Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/o436mWxOvV-n2f3WXFScCpPOe6M.roa
File: o436mWxOvV-n2f3WXFScCpPOe6M.roa (raw, json)
Hash identifier: 7ExSvL4lc/CiCxC2vHIhYm8xetj/YqOUAMjgBji5yKs=
Subject key identifier: A3:8D:FA:99:6C:4E:BD:5F:A7:D9:FD:D6:5C:54:9C:0A:93:CE:7B:A3
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 111B0019
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/o436mWxOvV-n2f3WXFScCpPOe6M.roa
Signing time: Sat 01 Jan 2022 11:58:35 +0000
ROA not before: Sat 01 Jan 2022 11:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51278
IP address blocks: 195.226.217.0/24 maxlen: 24
2001:67c:278::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286982169 (0x111b0019)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Jan 1 11:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a38dfa996c4ebd5fa7d9fdd65c549c0a93ce7ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:43:08:9c:b9:6b:70:7c:6d:3c:64:21:8e:
28:fc:61:cb:36:8a:be:5b:1f:14:4b:34:16:90:aa:
df:45:75:91:e0:6a:3b:02:e1:1c:4f:3e:16:48:c1:
2f:db:b3:e7:8f:37:8e:0e:54:62:d7:1b:a2:6d:9e:
34:9f:bd:77:08:95:31:f8:58:ce:37:11:f1:59:a5:
d9:d3:44:fa:67:88:58:c9:dd:bc:4b:fa:b5:40:cd:
dd:60:04:f4:bd:43:aa:ba:15:87:4c:e7:5e:65:1c:
55:06:b8:5d:71:f9:38:f3:27:91:c0:f5:88:4d:19:
f0:d0:0e:26:da:98:ed:b8:61:c8:4e:1f:e3:2a:a2:
ae:05:c9:84:df:58:30:a1:c6:b0:74:f4:63:ac:31:
e1:0f:42:3d:18:69:4f:3a:00:fa:80:f6:06:9f:47:
47:2e:9b:e6:6b:ad:b9:77:c8:ae:73:18:83:67:28:
db:be:93:a8:36:e5:05:7b:e3:37:22:3a:e0:c8:0c:
46:3f:82:3c:df:bd:33:49:b9:a8:83:66:c4:ae:53:
3e:2a:a2:e1:22:95:73:f1:5a:90:2a:3c:72:19:f5:
84:cd:fe:d4:ed:ab:db:c5:41:cc:62:52:13:37:40:
82:74:6b:fc:81:b0:30:cc:c6:1a:50:df:1a:8f:59:
5a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8D:FA:99:6C:4E:BD:5F:A7:D9:FD:D6:5C:54:9C:0A:93:CE:7B:A3
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/o436mWxOvV-n2f3WXFScCpPOe6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.217.0/24
IPv6:
2001:67c:278::/48
Signature Algorithm: sha256WithRSAEncryption
c8:90:48:fa:e6:0d:6c:b7:0b:68:d1:21:f8:c3:0e:84:58:16:
83:fa:d7:21:13:c6:01:74:8f:70:c1:d0:a1:bc:01:02:b4:3b:
f7:57:35:dc:69:3a:38:57:91:da:38:fc:db:2c:47:59:8d:a4:
76:32:4a:ab:13:cd:10:94:b2:0c:36:e2:93:ae:63:d1:d2:37:
b1:07:19:29:37:88:58:31:3f:08:cd:c8:2d:74:c0:67:e0:17:
4d:ba:04:1e:92:fb:6b:7b:cf:0e:51:46:08:c5:a8:99:9e:9c:
37:79:25:5d:7e:83:7d:60:44:0b:fc:d6:78:e8:5b:a2:55:f3:
5d:cc:19:e2:e5:c5:16:29:b2:61:f0:20:5c:1c:73:f3:4b:aa:
90:ed:8e:b8:cd:36:d3:a3:33:d4:a9:c4:f1:42:6e:e1:b9:98:
80:65:10:24:60:95:e4:95:6d:c8:c7:fa:2d:f9:58:56:0b:d4:
b7:cc:89:1c:35:ba:c0:01:b3:4c:ac:37:40:c6:cd:81:39:7f:
3d:20:4f:d6:90:8d:43:f1:12:f5:b9:f8:48:56:3c:12:dc:8e:
30:33:03:f1:aa:21:ce:c0:2e:7d:d6:d0:d4:40:fc:33:44:82:
e2:0a:69:3f:44:c2:d8:05:da:07:22:7a:f0:55:5f:bb:d3:de:
2f:1b:c6:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org