Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3444a6-b2e8-400a-a2b1-7bff1dcb106a/1/a_-z1CEYM9OyM3iJAAcJk_7VqFI.roa
File: a_-z1CEYM9OyM3iJAAcJk_7VqFI.roa (raw, json)
Hash identifier: g34dfjsRpQ1+jtvrXfgaHmQAYnZ/kqpO9eikPxu6gUU=
Subject key identifier: 6B:FF:B3:D4:21:18:33:D3:B2:33:78:89:00:07:09:93:FE:D5:A8:52
Certificate issuer: /CN=82fffcfadd271623c8d5055d64a93eb3d3425dbc
Certificate serial: 01821A64B268FB376F800811AB74397FD91E
Authority key identifier: 82:FF:FC:FA:DD:27:16:23:C8:D5:05:5D:64:A9:3E:B3:D3:42:5D:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gv_8-t0nFiPI1QVdZKk-s9NCXbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3444a6-b2e8-400a-a2b1-7bff1dcb106a/1/a_-z1CEYM9OyM3iJAAcJk_7VqFI.roa
Signing time: Wed 20 Jul 2022 06:56:23 +0000
ROA not before: Wed 20 Jul 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8727
IP address blocks: 195.190.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:64:b2:68:fb:37:6f:80:08:11:ab:74:39:7f:d9:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fffcfadd271623c8d5055d64a93eb3d3425dbc
Validity
Not Before: Jul 20 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bffb3d4211833d3b233788900070993fed5a852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:67:11:c2:a4:af:7a:eb:6c:67:7c:1c:2c:
86:73:ac:76:3b:b5:84:1c:7b:75:cd:fd:66:40:02:
64:dd:44:05:b9:a5:f6:1d:74:46:cd:38:13:0f:29:
02:c3:f5:27:c1:7a:d8:48:b2:4b:23:8b:62:c2:17:
75:36:8d:f0:8b:f0:a7:fa:31:ec:c4:1c:dd:0f:81:
d3:d5:05:65:be:e7:cb:c0:36:9c:4f:5f:b9:56:af:
d2:0f:46:ee:85:57:48:e7:57:ce:b1:9c:b4:ff:66:
4b:23:68:a4:6d:c8:09:2d:bb:06:96:52:ea:a6:af:
3c:13:94:4a:6a:95:70:27:c9:eb:2b:94:ee:31:fc:
49:e5:06:12:fc:f0:02:27:59:1e:40:0d:79:94:9a:
83:26:7f:21:dc:c3:d8:35:75:b0:5a:b0:89:9a:28:
3a:8d:d4:61:50:5d:99:f1:4c:77:84:a1:de:41:6b:
88:6a:3c:50:15:c3:7e:1f:27:56:11:9f:4f:5e:ae:
4d:f7:c7:df:54:95:5c:d6:e8:34:66:80:65:e8:fd:
71:a8:c1:92:fc:1a:95:cd:1d:6c:f8:bc:ea:95:ad:
20:e1:20:c5:41:ef:bd:e7:28:4d:cb:82:d7:cc:72:
13:bc:c6:fa:ea:2e:e2:48:4f:ba:bc:72:03:e0:14:
e3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FF:B3:D4:21:18:33:D3:B2:33:78:89:00:07:09:93:FE:D5:A8:52
X509v3 Authority Key Identifier:
keyid:82:FF:FC:FA:DD:27:16:23:C8:D5:05:5D:64:A9:3E:B3:D3:42:5D:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gv_8-t0nFiPI1QVdZKk-s9NCXbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3444a6-b2e8-400a-a2b1-7bff1dcb106a/1/a_-z1CEYM9OyM3iJAAcJk_7VqFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3444a6-b2e8-400a-a2b1-7bff1dcb106a/1/gv_8-t0nFiPI1QVdZKk-s9NCXbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:59:af:8e:6d:7a:2b:4c:9e:a5:69:70:74:79:4d:01:a1:59:
4e:a7:fc:17:46:c6:07:24:52:c0:f5:c6:6c:ed:63:e3:db:77:
d1:3a:58:62:63:94:71:6b:f6:3d:56:68:09:49:f7:cf:ba:b0:
0c:fc:d4:e9:75:25:5a:e7:af:b8:60:0c:b0:db:f4:7f:22:a4:
e5:01:bf:11:a5:3a:9d:bf:13:f7:b6:16:ca:b9:a0:3c:24:cb:
88:ca:bf:f3:d6:73:b9:cf:44:03:42:28:3e:91:b7:ef:3f:e0:
b0:0f:36:f6:69:b3:18:c7:4a:f4:ae:9c:3d:10:2f:8c:bd:27:
23:7d:e9:1e:6d:51:df:10:02:25:86:2a:c9:a3:ff:5c:52:1d:
79:f7:0e:4c:0b:e4:14:22:b2:0a:eb:26:47:e7:01:fd:73:38:
cc:9f:5e:24:8a:83:87:15:78:79:51:ad:08:2d:ed:dc:5d:fe:
f5:de:2b:1d:0b:9e:7e:20:53:fc:94:3f:d7:67:2a:81:1c:e6:
30:49:29:2f:86:26:b1:35:e6:04:b7:0d:6b:67:9e:9c:20:3d:
c6:f6:28:3e:9a:7d:c8:7c:b5:12:5d:6c:fb:c1:5d:97:5d:3a:
34:81:fd:f5:11:41:79:8c:dc:a2:a0:10:32:4e:58:dc:2a:c6:
f2:d6:f8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org