Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/J8t1TKG0VPEWHVuddqGPUshNa0g.roa
File: J8t1TKG0VPEWHVuddqGPUshNa0g.roa (raw, json)
Hash identifier: +3COl6PxDWqlFQUG7lr1DbpZVb4ZFiV5j4SENP0zQV8=
Subject key identifier: 27:CB:75:4C:A1:B4:54:F1:16:1D:5B:9D:76:A1:8F:52:C8:4D:6B:48
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 047D0D42
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/J8t1TKG0VPEWHVuddqGPUshNa0g.roa
Signing time: Wed 02 Mar 2022 10:29:13 +0000
ROA not before: Wed 02 Mar 2022 10:29:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199794
IP address blocks: 195.187.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75304258 (0x47d0d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27cb754ca1b454f1161d5b9d76a18f52c84d6b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:0a:d1:64:df:ff:4d:1b:7c:a9:7b:50:f1:
be:04:ed:9a:72:e2:8e:b9:a5:e5:f0:42:79:9b:1e:
de:4c:f3:ef:14:0d:83:cf:60:78:1b:a2:39:85:b0:
01:f2:02:e8:55:59:50:f2:01:7f:d6:c0:28:61:e7:
c9:22:45:e4:9f:ed:fc:7c:15:ea:ff:16:74:a6:3b:
ba:6b:ad:e7:99:7e:bd:7f:7a:af:17:a0:79:4f:b7:
21:23:91:ef:6b:f0:70:d0:06:96:5c:65:2c:e5:66:
5b:1c:bf:d0:3e:d8:1d:b0:1c:3b:6f:a4:77:b3:c5:
90:a4:de:51:69:d2:d8:69:9b:e1:bd:49:92:30:92:
19:be:57:4e:93:57:df:c9:c2:3e:8c:d6:66:ea:ff:
b1:4a:75:35:93:02:d3:97:09:2d:c0:40:81:36:9a:
c6:6a:94:33:61:08:ed:51:e4:6d:ea:6f:1b:74:cf:
50:34:5b:11:46:be:57:f0:cd:5a:77:cc:e3:65:bb:
ac:bc:54:97:5c:8b:c5:d7:ad:61:9b:0e:bc:65:b8:
c7:e3:6f:3b:50:13:f4:a3:e1:22:fb:67:05:4c:96:
b9:2f:1c:49:22:d5:12:9e:c8:c3:7c:33:9f:81:08:
1a:76:7b:7b:21:6b:f4:c3:f0:ac:23:28:e3:04:04:
57:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CB:75:4C:A1:B4:54:F1:16:1D:5B:9D:76:A1:8F:52:C8:4D:6B:48
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/J8t1TKG0VPEWHVuddqGPUshNa0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.159.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c9:e2:bd:a1:9f:69:1f:94:4c:8f:25:ee:eb:ce:eb:6e:d2:
01:99:da:8b:1d:30:74:30:24:18:20:17:fd:bc:90:86:2e:39:
5b:0b:a0:54:03:61:78:8a:c3:66:e2:8c:50:84:7e:6f:42:56:
58:98:e7:28:27:85:25:2a:37:67:7e:27:ff:4e:df:ef:18:ff:
65:e3:cc:a9:23:f0:db:2c:35:4b:d9:f1:b4:e2:63:92:aa:5b:
62:cb:75:b8:3d:89:61:f5:b6:cb:da:12:34:3d:89:1b:92:9f:
91:05:6a:8b:1d:12:b3:4e:92:fc:8f:5a:e6:19:61:37:1a:c7:
2f:31:4f:4d:a5:27:f9:04:79:f6:2a:01:ad:eb:c3:94:9c:5a:
59:27:9d:e3:d4:40:9a:8d:71:6d:ba:40:da:f4:5e:8f:28:d3:
90:01:45:5f:ec:75:61:3b:71:c5:64:dd:7f:5d:0a:55:b9:44:
90:30:dc:99:12:5c:49:ea:9d:a7:67:1f:b7:3c:b1:bf:dc:87:
c1:dd:5c:08:ed:aa:5d:a9:fe:f3:5c:e2:65:36:47:7c:42:2b:
f9:b4:1c:a8:ab:ff:cd:75:55:4c:f1:38:1e:40:1d:ba:6f:a3:
a4:a0:5b:f3:f8:1b:de:31:a9:5b:8b:4c:d8:20:71:3f:4f:a2:
73:d1:48:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org