Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/pUlZlrZkkveQDBia8Nk3vIiwgCk.roa
File: pUlZlrZkkveQDBia8Nk3vIiwgCk.roa (raw, json)
Hash identifier: cqGyy6dAuBkQDfxN55DbeGzz4uGwu13i90BDJC33uqc=
Subject key identifier: A5:49:59:96:B6:64:92:F7:90:0C:18:9A:F0:D9:37:BC:88:B0:80:29
Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf
Certificate serial: 0AD950AC
Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/pUlZlrZkkveQDBia8Nk3vIiwgCk.roa
Signing time: Sat 01 Jan 2022 11:01:56 +0000
ROA not before: Sat 01 Jan 2022 11:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 195.42.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182014124 (0xad950ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf
Validity
Not Before: Jan 1 11:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5495996b66492f7900c189af0d937bc88b08029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:9a:37:5b:0d:b9:6f:f3:86:0c:70:a1:96:
c2:ba:4e:24:ca:bc:0d:95:ec:08:cb:67:aa:89:c0:
17:31:90:34:eb:1b:6e:5b:09:52:df:b4:46:c1:dc:
ba:b2:c2:05:ab:a4:a6:6a:d3:f5:3d:74:09:f4:c5:
ae:f7:23:59:9e:e1:33:c2:14:c8:f7:0e:c4:a2:27:
21:3b:f9:8e:1d:04:36:7e:7c:10:d1:67:1b:5a:ba:
3f:c1:67:91:e9:58:53:69:08:df:91:10:72:0d:ce:
fc:b5:34:6d:91:c3:07:e3:37:51:8b:0d:03:ff:f6:
0d:b6:f2:12:75:92:30:23:aa:e5:c7:b4:16:17:32:
89:0b:fe:23:60:b8:16:2d:1d:bf:7d:51:6c:2f:15:
bf:d8:c6:de:44:7f:cf:ad:9f:74:68:29:43:f7:a4:
60:6e:b8:df:da:44:d4:b8:c4:c0:39:3f:be:29:cf:
b4:e2:a2:d0:c2:f8:5a:01:cf:b2:04:6e:48:8b:90:
5c:22:c1:f0:76:a1:51:66:c9:53:a4:1a:28:18:df:
40:3f:29:95:31:b6:77:98:4a:78:83:a7:02:bd:2f:
2a:a4:f3:d0:84:48:24:63:c9:dd:06:0c:7d:a5:7a:
49:41:ff:00:aa:52:a3:71:25:b1:ca:c9:ef:1c:9c:
cb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:49:59:96:B6:64:92:F7:90:0C:18:9A:F0:D9:37:BC:88:B0:80:29
X509v3 Authority Key Identifier:
keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/pUlZlrZkkveQDBia8Nk3vIiwgCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.240.0/24
Signature Algorithm: sha256WithRSAEncryption
49:45:4b:74:0a:bb:39:53:7b:1a:53:cd:a4:ce:3f:70:42:a7:
f9:eb:d9:e3:c6:90:36:29:3f:bb:5a:22:91:63:9d:a0:c0:f3:
b4:40:14:e5:f8:79:c7:c4:db:e3:b8:61:34:24:3c:c0:3e:ff:
cc:25:2b:d7:e2:aa:c2:45:9e:6d:8b:35:43:b7:6b:22:b9:16:
f6:5e:13:e2:ff:b9:ef:b8:d0:f4:85:72:61:9f:06:20:88:ec:
fc:57:8d:4f:f6:ca:f4:cd:dc:78:4d:b2:39:01:10:a0:14:24:
a7:85:5c:af:83:b9:06:25:92:8b:52:61:26:38:e8:3c:54:69:
00:ce:68:cb:8c:af:c5:ad:52:65:b8:54:6e:e9:0d:58:19:87:
46:89:44:61:64:97:3d:31:58:27:89:90:ba:a4:bc:0f:af:2f:
eb:16:d2:db:83:65:67:67:6e:7a:cd:17:f4:6c:90:2f:ad:5a:
4b:3c:f4:ed:1f:33:28:d5:12:36:b2:5d:84:50:94:92:e7:0f:
5f:29:7d:7f:9c:ea:43:ca:c0:91:fd:ad:da:24:ad:c3:a0:12:
4a:20:2d:8f:d8:cb:1f:70:96:7a:8e:7f:b4:36:e5:ce:f3:62:
2b:f0:1c:ff:eb:52:77:c6:09:c0:14:a6:ec:fe:5c:a4:42:23:
4c:38:a5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org