Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/snOlEsxSNrIKv3YstJEkHqCQzLA.roa
File: snOlEsxSNrIKv3YstJEkHqCQzLA.roa (raw, json)
Hash identifier: XwcXjGLmIFQMNmgK91jUtvEMNKTK3f4mEyHaYbm9hro=
Subject key identifier: B2:73:A5:12:CC:52:36:B2:0A:BF:76:2C:B4:91:24:1E:A0:90:CC:B0
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 35F57A48
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/snOlEsxSNrIKv3YstJEkHqCQzLA.roa
Signing time: Sat 01 Jan 2022 03:02:17 +0000
ROA not before: Sat 01 Jan 2022 03:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 82.150.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905280072 (0x35f57a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 03:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b273a512cc5236b20abf762cb491241ea090ccb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:a3:78:66:3c:f8:df:40:1a:8b:6e:0f:57:
37:48:25:15:58:1a:ff:0c:c9:e4:9c:c6:b5:61:0a:
d6:e7:cd:3f:18:70:68:96:12:9d:60:8d:f2:03:bb:
ee:0f:44:ec:b5:7c:cc:3c:cf:55:be:6c:c7:64:66:
91:6a:91:86:3e:9e:2e:3f:10:93:0d:eb:09:7d:fc:
13:96:3a:63:43:ab:00:ed:af:b9:77:79:47:39:d9:
5b:83:80:b2:94:7e:eb:4a:fb:73:ec:d5:cf:24:78:
29:dd:99:42:e0:67:35:86:5b:3a:40:eb:50:d3:5e:
d5:f6:8e:be:13:1b:fa:2e:01:45:e1:e5:07:15:ca:
8c:70:b3:42:95:e0:60:c9:3c:1d:50:44:ef:e0:b1:
35:d9:06:9a:43:d0:70:f1:25:7c:fc:5b:30:cc:63:
10:16:d6:0f:5e:f5:24:81:a7:35:67:f5:b4:2c:fa:
ad:d6:4a:d8:5e:0c:9b:21:dc:c8:eb:c5:19:44:cd:
66:b0:eb:17:41:0f:88:d1:74:48:2b:82:1a:8a:fb:
22:72:28:6f:fb:0e:74:8e:2b:14:15:d2:e8:7a:df:
74:8b:df:e8:5e:43:a0:a1:8f:e1:3c:d7:a8:61:9a:
6d:2b:a3:1f:64:01:63:d3:b8:cc:1d:b0:20:0f:d2:
52:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:73:A5:12:CC:52:36:B2:0A:BF:76:2C:B4:91:24:1E:A0:90:CC:B0
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/snOlEsxSNrIKv3YstJEkHqCQzLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.152.0/24
Signature Algorithm: sha256WithRSAEncryption
39:63:b8:93:e2:20:f2:9c:d7:9d:67:94:ba:a3:3d:8a:83:32:
f2:b5:11:51:22:0c:d6:f3:3d:d9:f4:02:9b:d9:c1:44:d1:b2:
f3:bd:28:02:12:7c:83:d0:46:81:c9:86:44:6a:1f:7f:fc:7c:
9b:e5:05:51:f2:d9:25:73:4b:5d:43:6a:d6:45:c9:03:e3:14:
ff:c3:c6:15:a0:66:91:ca:46:75:01:b4:ce:99:c4:27:c7:bc:
46:e9:9b:74:42:88:70:03:c0:d2:53:6d:5a:7a:67:69:51:9e:
06:8c:d5:8d:62:d2:99:5e:62:91:76:5c:2f:3e:bc:f4:a4:81:
1d:6a:b2:e1:d8:55:5f:ac:93:43:91:61:ca:49:b0:dc:86:7f:
52:20:6a:1e:ca:1b:3f:a0:39:2d:0c:d2:bc:00:fa:4b:9a:20:
c1:d6:01:dc:ce:37:7c:f1:c9:77:dc:9c:75:36:f4:73:08:e1:
3e:86:6e:50:4b:8b:e3:23:e1:d2:7b:78:8c:24:b5:53:93:02:
38:34:69:b3:81:de:6f:07:57:49:c0:7b:14:a9:bb:0e:df:80:
76:a4:5a:d7:2d:31:cf:23:94:a2:9e:b6:2b:46:b7:48:cf:a2:
18:04:ae:fe:de:e7:5e:02:ea:0b:3f:14:c4:48:ff:fd:85:a0:
fd:d3:3f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org