fe:41:18:32:16:7e:cf:d4:fe:25:c0:ca:0a:98:
53:b1:b3:5b:83:ee:8b:62:f2:25:18:27:65:4e:59:21:d8:ce:
91:22:89:4c:22:ca:0a:d5:a5:49:88:f7:01:f2:e3:bc:92:6c:
92:7a:b1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org