Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/beb29d-f0ee-407a-9702-6e13ccbf4906/1/SnX4X0DFsfmISlvMlo6RAns-57A.roa
File: SnX4X0DFsfmISlvMlo6RAns-57A.roa (raw, json)
Hash identifier: jbOtxEYf5GNg+6ozllyfLYZwr/Xepx+Bq9jPi5Uw0rI=
Subject key identifier: 4A:75:F8:5F:40:C5:B1:F9:88:4A:5B:CC:96:8E:91:02:7B:3E:E7:B0
Certificate issuer: /CN=87e64170f9d82c51670b9a44f329b20613a8082d
Certificate serial: 07EA398B
Authority key identifier: 87:E6:41:70:F9:D8:2C:51:67:0B:9A:44:F3:29:B2:06:13:A8:08:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-ZBcPnYLFFnC5pE8ymyBhOoCC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/beb29d-f0ee-407a-9702-6e13ccbf4906/1/SnX4X0DFsfmISlvMlo6RAns-57A.roa
Signing time: Sat 01 Jan 2022 04:58:02 +0000
ROA not before: Sat 01 Jan 2022 04:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51942
IP address blocks: 195.72.120.0/23 maxlen: 23
2001:678:56c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132790667 (0x7ea398b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87e64170f9d82c51670b9a44f329b20613a8082d
Validity
Not Before: Jan 1 04:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a75f85f40c5b1f9884a5bcc968e91027b3ee7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:72:1a:c5:6a:2d:77:35:9b:71:03:e3:23:7b:
42:6a:9a:35:5d:53:00:3f:6f:ef:0a:71:60:ec:a6:
22:97:29:4a:50:5c:34:77:3d:44:b0:73:07:2f:29:
90:ea:fe:71:cd:d4:45:26:57:e0:cb:d9:97:38:7f:
06:90:4a:ad:83:6c:c6:a1:7f:b2:4f:06:93:47:80:
6c:95:6d:b7:6c:bc:37:cc:d3:fc:f3:97:f3:77:8f:
54:42:ac:49:1a:83:ba:1e:d6:3a:75:6a:2e:24:2f:
7a:47:59:46:38:15:71:01:35:61:47:4f:a7:a1:b5:
be:c9:0b:de:8e:6c:ca:fc:20:1c:fd:6b:20:04:8f:
1e:2e:15:01:42:da:d5:01:8c:c3:f5:7b:17:59:58:
ca:4c:91:3b:dd:ab:c4:98:0b:77:52:af:5c:db:be:
1b:3c:77:57:1b:16:0c:92:a1:e3:9e:4b:88:f8:8f:
0a:03:1b:7a:89:4a:c5:ea:a6:5a:b3:14:92:1f:89:
40:c6:5c:7a:3e:25:af:e0:e4:cd:ee:e1:43:fc:21:
77:0d:ef:97:8d:2e:3b:fa:1a:42:62:e9:62:51:ac:
a8:27:84:5a:45:f2:63:07:af:70:2a:f1:10:3a:07:
c3:6d:18:9a:b2:94:99:0a:ef:8e:ef:d5:06:52:66:
a2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:75:F8:5F:40:C5:B1:F9:88:4A:5B:CC:96:8E:91:02:7B:3E:E7:B0
X509v3 Authority Key Identifier:
keyid:87:E6:41:70:F9:D8:2C:51:67:0B:9A:44:F3:29:B2:06:13:A8:08:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-ZBcPnYLFFnC5pE8ymyBhOoCC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/beb29d-f0ee-407a-9702-6e13ccbf4906/1/SnX4X0DFsfmISlvMlo6RAns-57A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/beb29d-f0ee-407a-9702-6e13ccbf4906/1/h-ZBcPnYLFFnC5pE8ymyBhOoCC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.72.120.0/23
IPv6:
2001:678:56c::/48
Signature Algorithm: sha256WithRSAEncryption
07:7a:6d:3a:fe:a7:fd:da:f5:c1:55:2e:fd:07:bf:cb:20:19:
57:7f:31:b8:ef:15:d2:25:8e:8f:48:73:c3:f7:c3:9d:b2:7d:
ba:ed:ae:8f:33:13:07:e3:31:38:6e:af:c4:eb:6e:6a:0a:03:
c4:5a:bc:00:a6:44:02:3c:76:14:13:cd:12:ef:09:3e:10:2a:
e5:25:27:db:63:8c:9e:d6:a3:50:d0:86:ff:22:6f:fb:23:9d:
e6:e2:70:5f:13:26:ad:6c:bd:20:be:7f:6a:dd:70:fe:73:87:
50:f9:b8:a7:9c:5c:ba:de:35:e0:e7:bd:57:a4:98:f8:26:70:
cc:fc:43:29:65:1b:ba:5b:41:be:9b:b6:65:f9:76:32:01:68:
72:cf:39:8f:4c:ac:e7:5c:30:4b:ad:05:7f:e9:e5:f8:e9:30:
fc:27:ff:f3:79:77:e8:be:30:86:a7:f2:e2:70:b5:bd:c6:af:
3e:04:81:1c:97:44:9c:75:7d:03:10:0d:cb:da:b6:16:f5:9a:
e8:a7:2f:e9:7b:cc:1f:1e:cd:91:cf:e6:c4:75:15:c0:60:26:
6d:bf:b7:3d:0a:d3:da:da:b2:73:68:eb:b5:7f:2e:04:71:0b:
92:b6:35:33:59:5d:76:ec:fb:30:8e:e4:b8:db:0f:d7:df:09:
02:e9:46:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:15 2024 by rpki-client on console-ams.rpki-client.org