Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a0ca76-e264-40f1-9d8a-065ca1f36310/1/sKTsaZid2jbKNKn2PX58BHh1Gk0.roa
File: sKTsaZid2jbKNKn2PX58BHh1Gk0.roa (raw, json)
Hash identifier: 8Xgz9E+H0s7LJxP1aBAnYHBzTv0mDW1VY4c5qG/1Q0Y=
Subject key identifier: B0:A4:EC:69:98:9D:DA:36:CA:34:A9:F6:3D:7E:7C:04:78:75:1A:4D
Certificate issuer: /CN=d05b2623a39d556c50b7046d36447fb621af974a
Certificate serial: 03D92341
Authority key identifier: D0:5B:26:23:A3:9D:55:6C:50:B7:04:6D:36:44:7F:B6:21:AF:97:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FsmI6OdVWxQtwRtNkR_tiGvl0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a0ca76-e264-40f1-9d8a-065ca1f36310/1/sKTsaZid2jbKNKn2PX58BHh1Gk0.roa
Signing time: Sat 01 Jan 2022 10:53:43 +0000
ROA not before: Sat 01 Jan 2022 10:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35802
IP address blocks: 195.10.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64561985 (0x3d92341)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d05b2623a39d556c50b7046d36447fb621af974a
Validity
Not Before: Jan 1 10:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0a4ec69989dda36ca34a9f63d7e7c0478751a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:56:43:73:d6:49:a5:40:84:31:0d:dd:95:47:
a8:cd:95:67:6c:d1:78:8a:b6:c8:e3:5e:b4:ae:27:
5b:a8:5f:5d:6f:b8:9c:22:8d:af:57:63:5f:e9:25:
e3:81:0e:77:6d:cc:fd:49:f0:5d:96:b2:b3:51:04:
c6:94:f3:4b:ad:b9:5c:ef:a0:7b:4f:6f:1b:4c:5b:
01:87:1b:28:77:75:d3:65:86:31:1a:05:8f:a7:3d:
f2:68:1d:22:94:5e:0e:2a:b5:5c:40:0d:97:99:6d:
b3:83:32:31:46:0b:8a:fe:ab:f0:5b:b9:ce:6c:57:
52:d0:d2:e0:67:26:74:3b:8a:64:cf:4f:26:ee:42:
6b:fd:dc:ad:02:3b:96:49:49:58:11:1b:b0:c9:8b:
f8:8d:73:b1:7b:d9:27:26:24:18:8c:4a:44:6d:71:
a7:55:4a:58:3c:65:65:3c:67:25:ff:b8:9c:05:49:
ef:29:3e:86:32:ff:29:ea:af:c2:8e:bc:7c:fa:64:
ed:6e:f6:26:7f:7d:fa:bd:c0:f2:6d:b3:84:72:4f:
0f:21:76:68:33:fe:06:3b:0e:0f:8e:f3:7b:45:69:
8a:0c:8c:c8:7b:da:4a:50:85:c7:c3:71:97:54:09:
13:09:fe:96:7f:0c:87:fb:97:6f:a8:9a:55:c9:d5:
82:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A4:EC:69:98:9D:DA:36:CA:34:A9:F6:3D:7E:7C:04:78:75:1A:4D
X509v3 Authority Key Identifier:
keyid:D0:5B:26:23:A3:9D:55:6C:50:B7:04:6D:36:44:7F:B6:21:AF:97:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FsmI6OdVWxQtwRtNkR_tiGvl0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a0ca76-e264-40f1-9d8a-065ca1f36310/1/sKTsaZid2jbKNKn2PX58BHh1Gk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a0ca76-e264-40f1-9d8a-065ca1f36310/1/0FsmI6OdVWxQtwRtNkR_tiGvl0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.198.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:0b:67:01:78:fb:09:42:e2:6b:77:03:52:60:ff:05:8f:91:
3f:e6:7f:60:18:8b:26:c0:ac:a6:5e:ce:5e:00:39:a6:ff:a8:
25:3d:aa:d2:9e:d5:9a:cf:d1:18:81:ca:fc:42:be:84:84:c4:
a0:4a:6f:01:00:1c:75:53:12:3b:4d:cc:11:dc:63:46:f3:31:
79:c2:7b:9c:41:17:73:17:35:e3:f7:8e:7d:32:47:21:5a:13:
b9:ec:7b:fe:cf:54:48:3f:24:dc:9c:1c:11:34:cb:19:16:de:
18:f1:a8:2b:b9:0f:67:a3:72:20:84:f1:14:11:2a:40:93:b3:
4c:d3:f4:73:b7:43:67:ed:8c:b1:06:5d:79:06:d1:a8:66:bc:
92:42:b9:ab:cc:65:77:ea:21:da:bb:9d:07:ad:a9:cb:a8:01:
b8:d0:2c:62:e3:a6:1d:dc:e3:f5:0a:e8:1d:ac:98:10:2f:ef:
97:65:c2:ea:07:b2:a3:55:06:17:47:e1:81:98:31:25:a4:ce:
3d:2b:51:00:f4:17:6f:eb:98:6a:8f:80:83:9a:eb:2f:a1:d7:
5b:f8:a9:13:40:d9:4d:23:9f:c1:0e:6e:b5:5a:05:1d:34:ac:
bc:c7:4f:8e:8b:1c:37:26:8c:ea:fd:82:03:8a:01:ba:66:be:
91:e2:f1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:43 2024 by rpki-client on console-ams.rpki-client.org