Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/SEelId7WS1aEksDudGoLmAE1u-E.roa
File: SEelId7WS1aEksDudGoLmAE1u-E.roa (raw, json)
Hash identifier: ay1sMGoKsfd0vtZGj7pABvfsHtQsiNjetvMul55M8vE=
Subject key identifier: 48:47:A5:21:DE:D6:4B:56:84:92:C0:EE:74:6A:0B:98:01:35:BB:E1
Certificate issuer: /CN=86f4129af869f6f5c85a7388808aad0ac0ba9c4f
Certificate serial: 0104DB20
Authority key identifier: 86:F4:12:9A:F8:69:F6:F5:C8:5A:73:88:80:8A:AD:0A:C0:BA:9C:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvQSmvhp9vXIWnOIgIqtCsC6nE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/SEelId7WS1aEksDudGoLmAE1u-E.roa
Signing time: Sat 01 Jan 2022 04:02:42 +0000
ROA not before: Sat 01 Jan 2022 04:02:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35799
IP address blocks: 195.10.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17095456 (0x104db20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f4129af869f6f5c85a7388808aad0ac0ba9c4f
Validity
Not Before: Jan 1 04:02:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4847a521ded64b568492c0ee746a0b980135bbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c1:0d:95:3e:04:a3:c4:57:a8:ae:e4:4a:ba:
92:b8:3f:3b:36:54:f2:a9:ab:fa:32:c9:49:d2:0a:
9a:f5:6f:12:a6:35:e0:19:b9:c7:40:7b:a2:5e:79:
89:04:d9:61:8f:84:23:f9:3b:5e:94:2b:8f:d2:99:
d9:9f:3b:1e:9c:83:27:fd:e1:7f:40:eb:77:a5:bc:
3c:32:01:10:f8:0c:58:de:9f:00:f3:6f:d3:8e:fd:
80:9a:0e:3f:d9:71:78:83:90:2e:df:5a:8a:f7:e6:
c6:ca:25:6d:39:e1:37:69:eb:0f:05:34:6a:3e:41:
af:22:ef:8f:a6:e0:87:4a:df:c4:c2:64:f6:e0:d2:
8f:c8:af:65:69:3e:f5:bd:18:94:c8:27:b4:20:b0:
fe:58:f8:4b:ee:10:d9:45:ae:9f:16:be:ab:59:92:
44:a8:cc:21:b6:ba:9e:c3:ad:c8:e1:9c:d7:b9:85:
08:92:74:27:17:a7:cd:3c:cc:44:fc:c4:36:36:2b:
7a:85:3e:80:e7:76:b5:92:d4:e2:d6:1c:3b:c2:5e:
19:27:6b:bc:d4:99:53:46:d0:cc:ed:5c:1a:a4:3c:
99:bc:88:53:3a:fa:80:bb:45:c7:0c:ec:8b:df:e6:
26:35:d0:f5:71:ac:15:f2:c8:2e:72:3d:ee:30:dd:
6d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:47:A5:21:DE:D6:4B:56:84:92:C0:EE:74:6A:0B:98:01:35:BB:E1
X509v3 Authority Key Identifier:
keyid:86:F4:12:9A:F8:69:F6:F5:C8:5A:73:88:80:8A:AD:0A:C0:BA:9C:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvQSmvhp9vXIWnOIgIqtCsC6nE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/SEelId7WS1aEksDudGoLmAE1u-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/hvQSmvhp9vXIWnOIgIqtCsC6nE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.199.0/24
Signature Algorithm: sha256WithRSAEncryption
25:8d:e4:2d:50:73:1f:71:b1:c1:96:ff:7d:d4:60:6b:2c:31:
01:40:13:80:41:3d:79:06:25:c4:78:51:02:79:eb:60:68:17:
cd:c3:16:dc:5a:40:fe:cb:2e:04:03:06:f0:09:00:12:39:aa:
b4:ea:01:21:d6:39:fc:23:76:2a:cf:60:97:11:6e:f3:eb:a0:
1a:8a:97:b8:fd:ec:55:00:89:2c:f9:e9:04:05:9f:7d:d4:9e:
a0:1d:ac:fd:6e:6b:43:a0:31:e8:69:4d:25:34:0c:33:af:5f:
78:96:eb:96:32:5d:2d:ce:10:19:87:6c:53:03:47:b8:30:5a:
83:40:e6:e0:eb:53:7c:b9:3e:40:91:0c:ab:53:2b:16:79:0b:
fb:e8:92:8e:cf:8e:af:73:68:e9:45:d4:74:55:9c:c4:9a:e5:
55:a8:6d:82:d2:8e:6a:e2:2b:51:42:78:fa:23:0c:f3:ac:be:
8f:ed:9d:94:e1:2f:0f:ac:58:31:38:2a:d3:c7:b3:10:e8:fd:
23:f4:bd:d1:84:6e:72:98:b4:81:c9:16:3b:a0:25:0c:54:81:
36:fe:3b:06:17:b9:e5:15:44:ac:e2:d2:6a:cb:71:2d:61:5e:
c3:80:63:b8:29:22:2b:85:ca:b4:2d:f6:85:d1:cb:69:2c:03:
a5:a8:7f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org