Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/TnqoJLnPqtNFj7D0PeltempibE8.roa
File: TnqoJLnPqtNFj7D0PeltempibE8.roa (raw, json)
Hash identifier: SKW1RDI6TutstCJVB5H7ZL9VbW/RTaioNkc1R7OKVm0=
Subject key identifier: 4E:7A:A8:24:B9:CF:AA:D3:45:8F:B0:F4:3D:E9:6D:7A:6A:62:6C:4F
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 06FFC245
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/TnqoJLnPqtNFj7D0PeltempibE8.roa
Signing time: Sat 01 Jan 2022 03:54:09 +0000
ROA not before: Sat 01 Jan 2022 03:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51559
IP address blocks: 195.211.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117424709 (0x6ffc245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e7aa824b9cfaad3458fb0f43de96d7a6a626c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:0d:bc:21:6e:78:e7:af:09:ab:96:bc:77:
83:80:7c:37:6d:73:1a:69:89:55:00:0b:a3:68:f6:
56:d1:2e:f3:0b:20:8f:6d:3f:25:23:c0:b8:02:ed:
88:0a:76:24:9c:40:ab:d0:65:58:e9:a3:03:a4:58:
7e:b7:b0:c4:3e:0b:15:e1:6c:19:43:86:41:2b:21:
66:da:5d:e6:bc:a0:26:70:a7:b2:30:61:52:c2:97:
da:9b:66:7a:3f:dd:23:74:70:1d:87:69:c2:54:20:
2d:af:ee:69:c9:da:32:d1:bb:06:ab:04:50:06:4a:
3b:fd:30:9a:02:c9:e6:8d:6f:82:c7:e5:9d:a6:bc:
b7:b0:8d:87:00:fb:63:50:fc:47:00:86:b1:7a:13:
f3:f3:5e:38:0d:44:3a:61:90:4a:a5:fd:20:bf:da:
53:7c:fd:ad:0e:0f:8e:c1:5b:04:66:47:9d:b8:47:
8d:6b:e6:c5:51:11:bd:41:2a:3b:5d:15:2e:48:f9:
28:c1:43:4e:db:5f:1f:c4:d3:a8:4f:9a:ca:a1:6e:
cf:ba:e4:c4:48:a1:09:d8:28:05:b3:1c:a4:55:0d:
28:37:3c:94:3e:d4:ed:c1:ba:bf:0b:99:19:b3:96:
7a:63:17:6e:df:5c:fe:69:83:36:ca:22:e4:28:d8:
e6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7A:A8:24:B9:CF:AA:D3:45:8F:B0:F4:3D:E9:6D:7A:6A:62:6C:4F
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/TnqoJLnPqtNFj7D0PeltempibE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.191.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b6:7b:2d:30:51:4b:72:7e:36:01:0d:89:50:4e:1c:7c:b8:
28:fd:d9:8e:75:ec:75:b8:14:4d:17:87:62:c0:8c:45:c6:e5:
b8:ec:ee:91:21:52:bd:c4:e7:e8:04:58:c3:c2:80:9d:f5:0d:
67:66:e9:a2:c9:ad:16:cf:d8:6d:c1:5d:c5:4b:6f:6b:d8:c5:
56:a5:a6:97:02:b4:d8:8b:9a:f1:fb:a1:98:0b:3a:ee:b0:4a:
76:58:8c:1c:7b:36:d7:14:fa:0a:8f:b1:7c:e6:1b:bd:8a:67:
fd:b8:1f:c4:0f:9d:2e:d3:65:20:3f:8c:3f:d2:35:23:0f:03:
cc:4f:10:a9:7b:72:51:ab:01:21:03:d4:fa:e3:6b:5b:3e:e1:
ad:12:21:73:9b:c6:8a:d8:59:68:43:62:0f:74:8f:20:1b:f6:
00:62:3f:6d:b4:d7:f2:ab:02:0c:be:6a:f8:ae:fb:44:db:91:
51:95:3a:af:18:ec:27:63:bf:4f:50:ab:ff:d3:d7:b9:33:c3:
3f:ac:0f:c8:a2:29:bd:74:86:b8:08:26:6a:25:9d:93:34:d6:
f2:fa:bd:5b:28:2d:33:7f:86:93:f9:3f:91:29:f6:34:d9:8e:
d8:ec:7b:61:07:59:8d:90:b4:10:74:c9:c1:38:08:23:05:97:
67:bd:57:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org