Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/eyKRSNEJzOk4zAPyMF_vcAcigg4.roa
File: eyKRSNEJzOk4zAPyMF_vcAcigg4.roa (raw, json)
Hash identifier: OIIaHF6plahQElGMLkOcQNIPgLzWPgw67vIL71mgO7M=
Subject key identifier: 7B:22:91:48:D1:09:CC:E9:38:CC:03:F2:30:5F:EF:70:07:22:82:0E
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 181C653B
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/eyKRSNEJzOk4zAPyMF_vcAcigg4.roa
Signing time: Sat 01 Jan 2022 02:54:47 +0000
ROA not before: Sat 01 Jan 2022 02:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8455
IP address blocks: 195.248.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404514107 (0x181c653b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Jan 1 02:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b229148d109cce938cc03f2305fef700722820e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:99:53:f5:e9:a9:40:2a:74:87:ad:59:97:0c:
cc:07:d6:3a:bf:0b:7c:fc:ab:c2:b0:7a:ce:3a:46:
25:6d:43:8c:46:57:a3:69:23:19:dd:c0:1d:bd:cc:
8c:c7:f4:d3:05:44:17:6f:9a:23:62:4f:64:b1:24:
00:a4:16:55:0e:c3:c6:a0:35:5f:d3:b6:7b:87:a1:
89:e8:86:cd:64:33:4f:02:b8:29:b5:1f:e6:ce:df:
51:89:f7:92:9c:ac:17:4d:3a:e8:f4:52:cc:95:6b:
8e:bc:0f:fb:40:a2:32:4f:42:0a:c5:c1:fa:65:4d:
b1:3b:a6:32:40:d7:65:53:a7:c1:c2:21:8b:12:91:
19:1a:0f:44:8d:81:a5:33:89:24:f0:06:44:cb:d0:
f4:82:3a:d6:b0:8f:17:39:db:67:ef:85:1c:03:aa:
f7:aa:73:e2:78:51:80:b9:cb:c2:6d:9c:6b:bb:5f:
47:d3:87:c1:cd:8a:65:c4:c1:5c:65:4a:52:6a:6e:
1a:21:57:a6:58:2a:83:62:ab:dc:d8:a4:79:07:39:
a3:3c:32:84:2a:89:86:d8:fd:4f:42:68:2f:a6:6f:
d7:86:f4:a3:98:9f:12:b6:28:60:87:7b:f4:42:8c:
ab:68:58:2a:9a:79:b0:de:d5:30:f2:b0:7d:1f:da:
15:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:22:91:48:D1:09:CC:E9:38:CC:03:F2:30:5F:EF:70:07:22:82:0E
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/eyKRSNEJzOk4zAPyMF_vcAcigg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.87.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:dd:7b:67:7d:21:b0:74:6a:44:21:0d:e3:b5:f8:6d:a5:72:
0a:6f:5f:e4:24:14:66:3b:ea:a0:72:4b:f4:39:34:13:7e:6d:
b7:7e:72:d5:26:f7:d4:85:94:31:a0:a0:83:3b:d6:12:cd:66:
26:f5:35:51:0f:b5:b3:80:77:98:9b:e9:1b:65:af:1d:06:33:
28:a0:33:2a:95:9d:ee:d0:e8:87:21:db:3f:19:45:db:47:8e:
cd:88:a1:68:5e:14:cf:c7:4e:cd:1f:dc:8a:92:ff:7e:cc:5f:
e8:ef:c2:1d:78:6b:da:7f:d3:5c:88:70:9a:40:fe:e8:38:6c:
f4:46:67:ad:0b:1b:13:a0:bd:46:51:f7:fc:b3:3a:54:9c:96:
a1:b3:93:7f:89:9e:7f:5b:90:f0:47:e3:fb:16:50:84:63:37:
18:b7:ea:f2:96:8b:88:2e:7b:f4:1e:9a:2a:14:6b:19:12:7d:
3c:4e:a5:3b:1d:b0:56:f2:e9:e4:e7:87:16:90:19:22:69:dc:
4f:23:52:b4:ae:25:5a:70:1a:68:e0:d5:c6:66:15:a2:ff:92:
28:ed:86:1b:7d:48:c0:b7:f4:97:20:34:d7:99:a3:0f:5d:77:
f7:55:10:e7:81:cf:fc:d5:87:d1:58:18:06:9d:a1:06:fd:c9:
af:79:41:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:04 2024 by rpki-client on console-ams.rpki-client.org