Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uOW5vfqgf5zviYb9atm2crjQ2Ls.roa
File: uOW5vfqgf5zviYb9atm2crjQ2Ls.roa (raw, json)
Hash identifier: PIEUgXthU9lLM3UDQvdIf2KkVAKuJ9eUCFhfRRec3fE=
Subject key identifier: B8:E5:B9:BD:FA:A0:7F:9C:EF:89:86:FD:6A:D9:B6:72:B8:D0:D8:BB
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CB965E7
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uOW5vfqgf5zviYb9atm2crjQ2Ls.roa
Signing time: Sat 01 Jan 2022 04:59:46 +0000
ROA not before: Sat 01 Jan 2022 04:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205419
IP address blocks: 195.167.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 750347751 (0x2cb965e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8e5b9bdfaa07f9cef8986fd6ad9b672b8d0d8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:c2:f4:00:bc:0d:f1:ee:6b:b5:3b:c2:aa:
e0:b4:80:b0:44:e6:b9:27:eb:59:12:20:af:79:98:
f7:39:ae:12:48:ff:a8:ac:57:f2:5d:5c:a0:37:8b:
0b:68:55:8b:ec:6a:d4:8d:c7:a3:c6:5c:ed:3e:45:
30:65:6f:c8:19:d7:df:b1:22:90:5f:8a:56:04:57:
fa:3c:88:4e:63:a9:ad:56:4d:91:7c:40:e2:57:c4:
da:60:aa:ce:2a:80:5d:a3:6b:35:6c:66:c4:da:a0:
3c:33:fb:ea:1d:8d:96:27:f1:e4:b6:1c:f1:84:ba:
2e:0b:3f:ba:fc:6b:9f:67:40:7b:6c:82:8b:9f:14:
74:f4:ed:92:75:32:3b:9a:28:70:53:96:c2:e2:b2:
21:e2:07:7b:a8:26:92:40:5b:d5:b2:40:99:2f:16:
e5:61:e2:0f:e2:02:67:eb:07:a9:6b:ac:ed:13:8a:
ab:fc:a9:d2:a8:eb:e9:3d:a5:04:0b:82:a7:b1:84:
ed:67:a4:8d:b3:98:c9:53:81:e1:25:4d:1d:bd:19:
12:ec:55:f8:7a:8e:f4:b8:c6:42:bb:52:84:95:ca:
df:6b:a3:e3:ef:df:3c:11:2a:0e:2a:17:37:78:a2:
d9:e9:74:6b:e3:c5:42:1e:1f:5b:ab:d5:d7:32:22:
52:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:B9:BD:FA:A0:7F:9C:EF:89:86:FD:6A:D9:B6:72:B8:D0:D8:BB
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uOW5vfqgf5zviYb9atm2crjQ2Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.167.153.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:21:14:26:80:24:09:9d:9f:ab:01:86:8d:0b:20:11:2c:51:
d0:c3:03:47:1b:0e:15:1c:da:0d:9c:42:91:3c:b2:19:4b:d1:
56:15:80:8e:ce:28:f4:95:e1:1f:2b:6a:2e:54:9c:b9:bb:ab:
39:5e:90:35:47:1c:48:68:db:2c:c9:59:f0:75:a5:72:bb:12:
96:0e:6a:79:a5:fb:c9:81:96:2a:ad:64:62:ba:0d:ae:ea:b7:
2e:3e:ea:07:44:fe:94:d7:a9:fb:d6:4e:d3:cc:bb:9b:79:c5:
fa:f7:31:e1:c4:f8:d7:bd:24:ef:e8:11:d0:4c:13:37:20:2c:
b6:67:cb:40:d0:9f:1b:cf:89:d8:98:43:e5:f7:e3:4a:0b:c7:
6c:a3:83:15:72:ee:e9:9b:6d:28:a7:35:fa:a2:9f:b7:8b:73:
b4:ad:ec:a2:34:56:40:c6:bc:44:4e:10:08:b4:3b:10:b1:a6:
73:b3:d2:1f:c5:9b:a4:65:eb:f9:79:7f:27:0f:44:15:84:37:
56:39:78:59:95:30:bd:89:20:f1:5b:94:40:cf:b9:25:3c:6d:
46:c5:b6:c9:9c:bc:53:45:ce:56:3a:ca:59:ac:75:d4:01:11:
09:99:46:44:32:d5:3c:92:dd:7d:bc:7c:f3:fe:82:dc:f8:4a:
48:63:79:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org