Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/U2O-y3MWvmGbRjvy5ccbCo8VJHA.roa
File: U2O-y3MWvmGbRjvy5ccbCo8VJHA.roa (raw, json)
Hash identifier: H9DMBiwrm46byvJphkPvn64Y2xTaCSHobd0YP5iBbp4=
Subject key identifier: 53:63:BE:CB:73:16:BE:61:9B:46:3B:F2:E5:C7:1B:0A:8F:15:24:70
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 368F0C79
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/U2O-y3MWvmGbRjvy5ccbCo8VJHA.roa
Signing time: Sat 01 Jan 2022 01:01:03 +0000
ROA not before: Sat 01 Jan 2022 01:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8297
IP address blocks: 195.219.88.0/24 maxlen: 24
2a01:3e0:ff71::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915344505 (0x368f0c79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5363becb7316be619b463bf2e5c71b0a8f152470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:a9:3e:36:5b:27:55:85:e1:60:ce:95:0f:
6b:c0:bb:9a:3a:65:14:ad:08:83:ef:21:98:55:04:
a3:90:2e:b7:2e:fe:cc:09:04:64:af:3d:2d:d9:4e:
a7:85:73:b2:fa:69:f0:e3:37:9d:3c:7a:17:6d:7d:
f7:39:64:4b:b8:da:83:5b:56:26:5d:57:d3:64:36:
11:11:1e:00:0b:31:d8:d7:6b:0a:70:c4:7c:4a:e7:
06:87:35:6e:a2:b7:60:d5:a7:b3:00:3d:41:1e:f4:
33:c1:82:c2:e4:dc:b4:5a:4a:58:cc:a9:6d:bc:02:
4d:44:49:c5:0e:d8:e4:50:3e:5e:d7:2b:c2:65:e5:
01:e9:ce:3b:c6:5c:9d:c9:8e:5e:db:f8:67:c9:b6:
a5:83:82:57:41:59:8b:62:e4:3f:d9:87:3e:36:6c:
5e:38:14:09:ca:19:78:eb:47:37:47:d4:08:68:34:
c1:8c:86:df:e2:b4:1a:d0:19:13:27:b1:e2:8b:8f:
16:26:5a:53:ad:ad:39:09:e4:d4:6a:cf:f8:87:4e:
c1:e7:93:3e:1e:da:0f:d4:c6:d9:c7:c1:87:84:01:
93:81:22:27:42:e2:6e:a0:2b:09:1d:f9:fe:b6:e9:
b7:82:49:a1:b6:4e:15:8d:35:41:b0:4f:3c:f5:7e:
e2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:63:BE:CB:73:16:BE:61:9B:46:3B:F2:E5:C7:1B:0A:8F:15:24:70
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/U2O-y3MWvmGbRjvy5ccbCo8VJHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.219.88.0/24
IPv6:
2a01:3e0:ff71::/48
Signature Algorithm: sha256WithRSAEncryption
0a:1b:7b:1b:5f:eb:95:45:f4:c2:96:76:07:b1:a0:38:7c:c6:
b6:7d:00:d4:19:ea:f1:9e:c1:e9:48:39:4a:ed:ed:9e:63:ca:
a8:e8:ad:57:7f:82:08:5b:0b:e1:8d:c0:13:63:12:92:c7:7b:
70:9d:03:46:c1:c3:29:52:f5:60:1a:7a:02:2a:a3:49:85:d9:
82:4f:bc:3e:a0:0e:eb:07:de:f6:42:53:89:02:ac:37:0a:2c:
55:4a:76:1d:f9:24:72:f3:e2:47:38:3d:60:9f:2d:6d:db:c1:
e4:03:c8:f1:98:54:9b:b8:66:a7:f2:46:1c:56:f4:9c:80:9e:
ac:74:b7:ea:4d:91:cc:a9:e6:c4:de:73:b3:ea:18:c2:40:ad:
77:4f:ce:bd:59:ac:24:0e:bd:62:22:f6:a1:a6:b3:e7:46:e0:
14:73:dd:47:ba:25:62:6d:a3:11:e6:12:ef:5f:1b:3e:84:56:
ae:98:01:11:9f:b6:94:89:7c:84:09:d2:ce:3d:58:3d:5e:b0:
32:93:43:55:c8:68:fe:e9:ce:a4:8f:5f:4b:f8:66:b8:b6:44:
62:bb:be:08:f4:a2:b5:d6:17:93:a9:5a:b3:1a:c7:11:b8:94:
47:eb:b0:aa:de:19:c1:0f:91:13:11:25:e9:9d:dc:bc:05:d2:
06:f4:ee:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org