Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/7Q_WADBt9FLDBM6-RYG8DNvv0tI.roa
File: 7Q_WADBt9FLDBM6-RYG8DNvv0tI.roa (raw, json)
Hash identifier: iHOua7A3aeVefLSCfW8yv5IHA2yq6FEvZXVL4ntCqt0=
Subject key identifier: ED:0F:D6:00:30:6D:F4:52:C3:04:CE:BE:45:81:BC:0C:DB:EF:D2:D2
Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf
Certificate serial: 0ADB370B
Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/7Q_WADBt9FLDBM6-RYG8DNvv0tI.roa
Signing time: Sat 01 Jan 2022 11:01:57 +0000
ROA not before: Sat 01 Jan 2022 11:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51540
IP address blocks: 195.42.241.0/24 maxlen: 24
195.42.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182138635 (0xadb370b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf
Validity
Not Before: Jan 1 11:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed0fd600306df452c304cebe4581bc0cdbefd2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:1b:2b:56:f9:ef:d7:91:e3:34:57:fe:6d:
92:28:43:81:61:c2:b1:b9:ff:7b:37:03:1a:99:27:
41:5e:45:ee:5d:c5:99:ff:21:08:49:b2:a3:69:14:
45:74:2a:17:c7:ce:62:98:cb:ef:df:b1:e2:df:35:
de:9d:17:8c:40:cd:3e:ba:ac:68:d0:82:10:89:54:
df:56:2f:62:c2:2f:50:1e:f8:9b:12:37:34:c4:25:
1c:6f:98:e0:6c:07:ab:b4:b1:c2:9a:61:d3:ef:94:
60:fd:97:01:f2:c1:89:ae:67:f3:a3:0e:9f:05:a1:
d2:b7:c4:0a:31:52:a2:43:c2:66:98:8d:58:ec:c1:
74:c7:95:6a:3a:24:16:1b:40:bb:af:1f:58:15:c5:
fa:b7:c1:51:fd:59:23:54:a3:eb:46:bb:ff:a1:80:
8a:df:c5:78:77:bb:23:66:60:ac:e2:87:3e:65:6f:
84:03:5c:ed:2e:88:bc:76:f3:b6:f1:3b:04:12:de:
1b:af:82:b2:67:97:fe:e1:9c:27:1d:32:70:b5:f9:
66:0a:1c:26:fb:f8:0b:b5:23:af:95:29:d5:79:fe:
44:94:98:28:9e:aa:af:49:a1:e0:63:38:04:49:ad:
de:ab:d2:a9:a0:b7:7d:5f:5f:98:d2:cd:15:04:b2:
1c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0F:D6:00:30:6D:F4:52:C3:04:CE:BE:45:81:BC:0C:DB:EF:D2:D2
X509v3 Authority Key Identifier:
keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/7Q_WADBt9FLDBM6-RYG8DNvv0tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.241.0-195.42.242.255
Signature Algorithm: sha256WithRSAEncryption
38:c9:83:68:2f:80:e0:18:ba:b3:48:6c:8e:b7:8a:1a:ab:d0:
0a:5e:ed:ca:6b:7f:0a:98:01:5a:59:57:53:22:dc:5c:c2:12:
bb:bf:0e:f8:24:32:41:6b:3f:9e:f2:cc:18:6e:88:ec:53:27:
43:1b:29:41:42:cd:bf:38:ec:df:96:23:c0:6d:16:9a:8f:52:
22:99:34:6c:2b:ac:6f:da:ff:39:5c:50:f3:af:10:db:55:b1:
44:f0:21:d8:c6:b9:1b:dc:86:9a:57:e6:c7:fc:11:c0:3b:20:
b7:e7:be:b3:8d:b9:56:d6:b5:52:98:d0:8b:b9:fc:a4:05:a3:
21:77:d2:f0:97:0f:b3:64:b3:87:98:98:31:cd:f8:54:79:d2:
68:93:e0:16:d6:8d:2b:9f:e9:d8:c9:8c:9d:ff:b5:70:d4:8c:
43:11:ac:76:a2:5b:c8:9d:ee:92:df:72:ba:95:66:ff:47:1a:
3d:b6:2b:76:f5:dc:9b:9f:55:2d:a8:3a:d8:85:8a:74:b4:3d:
81:cf:0a:61:40:50:8f:45:8e:b4:7c:08:15:62:6f:94:cb:6a:
71:41:a6:11:c7:0c:8f:e2:ec:48:10:58:6d:f8:21:32:99:0c:
f4:f0:58:d4:f3:01:d1:a0:76:8d:9f:84:0f:6b:6d:38:1c:3f:
c3:4c:47:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:32 2024 by rpki-client on console-ams.rpki-client.org