Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/6683ca-a688-4141-ad41-8adf0da22545/1/kUHre2Hp8mhSy89b-3x678TKEbU.roa
File: kUHre2Hp8mhSy89b-3x678TKEbU.roa (raw, json)
Hash identifier: Mpk8pOIbmTHsmA3KDY0b9eGI/UPgiBNEi9poDVnJzh4=
Subject key identifier: 91:41:EB:7B:61:E9:F2:68:52:CB:CF:5B:FB:7C:7A:EF:C4:CA:11:B5
Certificate issuer: /CN=b094780ffbb06b7b57f0214e84552b964c5041d6
Certificate serial: 0702C7D2
Authority key identifier: B0:94:78:0F:FB:B0:6B:7B:57:F0:21:4E:84:55:2B:96:4C:50:41:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJR4D_uwa3tX8CFOhFUrlkxQQdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/6683ca-a688-4141-ad41-8adf0da22545/1/kUHre2Hp8mhSy89b-3x678TKEbU.roa
Signing time: Sat 01 Jan 2022 16:06:32 +0000
ROA not before: Sat 01 Jan 2022 16:06:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9180
IP address blocks: 195.214.225.0/24 maxlen: 24
195.214.226.0/24 maxlen: 24
195.214.224.0/24 maxlen: 24
195.214.229.0/24 maxlen: 24
195.214.227.0/24 maxlen: 24
195.214.230.0/24 maxlen: 24
195.214.228.0/24 maxlen: 24
195.214.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117622738 (0x702c7d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b094780ffbb06b7b57f0214e84552b964c5041d6
Validity
Not Before: Jan 1 16:06:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9141eb7b61e9f26852cbcf5bfb7c7aefc4ca11b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:70:89:cd:52:fd:8d:be:8b:1e:8c:7b:81:69:
bb:d7:48:1d:99:d2:39:b7:ce:a3:40:5e:22:40:e4:
fb:e4:8a:cd:68:d5:0c:de:de:0f:48:c2:ce:39:0c:
de:38:3e:f4:81:1a:d9:ca:7b:0a:34:e6:71:49:d7:
c1:25:79:cb:c9:e7:ba:62:dd:7d:34:f5:9c:0f:14:
c6:39:44:5f:1d:fd:23:17:ad:11:41:f7:3c:c6:49:
6b:50:a9:37:f9:ce:c1:30:99:61:26:55:d7:83:a2:
ca:2a:f6:c3:85:64:56:5e:4f:1d:31:42:d7:4d:98:
08:61:cd:9a:5b:09:e1:75:8f:09:65:33:bf:2d:7c:
0e:d7:69:8b:e2:82:8a:0a:13:72:c0:12:44:ef:e1:
16:8d:90:0e:d3:23:b9:81:8b:bb:ec:cf:10:1c:34:
b0:0e:82:48:f2:d2:4e:f9:85:c2:11:da:f5:f1:6c:
02:31:52:6e:4f:39:86:57:e3:da:f0:79:63:e1:05:
bb:c8:81:f8:bf:7a:fb:9f:13:54:41:a4:94:a7:60:
70:ae:cb:ca:ea:5e:ec:a5:55:86:cc:90:d6:f8:ca:
3d:ce:4b:86:86:bf:55:ed:35:3f:15:b5:99:40:ba:
73:8d:08:d3:5a:be:70:69:2a:7b:e2:9d:2e:5a:87:
b1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:41:EB:7B:61:E9:F2:68:52:CB:CF:5B:FB:7C:7A:EF:C4:CA:11:B5
X509v3 Authority Key Identifier:
keyid:B0:94:78:0F:FB:B0:6B:7B:57:F0:21:4E:84:55:2B:96:4C:50:41:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJR4D_uwa3tX8CFOhFUrlkxQQdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6683ca-a688-4141-ad41-8adf0da22545/1/kUHre2Hp8mhSy89b-3x678TKEbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6683ca-a688-4141-ad41-8adf0da22545/1/sJR4D_uwa3tX8CFOhFUrlkxQQdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.224.0/21
Signature Algorithm: sha256WithRSAEncryption
6a:1e:dc:9f:0a:4a:7a:3a:aa:0a:70:cc:f0:97:bd:90:c7:09:
12:08:d3:99:58:0a:a1:b6:42:03:d0:f3:11:62:c0:24:22:47:
d7:9f:4c:a7:44:9e:cb:34:c4:4c:6e:e8:9e:ab:25:d1:d8:28:
b8:62:42:56:20:1d:90:c8:ef:d5:94:25:5f:1c:31:3e:27:55:
47:09:83:91:d9:de:69:af:22:74:a8:7f:c5:f2:df:36:ca:22:
53:a6:29:3d:b0:df:17:93:7f:99:b2:01:32:5f:5d:cf:8d:a4:
9e:5d:db:e9:10:ed:c3:b8:65:64:eb:c7:ac:2f:f7:c5:6d:b7:
ae:74:39:32:04:a3:3c:85:ab:6a:37:66:bd:7b:16:46:65:87:
ab:08:2d:1b:b6:b3:fb:d1:00:e1:22:db:e9:6e:0b:4f:fc:a9:
c2:24:32:19:aa:bb:91:ea:98:dc:3d:05:24:31:69:a6:29:90:
01:30:cc:04:0c:94:de:cf:f2:1f:5d:68:67:46:ef:da:54:7c:
44:f5:e5:ab:e5:60:d9:ed:0d:67:4e:97:28:e6:a8:51:b2:a3:
36:3c:03:06:ca:44:b8:e8:3e:4b:63:76:e3:21:f8:07:2b:cb:
ba:c6:96:73:95:2d:3c:b5:cb:29:34:51:47:5d:18:4b:78:dd:
16:fe:73:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:31 2024 by rpki-client on console-fra.rpki-client.org