Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/625a92-c2d1-4ea8-9ce8-e9c92b71f50c/1/iNYBJR6NAjVYEMjDjla-zZgfTLI.roa
File: iNYBJR6NAjVYEMjDjla-zZgfTLI.roa (raw, json)
Hash identifier: MTQx5oRmUGBo58E23PK58ynOjbwmLHJVuKnsTTXfjyI=
Subject key identifier: 88:D6:01:25:1E:8D:02:35:58:10:C8:C3:8E:56:BE:CD:98:1F:4C:B2
Certificate issuer: /CN=93f01e9086d40d508f5842e982f253689f7fe4c9
Certificate serial: 01856286D53849EFCE9E501155DC6773492E
Authority key identifier: 93:F0:1E:90:86:D4:0D:50:8F:58:42:E9:82:F2:53:68:9F:7F:E4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k_AekIbUDVCPWELpgvJTaJ9_5Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/625a92-c2d1-4ea8-9ce8-e9c92b71f50c/1/iNYBJR6NAjVYEMjDjla-zZgfTLI.roa
Signing time: Fri 30 Dec 2022 10:14:41 +0000
ROA not before: Fri 30 Dec 2022 10:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56640
IP address blocks: 195.22.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:86:d5:38:49:ef:ce:9e:50:11:55:dc:67:73:49:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93f01e9086d40d508f5842e982f253689f7fe4c9
Validity
Not Before: Dec 30 10:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88d601251e8d02355810c8c38e56becd981f4cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:23:a1:29:71:b2:86:b1:9a:b8:19:5e:03:eb:
ba:2f:7b:65:ef:fe:b8:58:9e:3f:b5:4a:5b:e8:72:
11:92:47:d8:f8:74:71:37:9c:e3:02:f5:48:c8:bc:
44:64:c3:1f:f2:69:56:31:fb:03:bd:69:99:87:a9:
f4:dc:d9:65:a7:7e:5c:5a:3f:84:e6:5d:c0:b2:1d:
d7:11:f3:59:5e:d2:13:54:0c:1d:83:f7:94:2f:f4:
73:16:76:04:06:6c:ae:28:3f:a6:05:63:a6:60:5b:
1b:64:98:52:d2:db:e5:60:05:5b:b0:7b:45:1f:be:
fb:88:e2:98:3e:1f:3e:17:5f:f5:b9:48:9b:46:33:
83:26:b8:b3:06:a7:6a:ed:a4:f4:ec:80:cf:d8:90:
34:94:18:a2:cc:96:4e:64:82:97:de:c8:ae:0d:62:
8c:dc:9d:ea:23:29:4f:68:70:00:1c:75:a7:a3:f1:
74:60:05:19:fc:de:3e:ae:60:32:b4:09:6d:41:34:
64:eb:77:68:fd:dc:8f:c1:82:0f:52:08:b5:08:1a:
73:41:70:96:37:54:57:ae:f7:a8:14:f5:78:52:d1:
da:25:75:5b:e6:90:23:09:51:d9:42:eb:a5:f2:0f:
ab:a4:d4:ce:00:1b:7d:2b:83:ea:0f:58:f5:8d:ca:
8f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D6:01:25:1E:8D:02:35:58:10:C8:C3:8E:56:BE:CD:98:1F:4C:B2
X509v3 Authority Key Identifier:
keyid:93:F0:1E:90:86:D4:0D:50:8F:58:42:E9:82:F2:53:68:9F:7F:E4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k_AekIbUDVCPWELpgvJTaJ9_5Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/625a92-c2d1-4ea8-9ce8-e9c92b71f50c/1/iNYBJR6NAjVYEMjDjla-zZgfTLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/625a92-c2d1-4ea8-9ce8-e9c92b71f50c/1/k_AekIbUDVCPWELpgvJTaJ9_5Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.121.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:22:d3:c3:88:58:52:1d:e1:56:d6:21:50:af:99:21:ae:24:
34:bf:7d:55:cf:dd:36:03:4b:b5:07:bc:3f:98:69:7a:10:05:
b8:83:51:e0:b8:aa:d2:ac:9c:79:d0:73:2f:35:5e:1d:5f:8b:
6f:a0:d7:94:73:e1:6a:f6:3d:e1:f8:ff:20:d0:22:a6:0f:7f:
45:20:64:48:1c:ee:43:e2:aa:2f:96:0e:3d:31:fd:ac:c3:01:
12:22:0e:f6:5b:ed:16:ea:37:d9:a7:7f:59:90:96:df:f2:f7:
26:58:29:73:33:96:6d:13:3d:f8:86:bd:be:1c:55:85:33:54:
86:5e:36:67:bf:d6:58:91:29:ec:11:b9:0c:af:51:91:e1:4b:
9a:6b:e7:78:4c:bf:2a:b6:f6:d0:ff:54:dc:c2:49:10:ce:85:
59:04:28:c9:93:25:9b:c3:f3:4f:f4:11:ec:e2:79:b0:ee:5d:
40:ae:1f:72:37:20:1c:0a:6c:68:21:68:ef:e5:f3:32:b1:76:
97:e4:2c:79:b6:cc:9f:ab:53:b8:b8:8e:67:0d:6f:15:48:41:
0d:21:e5:45:82:1d:19:53:2e:cc:ca:11:09:1a:9f:ac:23:a3:
7d:f0:7b:c3:66:1c:d2:a7:05:ee:bf:6d:40:ce:fe:c5:7f:b8:
cc:f9:3a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:53 2024 by rpki-client on console-ams.rpki-client.org