Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/Us2hzWPmvxOE2JnmigHkBhAd_IE.roa
File: Us2hzWPmvxOE2JnmigHkBhAd_IE.roa (raw, json)
Hash identifier: fK8EFPOCaITmygNgEgWaBNoWmwCxzopICgij0YK7rH4=
Subject key identifier: 52:CD:A1:CD:63:E6:BF:13:84:D8:99:E6:8A:01:E4:06:10:1D:FC:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0184F65516EE371C5AEBA34340930CD1B58C
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/Us2hzWPmvxOE2JnmigHkBhAd_IE.roa
Signing time: Fri 09 Dec 2022 10:01:22 +0000
ROA not before: Fri 09 Dec 2022 10:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 195.242.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:55:16:ee:37:1c:5a:eb:a3:43:40:93:0c:d1:b5:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Dec 9 10:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52cda1cd63e6bf1384d899e68a01e406101dfc81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b5:d6:b8:09:19:ba:01:e4:58:ed:35:a0:75:
45:66:08:58:52:74:a6:1e:d6:64:8c:f6:6f:8b:8a:
43:8c:cd:01:8d:8b:33:3d:6b:75:a9:ac:40:ff:18:
cf:9f:ba:c8:4f:b7:52:0c:e1:2a:65:a2:78:60:60:
ce:33:32:27:cf:15:ab:8b:f7:7a:d7:8a:71:52:48:
49:6b:2d:54:c6:ef:4c:3d:cc:d6:2d:f3:86:92:d7:
59:74:1e:09:e9:b4:b4:28:bc:16:02:ea:ad:9d:3f:
6c:62:06:ed:4f:ac:c0:ee:51:49:47:23:26:31:9e:
c8:fd:1f:f7:41:be:b3:ff:82:4d:d5:f5:ed:79:aa:
09:e6:55:a7:3d:65:f0:80:f6:6f:a2:40:bf:d5:25:
2d:f0:dc:2c:b2:d8:07:9b:e7:ba:33:3f:a0:97:41:
46:af:6f:1a:5c:80:c8:86:1d:bb:71:0c:88:79:c9:
4b:d0:bf:77:76:d2:5e:d9:05:2c:b9:6b:ad:20:d7:
29:23:a7:fb:b9:6d:c2:07:f1:9b:27:8b:fc:b8:0d:
5a:2d:a8:92:de:10:d5:33:25:5a:82:e1:7f:3f:c4:
1c:1c:27:0f:2d:53:3b:92:2a:10:51:c4:e0:d5:f5:
f8:f8:fd:50:4d:45:0f:18:d7:5b:eb:4e:51:f6:84:
3d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CD:A1:CD:63:E6:BF:13:84:D8:99:E6:8A:01:E4:06:10:1D:FC:81
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/Us2hzWPmvxOE2JnmigHkBhAd_IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.240.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ab:1b:4c:f7:f0:3e:4c:c3:ff:97:fd:36:ff:c2:7b:e6:06:
33:43:84:1a:97:ea:46:4e:26:53:69:ac:1a:f3:77:68:1e:70:
f9:0e:17:70:b2:f8:61:e0:8e:63:cf:cc:7d:a1:32:ca:33:75:
7c:aa:d4:4c:93:31:a7:89:29:8d:af:36:93:2c:6c:31:43:83:
08:ae:d8:5e:ef:74:58:c9:f3:bc:79:8f:e8:0c:b8:f3:02:a8:
21:c4:0e:a1:fb:e1:6c:bb:f6:9b:94:e7:ea:9f:b0:21:e7:6e:
31:b5:10:c1:ac:9a:23:1f:58:c5:20:78:95:9e:31:14:6b:22:
d2:2a:42:8b:0d:b3:2d:02:20:97:a7:08:0a:96:14:4c:6e:b5:
cc:40:73:0f:53:f6:2f:55:10:eb:bb:f9:d4:73:2a:37:4d:41:
f2:cf:bf:88:73:bc:6f:bb:43:33:15:14:89:4f:e0:2f:dd:d6:
d5:ea:d4:b2:f2:a0:9f:80:a7:1f:aa:44:47:e4:22:82:c3:ae:
fe:4f:ec:7c:c9:94:cb:3c:05:d7:8f:ff:78:80:8a:d6:6c:62:
23:68:ae:e6:ba:d4:e5:6a:92:4e:0f:48:55:41:79:21:e5:87:
a1:e5:ad:a1:52:d1:96:1a:5c:36:b3:b5:69:a3:61:82:82:3a:
3c:a5:b1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org