Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/bLEhRnxaWnIegiJ3rjRTuzLeR94.roa
File: bLEhRnxaWnIegiJ3rjRTuzLeR94.roa (raw, json)
Hash identifier: mJBTA397smAcdtRT9ZvKO8wJOlG0chBvEOMun5w+yXE=
Subject key identifier: 6C:B1:21:46:7C:5A:5A:72:1E:82:22:77:AE:34:53:BB:32:DE:47:DE
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01828CE2B117EEF31735B3C4F14803A8BE7A
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/bLEhRnxaWnIegiJ3rjRTuzLeR94.roa
Signing time: Thu 11 Aug 2022 12:30:42 +0000
ROA not before: Thu 11 Aug 2022 12:30:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 195.242.242.0/24 maxlen: 24
193.46.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:e2:b1:17:ee:f3:17:35:b3:c4:f1:48:03:a8:be:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Aug 11 12:30:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cb121467c5a5a721e822277ae3453bb32de47de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:50:07:14:14:ea:07:5d:07:04:c7:51:51:ed:
df:dd:ac:ff:d2:28:19:6e:2b:c2:96:44:fb:9a:31:
03:05:c2:71:f3:e3:0b:c7:fa:10:7d:22:87:9b:93:
86:70:09:b9:ea:b1:db:68:fe:56:f1:6e:27:77:aa:
33:b1:44:ae:05:ec:84:f5:bc:86:18:24:f5:b6:1a:
2b:4b:5f:bb:65:22:60:44:a8:53:35:bc:9a:8d:17:
fe:a5:e1:c4:16:e9:3b:1e:51:52:7f:5c:93:b2:d5:
46:90:51:14:7c:a7:f2:83:2b:02:81:64:7d:22:ad:
e5:ea:0c:03:ca:53:d8:2f:a2:9a:fb:ea:5c:96:92:
71:f7:de:9d:c0:44:bf:74:58:70:f7:49:6a:e7:2f:
37:38:d1:d4:b3:c1:61:91:cf:ab:23:7b:ad:15:e8:
fc:01:9f:dc:95:0d:80:3e:56:05:e6:a0:8c:af:71:
21:a5:96:7a:fe:a2:a0:92:f5:35:22:19:b1:cc:ca:
8f:c0:eb:42:a9:80:89:6b:46:20:b3:56:9b:82:80:
29:31:a3:9d:10:96:6a:00:e9:b3:40:ea:98:19:69:
8e:9f:d6:f2:d4:78:11:ee:ff:bd:e1:20:50:8d:f8:
18:27:bd:a1:c7:31:ed:47:e5:4d:9b:b2:12:c9:86:
d0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B1:21:46:7C:5A:5A:72:1E:82:22:77:AE:34:53:BB:32:DE:47:DE
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/bLEhRnxaWnIegiJ3rjRTuzLeR94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.81.0/24
195.242.242.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ce:3f:f1:f1:60:ec:55:2f:e4:6d:01:20:fc:61:d3:f8:f9:
8b:82:b5:12:a9:95:16:42:fd:52:22:e2:2a:67:53:d4:b8:03:
29:6f:3a:a5:29:88:06:6e:b7:af:b5:94:dc:46:00:67:21:69:
2e:1d:7c:54:2b:4c:af:68:01:e4:19:16:fa:a8:48:ad:6c:5e:
55:1b:c1:7f:4e:81:69:aa:41:d6:22:e6:43:44:36:29:41:ce:
19:68:c7:ad:de:96:5c:3c:b1:71:da:0b:59:7f:ab:3c:7c:68:
63:ee:6f:85:a8:8a:ea:90:8e:b5:a7:65:4e:45:07:cd:64:74:
84:03:17:74:af:3f:f6:82:08:b6:b3:ba:4e:e0:bf:cd:f0:3c:
fa:52:99:9e:b4:63:f5:bc:49:c9:3c:aa:c3:b1:40:63:a5:13:
6d:fa:cf:58:f5:14:25:7a:6c:fc:7c:a4:1b:1e:a9:53:22:99:
25:89:48:aa:f5:1b:b4:bf:94:24:22:f9:50:af:79:f3:22:53:
cc:84:25:eb:9d:aa:12:25:8e:10:58:34:fa:32:1a:f2:36:98:
87:10:4a:36:3f:1d:12:d8:42:fa:96:f5:03:30:83:08:57:a7:
bc:0f:85:22:1a:44:e7:ba:83:ee:cb:08:6e:26:5d:7f:52:11:
25:cd:ee:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org