Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/1-hOt3JM5U-2JiLx9EoGRz6bE5Sc.roa
File: 1-hOt3JM5U-2JiLx9EoGRz6bE5Sc.roa (raw, json)
Hash identifier: 06I66srFucXxbeWzA2qJL1ueTwToLeCg0JuP2qHnEcc=
Subject key identifier: FA:13:AD:DC:93:39:53:ED:89:88:BC:7D:12:81:91:CF:A6:C4:E5:27
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01852F493A86A9C912204811ACEBA2109CA3
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/1-hOt3JM5U-2JiLx9EoGRz6bE5Sc.roa
Signing time: Tue 20 Dec 2022 11:26:46 +0000
ROA not before: Tue 20 Dec 2022 11:26:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 195.242.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:49:3a:86:a9:c9:12:20:48:11:ac:eb:a2:10:9c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Dec 20 11:26:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa13addc933953ed8988bc7d128191cfa6c4e527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6b:87:cf:09:2f:84:85:41:40:d4:10:49:46:
66:90:25:7f:f9:22:a8:ac:f0:5f:7c:db:74:f2:97:
cd:32:ed:36:69:d0:e7:ae:a5:1c:7a:3b:1e:23:40:
98:89:c9:e0:f7:a6:49:fa:19:d7:0f:a6:e1:bc:ac:
67:bb:9d:17:cd:15:1c:aa:fd:11:d2:ce:b2:65:7e:
68:1c:21:63:62:66:b1:89:33:e9:21:e2:f7:f6:4c:
e7:d2:a9:fa:12:af:39:15:5f:cf:a6:31:29:e0:33:
6e:82:4a:96:dc:ed:72:ce:14:92:23:a3:ff:78:b1:
7f:62:c1:b7:d1:42:59:c7:74:9f:9b:6e:13:ec:43:
27:ed:40:27:44:5a:83:a3:82:6e:b9:83:4b:a0:fc:
1e:3b:c6:6c:aa:b8:55:09:a8:35:f8:2d:4f:c0:63:
80:b5:30:ea:a6:be:c0:9e:1a:ea:b7:94:a8:74:87:
b8:90:c4:c6:3c:f0:eb:90:93:48:d3:ff:7e:5c:83:
28:b6:39:e0:22:30:c2:65:b1:95:52:37:0a:74:57:
28:3c:22:ed:83:56:e2:c4:d7:fc:5b:14:3d:44:52:
83:c3:85:e7:77:4b:6c:45:6d:8a:95:a2:7f:5e:d3:
5b:2b:36:a1:6f:11:11:e3:8d:d8:1e:9f:4b:f5:ab:
3c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:13:AD:DC:93:39:53:ED:89:88:BC:7D:12:81:91:CF:A6:C4:E5:27
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/1-hOt3JM5U-2JiLx9EoGRz6bE5Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.242.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:36:31:26:02:91:4c:f4:93:cf:4c:a9:c7:88:f0:de:70:86:
e5:6b:8a:05:d0:c7:1a:44:81:3b:8f:29:00:ed:13:ff:b8:33:
fa:73:26:5f:d1:04:0e:c0:8d:d2:35:e5:59:c6:a6:58:dc:5f:
f5:eb:33:3e:2b:4c:72:05:71:c8:cc:2e:bd:26:71:24:5c:ea:
12:57:5c:f9:dc:4c:07:71:10:5d:dd:88:6f:71:15:4e:cf:db:
6a:14:45:38:31:a9:ae:0f:b2:86:98:be:a7:60:83:3d:46:ed:
31:ae:c1:c7:b0:f4:d8:1e:96:e6:b4:d5:1f:c9:64:6b:05:47:
87:2c:4d:04:90:45:e0:bd:82:fb:a2:0b:14:7a:e3:02:7e:a8:
68:e4:52:f7:c7:d6:76:49:ba:39:cd:e8:7d:35:7c:21:60:a7:
45:cb:c0:67:48:ae:e6:f0:3a:29:13:45:2b:8f:43:3d:c0:65:
98:ed:96:77:45:7b:ab:bd:7f:f0:ff:25:e0:11:8f:61:98:73:
bf:95:16:8a:3f:a3:8e:86:5c:b1:54:5b:7d:af:55:b1:e4:6e:
4b:18:a1:b2:59:82:2f:14:17:c7:0a:e2:21:08:9d:4d:b6:c1:
31:40:fe:c0:ce:51:f5:b2:55:9e:5a:75:2d:9d:85:f4:7d:48:
34:89:1f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org