Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/703f00-7f39-4d95-8c58-4bbb838a2779/1/daVvoTk607hOSCI-gIpOOoVukas.roa
File: daVvoTk607hOSCI-gIpOOoVukas.roa (raw, json)
Hash identifier: c/p7pCLTpAMZHSfzWjNk393vk+Z2U5o2kjFT12dVtMg=
Subject key identifier: 75:A5:6F:A1:39:3A:D3:B8:4E:48:22:3E:80:8A:4E:3A:85:6E:91:AB
Certificate issuer: /CN=c31bb44ede2afe0bfa9d78ba29324955f7fc6091
Certificate serial: 018C5D
Authority key identifier: C3:1B:B4:4E:DE:2A:FE:0B:FA:9D:78:BA:29:32:49:55:F7:FC:60:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wxu0Tt4q_gv6nXi6KTJJVff8YJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/703f00-7f39-4d95-8c58-4bbb838a2779/1/daVvoTk607hOSCI-gIpOOoVukas.roa
Signing time: Thu 28 Apr 2022 07:03:29 +0000
ROA not before: Thu 28 Apr 2022 07:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39635
IP address blocks: 195.246.241.0/24 maxlen: 24
195.246.240.0/23 maxlen: 23
195.246.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101469 (0x18c5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c31bb44ede2afe0bfa9d78ba29324955f7fc6091
Validity
Not Before: Apr 28 07:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75a56fa1393ad3b84e48223e808a4e3a856e91ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:ad:30:dc:2d:b3:e5:8e:93:be:e7:51:d1:
fe:f2:04:e6:3f:df:48:a2:12:3b:70:6c:b1:b0:69:
89:78:92:de:3a:90:95:7e:12:37:66:50:4a:95:61:
d0:90:94:a5:cd:9a:98:1c:61:17:37:a6:e0:5f:0d:
11:8e:64:35:64:cf:d5:f2:c9:01:e9:0b:5f:95:a6:
80:a0:8a:5c:82:7e:b6:28:db:f6:eb:14:cf:a0:28:
ab:59:0d:19:e8:48:7d:34:6d:09:65:7e:14:a1:cf:
f8:ba:cc:b2:3f:8b:ec:36:37:ac:0f:6e:ce:ca:83:
a4:36:4b:f7:cf:c2:44:9a:e3:cc:b8:ee:65:e1:8e:
65:d4:04:d7:91:99:2e:43:32:86:1e:11:53:00:89:
0e:73:32:85:cb:37:21:4a:8b:ab:33:07:97:d1:d2:
77:16:75:79:53:27:44:a8:cc:17:f5:49:47:d2:47:
63:90:26:8c:77:f7:e1:41:20:74:92:0d:8f:8d:ae:
e3:fb:c4:35:86:d6:2e:75:94:69:ba:2f:c7:84:85:
0c:1f:72:c9:03:74:76:f7:f3:97:91:4a:5b:0c:7b:
ea:d0:6d:07:d0:53:47:9c:65:2f:39:2e:2b:cf:47:
f9:14:56:09:aa:32:ca:0d:0c:0d:7d:a0:20:92:bb:
47:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A5:6F:A1:39:3A:D3:B8:4E:48:22:3E:80:8A:4E:3A:85:6E:91:AB
X509v3 Authority Key Identifier:
keyid:C3:1B:B4:4E:DE:2A:FE:0B:FA:9D:78:BA:29:32:49:55:F7:FC:60:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wxu0Tt4q_gv6nXi6KTJJVff8YJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/703f00-7f39-4d95-8c58-4bbb838a2779/1/daVvoTk607hOSCI-gIpOOoVukas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/703f00-7f39-4d95-8c58-4bbb838a2779/1/wxu0Tt4q_gv6nXi6KTJJVff8YJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.246.240.0/23
Signature Algorithm: sha256WithRSAEncryption
25:dd:61:82:0c:e5:be:16:54:65:4b:b1:88:8a:70:87:15:02:
ad:a0:2f:8c:6e:61:3b:cd:a8:30:bb:fd:be:93:ef:91:e1:ea:
31:ff:68:51:42:eb:80:10:6a:30:f1:f5:7d:0d:ad:7f:11:5d:
c5:cb:57:26:0a:69:bb:de:6c:1d:cc:56:7e:af:fe:0e:1b:f1:
9f:14:d5:1b:0a:c7:3f:54:fa:3e:3b:dc:47:95:79:08:2a:2e:
e9:da:f2:72:1c:93:06:fa:bf:8e:d6:88:e9:5e:8c:56:cd:95:
40:96:de:aa:e6:02:bb:44:d1:06:76:d3:8c:55:33:4a:7c:e4:
24:77:cf:ae:b3:1c:f8:f9:b5:78:8c:3d:c0:5b:8f:f5:fd:ef:
b2:9c:31:07:6a:3c:ab:86:a9:f2:ec:c7:d8:b6:cd:ea:69:3b:
f0:0e:0c:25:04:30:9e:1d:ed:c4:1e:d9:63:0f:45:3f:9c:e2:
e1:75:32:50:1d:92:f7:95:c6:de:cf:02:54:d3:6e:be:03:c6:
b6:ab:c0:d3:f0:07:1a:36:97:92:7f:2e:40:94:40:b7:b5:50:
13:fe:04:93:cc:f5:5a:ce:90:d6:f3:bc:12:5e:fd:86:7c:5c:
cc:46:cb:b8:1d:43:90:f9:76:34:0f:31:da:5f:a6:47:c1:6a:
c9:60:83:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:31 2024 by rpki-client on console-fra.rpki-client.org