Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/x02gUoERUgNiMjqp2tjZbcR2aaQ.roa
File: x02gUoERUgNiMjqp2tjZbcR2aaQ.roa (raw, json)
Hash identifier: AYMsGhrKRCnAYe/cOoV4KDdFzzP5TmSAyF03mJeefvg=
Subject key identifier: C7:4D:A0:52:81:11:52:03:62:32:3A:A9:DA:D8:D9:6D:C4:76:69:A4
Certificate issuer: /CN=697ea60aca0ddae5eddfbc260cb7da261624e91d
Certificate serial: 1726358B
Authority key identifier: 69:7E:A6:0A:CA:0D:DA:E5:ED:DF:BC:26:0C:B7:DA:26:16:24:E9:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aX6mCsoN2uXt37wmDLfaJhYk6R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/x02gUoERUgNiMjqp2tjZbcR2aaQ.roa
Signing time: Sat 01 Jan 2022 01:57:02 +0000
ROA not before: Sat 01 Jan 2022 01:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34282
IP address blocks: 195.43.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388380043 (0x1726358b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=697ea60aca0ddae5eddfbc260cb7da261624e91d
Validity
Not Before: Jan 1 01:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74da0528111520362323aa9dad8d96dc47669a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:26:21:2e:f2:1b:bf:51:c6:eb:b2:a8:91:
b6:8e:93:53:8d:3d:c3:f1:54:15:a8:34:0f:5e:f3:
c7:d2:85:b0:0c:d3:ec:f3:31:d4:b7:02:8b:af:b0:
f7:2b:ef:11:1c:ab:e5:ba:ce:59:ce:6b:b7:b3:d1:
b1:91:da:0e:77:4d:3b:82:2a:04:cc:0f:ee:78:a1:
10:9c:cf:3f:d7:7b:41:4b:c0:da:25:f6:65:fb:41:
83:60:bf:ff:f5:a2:51:cf:a7:ed:2a:37:52:a2:50:
e6:e4:43:69:71:62:2b:0e:c5:9b:c1:6b:2b:23:3c:
e7:c6:7f:48:3d:99:3a:e3:13:db:6f:31:aa:2b:13:
ee:0a:c3:1f:d5:76:3f:ed:ff:bf:29:9a:ee:9f:f0:
6e:97:79:d1:ab:9d:3f:57:78:1f:37:30:64:03:0b:
29:b2:13:d4:7e:fb:2b:9e:0e:eb:28:87:4c:96:9b:
e8:46:9f:08:04:4e:e5:02:2b:7d:cb:92:08:60:56:
ec:b4:45:72:dc:f3:57:ee:4e:1a:12:b8:ea:87:8b:
8c:fa:de:94:fc:40:8b:d1:a5:da:e7:e5:8b:51:f6:
ef:a6:a6:8c:cf:56:02:37:57:c8:3a:95:78:b2:3c:
77:36:b1:cf:7a:c9:23:d7:4f:a9:8e:9d:2f:5a:06:
c0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4D:A0:52:81:11:52:03:62:32:3A:A9:DA:D8:D9:6D:C4:76:69:A4
X509v3 Authority Key Identifier:
keyid:69:7E:A6:0A:CA:0D:DA:E5:ED:DF:BC:26:0C:B7:DA:26:16:24:E9:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aX6mCsoN2uXt37wmDLfaJhYk6R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/x02gUoERUgNiMjqp2tjZbcR2aaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/aX6mCsoN2uXt37wmDLfaJhYk6R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.157.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d2:43:42:a0:95:5d:13:c4:20:09:64:53:7f:28:d0:d7:dc:
6d:13:6b:fa:77:e7:06:40:c6:71:3f:1d:e9:6d:1d:62:41:b0:
5d:3a:5e:4c:2a:a0:8b:35:a2:9c:ef:73:69:21:69:d2:1f:87:
6d:70:33:b3:28:5e:64:0f:1f:de:d7:c5:67:ae:74:d3:0b:e6:
51:91:e7:29:b7:65:a8:23:54:b7:da:28:37:a8:0a:fd:34:fb:
16:87:71:7c:14:e3:e3:ba:36:ec:76:6a:6d:f9:97:25:01:0e:
12:71:ed:47:01:4e:e8:f5:f2:a5:6c:fb:c1:58:f0:1a:fb:94:
ae:4a:33:fc:d2:7c:ca:66:96:ae:4b:32:84:31:be:94:21:64:
06:6d:d3:b2:38:07:f2:8a:8c:fd:d8:d8:b1:bd:66:7d:fa:6b:
3f:16:5c:f4:77:08:66:8e:8b:70:ce:c8:a5:49:40:d0:32:f4:
28:ee:92:ec:49:51:c0:1b:63:c1:2c:8e:8a:1e:65:f5:05:2b:
90:ab:c6:f9:0f:72:eb:81:93:ea:c7:7d:2a:a8:75:ef:17:5b:
25:38:04:59:56:28:a4:16:44:e3:90:df:33:76:ed:74:50:10:
55:aa:05:0c:a5:52:13:b0:54:4a:fb:75:94:5b:a3:4e:4f:2e:
f5:26:49:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org