Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/sVH4fBGecqQPpRplpdBFqmuKT5A.roa
File: sVH4fBGecqQPpRplpdBFqmuKT5A.roa (raw, json)
Hash identifier: Mzj7QtGDZfss6welSnRgmPyszQ7mZK8sdMSLdTusKtM=
Subject key identifier: B1:51:F8:7C:11:9E:72:A4:0F:A5:1A:65:A5:D0:45:AA:6B:8A:4F:90
Certificate issuer: /CN=52056867e4d2885e99b549ed6fb786330adf8f44
Certificate serial: 06BCC3CB
Authority key identifier: 52:05:68:67:E4:D2:88:5E:99:B5:49:ED:6F:B7:86:33:0A:DF:8F:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/sVH4fBGecqQPpRplpdBFqmuKT5A.roa
Signing time: Sat 01 Jan 2022 12:02:28 +0000
ROA not before: Sat 01 Jan 2022 12:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 195.93.178.0/23 maxlen: 24
178.239.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113034187 (0x6bcc3cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52056867e4d2885e99b549ed6fb786330adf8f44
Validity
Not Before: Jan 1 12:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b151f87c119e72a40fa51a65a5d045aa6b8a4f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:da:42:2c:e6:4f:e7:66:f2:1d:89:fa:35:
81:59:2d:b0:64:f3:8f:ce:15:1c:47:7e:c9:63:8f:
63:3e:c0:b5:79:3d:92:59:0d:ed:d9:97:bf:5f:8e:
d0:e6:2e:5f:68:d8:bf:1c:ab:9c:ce:bc:a0:48:6c:
83:f1:87:16:45:47:16:ce:31:f7:ab:31:ad:ef:eb:
04:e1:f0:ea:69:a9:0f:96:49:87:27:64:1a:14:cc:
c3:ad:6a:cc:f1:14:ae:df:33:89:32:6e:ab:26:a5:
23:aa:d1:12:bb:68:6a:63:8c:f5:cb:b4:7f:59:51:
56:01:bd:35:50:5e:34:22:37:9d:46:35:ac:2a:f9:
1c:d1:6d:3c:0d:a7:e2:ff:d1:4f:5f:eb:61:85:26:
c8:9c:fb:8e:68:56:f1:a0:43:c5:32:99:83:14:60:
5c:e2:7c:cf:27:88:de:e6:23:2f:2e:0a:61:25:31:
07:d4:eb:0d:16:86:a7:f5:2b:73:98:0b:73:de:24:
bb:98:8c:35:24:58:a5:38:89:13:ab:36:fb:9b:63:
5c:96:35:dc:34:fd:70:29:b4:b7:38:13:60:0c:44:
bf:d9:9d:20:91:d2:32:6b:a5:0d:2c:cf:fd:29:10:
69:22:53:8e:9c:73:89:4d:7c:fe:ba:31:d3:22:2a:
b7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:51:F8:7C:11:9E:72:A4:0F:A5:1A:65:A5:D0:45:AA:6B:8A:4F:90
X509v3 Authority Key Identifier:
keyid:52:05:68:67:E4:D2:88:5E:99:B5:49:ED:6F:B7:86:33:0A:DF:8F:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/sVH4fBGecqQPpRplpdBFqmuKT5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.128.0/20
195.93.178.0/23
Signature Algorithm: sha256WithRSAEncryption
58:93:45:48:92:a2:46:25:e8:6c:48:ff:de:75:70:19:12:5e:
33:c9:85:b8:44:f9:e4:59:ca:a1:80:db:3a:33:1e:e0:ec:6d:
42:65:07:10:d4:7c:93:60:64:47:16:ae:ac:4b:3b:a4:d0:98:
93:75:7e:49:2c:00:9e:72:76:da:66:5a:08:57:1a:b8:e8:ae:
0d:20:7f:d4:fd:af:65:74:fd:a0:1c:11:40:e2:55:23:37:b0:
d8:55:96:60:8e:b4:a4:db:60:6a:15:82:a7:df:82:e5:39:97:
09:1c:8f:b6:b4:7e:4a:75:89:1e:50:47:08:c8:5d:a1:50:43:
c9:f4:3d:b1:22:28:25:f5:5e:de:c6:b7:ca:44:c0:33:bc:47:
1d:d9:9b:66:4e:35:2d:ce:34:58:82:cd:b6:50:68:f3:c2:fa:
2a:47:93:6a:27:44:8e:89:91:a0:25:73:64:1e:01:76:09:b7:
29:f6:27:f1:80:25:d7:7b:2f:09:24:ba:15:1d:04:39:04:c9:
1a:3f:3d:b8:f7:05:d9:67:da:f7:e2:f5:d9:c2:e0:a4:b5:41:
bc:6c:80:d9:22:ea:84:fa:ad:e8:9c:2d:bf:b2:44:a7:99:ae:
97:a3:cc:f4:0e:c9:ba:fb:ec:21:ed:22:d5:b3:c3:89:ce:36:
5e:33:cd:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:15 2024 by rpki-client on console-ams.rpki-client.org