Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a3e965-9cf4-40e8-a085-49031c770487/1/RGMDs1EyWJ7ilKaeL5_U57Prq6E.roa
File: RGMDs1EyWJ7ilKaeL5_U57Prq6E.roa (raw, json)
Hash identifier: KR5d9K9tu8HCw1IWghoIegiFTgjgMZA9VNlqxtCmPQU=
Subject key identifier: 44:63:03:B3:51:32:58:9E:E2:94:A6:9E:2F:9F:D4:E7:B3:EB:AB:A1
Certificate issuer: /CN=215181b82776978ad2dbb69528dce9b2098eb07e
Certificate serial: 01FB4D7B
Authority key identifier: 21:51:81:B8:27:76:97:8A:D2:DB:B6:95:28:DC:E9:B2:09:8E:B0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVGBuCd2l4rS27aVKNzpsgmOsH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a3e965-9cf4-40e8-a085-49031c770487/1/RGMDs1EyWJ7ilKaeL5_U57Prq6E.roa
Signing time: Sat 01 Jan 2022 12:55:20 +0000
ROA not before: Sat 01 Jan 2022 12:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206293
IP address blocks: 195.5.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33246587 (0x1fb4d7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215181b82776978ad2dbb69528dce9b2098eb07e
Validity
Not Before: Jan 1 12:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=446303b35132589ee294a69e2f9fd4e7b3ebaba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:eb:06:59:18:da:14:df:7d:65:4b:5f:9f:f9:
90:08:7c:97:96:6c:1e:83:a8:db:02:d0:4e:5d:a8:
c6:17:b3:25:b9:d5:21:89:d4:4c:e0:2a:4e:1e:d9:
f7:11:00:0c:de:7d:76:9c:4d:01:0f:e0:64:0c:f6:
a0:2f:17:4f:d8:1e:83:1d:25:8d:9d:9e:d8:ac:16:
ea:8b:cb:65:15:7f:23:c7:90:bd:81:78:36:32:1d:
41:ed:1c:6e:aa:bd:8d:19:a7:c6:c4:01:84:2e:d5:
d9:25:9b:6e:c1:9b:c1:ad:29:3d:8c:bf:75:a0:32:
ab:00:5b:41:ae:91:93:09:15:a1:0c:e3:7f:9a:21:
a4:c1:60:a0:01:bd:81:83:8c:3e:3f:81:6a:c3:d5:
1c:1b:9a:12:c9:26:3a:b4:2b:ac:3f:a3:7d:67:92:
d2:db:66:51:82:a2:07:c7:c6:99:91:c3:05:e4:6c:
e6:47:d0:44:5a:ab:82:8a:90:0e:26:6f:1a:0f:ed:
df:e1:d7:96:71:55:da:2d:23:cd:f4:51:28:11:9f:
1c:b0:06:d8:ce:30:d9:4f:e3:62:68:a6:e2:bb:40:
0b:da:dc:8f:0a:3f:d8:d4:73:a9:f8:d5:8e:6e:c9:
34:f6:af:4f:aa:7e:83:3e:15:d7:0c:b5:07:9b:a2:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:63:03:B3:51:32:58:9E:E2:94:A6:9E:2F:9F:D4:E7:B3:EB:AB:A1
X509v3 Authority Key Identifier:
keyid:21:51:81:B8:27:76:97:8A:D2:DB:B6:95:28:DC:E9:B2:09:8E:B0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVGBuCd2l4rS27aVKNzpsgmOsH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a3e965-9cf4-40e8-a085-49031c770487/1/RGMDs1EyWJ7ilKaeL5_U57Prq6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a3e965-9cf4-40e8-a085-49031c770487/1/IVGBuCd2l4rS27aVKNzpsgmOsH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.191.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ca:f5:fb:e6:f3:58:5c:5a:04:ff:ed:de:03:c6:f9:d7:34:
67:99:25:90:87:7e:23:94:e0:02:8a:38:f5:06:18:8a:70:ae:
0f:a9:0e:95:68:a0:88:f7:29:c1:cf:8c:8a:b4:31:b7:54:0a:
44:a2:af:ad:97:2a:2c:b2:10:8e:3d:54:5f:95:5e:5d:74:d6:
d7:98:2a:c0:09:9b:44:f0:10:16:d5:46:77:20:71:ce:0b:66:
44:87:82:bc:f1:3a:9e:ef:fe:29:9d:84:cb:ec:fb:eb:c0:e6:
84:fb:bc:f1:23:54:07:20:8b:7b:47:2b:f5:19:f6:ad:2a:54:
cc:82:f1:4f:e4:75:d0:92:7c:40:ed:d0:bf:3a:4f:96:8e:e5:
c9:75:1a:6e:30:50:3d:22:e9:cc:ee:ad:fd:64:64:0d:22:0a:
1f:1f:e2:37:55:42:20:44:f0:ce:d6:1c:ba:1a:ba:83:f1:82:
8c:91:0a:b6:ab:ce:74:e9:dd:f3:26:bf:57:c7:4f:63:0a:d2:
2d:69:59:98:86:3b:47:bf:68:49:3b:9a:d0:cb:34:34:09:82:
f8:95:c3:c7:e3:70:b2:af:1a:5a:b6:b5:95:44:70:09:50:a4:
06:a6:ae:46:5a:8a:36:96:77:d9:f8:73:64:2e:cb:4b:23:d9:
ec:f0:a3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:19 2024 by rpki-client on console-ams.rpki-client.org