Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/eeb26f-6790-42ce-8ccc-54a25e2cdaa9/1/siW-oPmRLzJvbWGL-Yrjb5SrwV0.roa
File: siW-oPmRLzJvbWGL-Yrjb5SrwV0.roa (raw, json)
Hash identifier: M4qXdulEIxHEJfrhtpAAOVk8gi2LhUZ8Na5c7ICZ7JY=
Subject key identifier: B2:25:BE:A0:F9:91:2F:32:6F:6D:61:8B:F9:8A:E3:6F:94:AB:C1:5D
Certificate issuer: /CN=13f8496b79d1c04d082af83f1be6a5eab0c66089
Certificate serial: 01849A38AC4EBFEBA3A6D8115F1DA10504DE
Authority key identifier: 13:F8:49:6B:79:D1:C0:4D:08:2A:F8:3F:1B:E6:A5:EA:B0:C6:60:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_hJa3nRwE0IKvg_G-al6rDGYIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/eeb26f-6790-42ce-8ccc-54a25e2cdaa9/1/siW-oPmRLzJvbWGL-Yrjb5SrwV0.roa
Signing time: Mon 21 Nov 2022 12:45:16 +0000
ROA not before: Mon 21 Nov 2022 12:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34625
IP address blocks: 195.242.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:38:ac:4e:bf:eb:a3:a6:d8:11:5f:1d:a1:05:04:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13f8496b79d1c04d082af83f1be6a5eab0c66089
Validity
Not Before: Nov 21 12:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b225bea0f9912f326f6d618bf98ae36f94abc15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0d:d3:12:f7:94:30:33:9f:60:62:86:8c:fa:
84:9f:87:0b:9f:97:05:e7:cf:28:67:a0:b1:97:00:
7d:f1:72:8d:9c:9b:6c:94:58:2d:27:6f:93:a6:34:
f4:c9:56:ca:d7:11:f8:6e:16:2f:74:5d:42:1a:3b:
ce:a6:2a:c1:9c:c7:84:d0:7f:06:d7:03:0c:43:86:
e0:be:d5:a5:9c:6e:4e:80:b5:61:59:5c:d1:04:d8:
ab:26:82:ee:1f:d8:11:1f:53:44:ce:30:aa:09:31:
fd:32:01:8e:73:22:15:14:23:91:42:97:2f:26:b4:
8e:c7:ae:fe:07:89:b8:3d:b8:c7:1c:c4:eb:80:8b:
2d:51:c0:71:81:19:8b:90:17:7e:4a:fd:d4:70:c3:
1f:57:9e:c5:e8:f7:69:cb:e0:a8:f3:3f:e7:98:67:
b8:90:f9:c4:9d:96:e4:b4:f1:4e:9f:12:7d:23:0c:
11:b1:23:a1:9b:a4:56:f0:61:9e:cf:3b:d7:e4:1d:
20:0d:0b:0d:93:17:7e:ae:25:e4:48:3b:cd:bc:f2:
8d:48:af:35:71:be:bb:fe:02:1a:e3:66:b7:ba:8c:
6e:e8:58:bd:26:78:d6:31:1f:c0:c4:29:b0:77:30:
d4:bb:b2:2e:7f:b9:06:22:68:b6:c0:73:21:ce:6b:
7e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:25:BE:A0:F9:91:2F:32:6F:6D:61:8B:F9:8A:E3:6F:94:AB:C1:5D
X509v3 Authority Key Identifier:
keyid:13:F8:49:6B:79:D1:C0:4D:08:2A:F8:3F:1B:E6:A5:EA:B0:C6:60:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_hJa3nRwE0IKvg_G-al6rDGYIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/eeb26f-6790-42ce-8ccc-54a25e2cdaa9/1/siW-oPmRLzJvbWGL-Yrjb5SrwV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/eeb26f-6790-42ce-8ccc-54a25e2cdaa9/1/E_hJa3nRwE0IKvg_G-al6rDGYIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.236.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a2:59:94:49:03:86:2c:85:16:c7:1e:0b:3e:35:5b:81:4f:
83:da:b7:24:a1:37:62:81:ca:e5:aa:44:fd:12:c9:9b:9e:dd:
52:da:5b:df:9a:1e:96:a5:d2:35:6d:49:b7:f6:26:73:87:e0:
23:11:6c:7b:bb:77:2c:f3:87:ed:d0:7d:7c:67:07:d1:26:7b:
40:af:c6:8c:16:fb:40:e0:69:13:5c:fb:b7:33:66:76:05:4c:
ac:ed:d8:05:74:fc:e9:71:41:10:b6:11:ae:28:ec:ab:d2:1b:
e9:19:79:3d:ca:93:91:10:1a:d7:05:25:52:90:4a:38:08:d0:
ba:3c:91:29:d1:d9:2f:8f:c2:bd:9c:ef:f5:b9:32:b4:1f:fd:
1c:bb:f7:22:e6:df:c2:ed:f0:e7:ed:39:1d:28:c2:78:4e:29:
d0:e1:06:9c:12:30:fc:96:92:f8:f2:7f:3a:32:f2:1d:7f:45:
23:27:41:d2:6a:a7:08:c6:8e:ac:6b:97:91:f3:93:4c:0f:14:
f4:f7:d2:ba:cd:44:b0:d7:2e:c0:26:27:2f:30:a2:88:ad:71:
ff:e2:68:4c:51:57:bd:9a:4c:1b:1d:c6:dc:e8:78:e0:84:64:
e7:9f:e3:1b:f6:76:a6:43:79:99:19:a9:00:05:4d:39:ed:97:
76:5b:df:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:55 2024 by rpki-client on console-fra.rpki-client.org