Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/96bea2-8e6d-44e8-a809-96b451f6000c/1/H1eXFkDCUmoNCF8mqGnXQcU4VpI.roa
File: H1eXFkDCUmoNCF8mqGnXQcU4VpI.roa (raw, json)
Hash identifier: YspOWeqLNGQfPLvkOC7fNDpFGn58mxwVmZ/wpOAFg1c=
Subject key identifier: 1F:57:97:16:40:C2:52:6A:0D:08:5F:26:A8:69:D7:41:C5:38:56:92
Certificate issuer: /CN=b30d2047ff607eef85293760e9c11a6f5941d1b6
Certificate serial: 01F607
Authority key identifier: B3:0D:20:47:FF:60:7E:EF:85:29:37:60:E9:C1:1A:6F:59:41:D1:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw0gR_9gfu-FKTdg6cEab1lB0bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/96bea2-8e6d-44e8-a809-96b451f6000c/1/H1eXFkDCUmoNCF8mqGnXQcU4VpI.roa
Signing time: Thu 24 Feb 2022 19:47:18 +0000
ROA not before: Thu 24 Feb 2022 19:47:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25444
IP address blocks: 195.20.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128519 (0x1f607)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30d2047ff607eef85293760e9c11a6f5941d1b6
Validity
Not Before: Feb 24 19:47:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f57971640c2526a0d085f26a869d741c5385692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:02:a6:79:7d:b9:36:ba:e1:cc:ca:ed:30:10:
4a:5a:5f:39:ec:03:c3:cd:73:cf:57:d5:94:35:8b:
8a:9b:f6:f2:8e:56:cc:d9:21:66:6b:29:d9:30:28:
5b:76:c1:eb:77:61:12:37:83:12:d4:27:de:ac:13:
44:e3:71:24:49:b7:f1:27:24:e8:bb:6d:95:fc:24:
e8:fc:23:1d:73:98:6e:c9:68:82:44:6d:48:2b:c4:
ab:48:c1:f0:36:2c:9f:c2:b0:98:c2:79:e3:3a:38:
34:da:d3:3a:65:a3:52:24:6b:c9:02:10:b3:e0:53:
77:2d:af:64:c3:30:ca:34:25:c0:15:c0:42:40:b9:
7f:f0:dc:b3:9b:6c:62:9f:90:0f:96:7a:d0:3d:70:
a2:cf:71:38:56:ed:71:75:a4:a8:6e:30:f6:41:50:
74:ac:30:50:c1:38:a2:75:3f:8a:5e:11:c8:f6:b7:
c1:d3:2e:9b:a1:7a:f9:26:0f:68:0c:c0:c8:af:17:
2e:f4:1a:bd:c2:bf:d2:d5:3b:df:19:0c:cb:fd:16:
4b:03:a1:1d:05:02:8f:40:74:31:08:d0:1f:f8:fb:
90:df:fa:f2:37:82:6e:a9:67:51:45:08:e3:cd:4a:
c4:d5:9e:5c:55:51:43:17:d5:b1:7d:69:e8:79:86:
22:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:57:97:16:40:C2:52:6A:0D:08:5F:26:A8:69:D7:41:C5:38:56:92
X509v3 Authority Key Identifier:
keyid:B3:0D:20:47:FF:60:7E:EF:85:29:37:60:E9:C1:1A:6F:59:41:D1:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw0gR_9gfu-FKTdg6cEab1lB0bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/96bea2-8e6d-44e8-a809-96b451f6000c/1/H1eXFkDCUmoNCF8mqGnXQcU4VpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/96bea2-8e6d-44e8-a809-96b451f6000c/1/sw0gR_9gfu-FKTdg6cEab1lB0bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.126.0/23
Signature Algorithm: sha256WithRSAEncryption
48:97:06:de:30:55:93:76:ab:12:e6:d4:67:52:3b:e6:6f:dd:
f8:bc:62:29:44:57:e7:0a:bf:14:72:f4:d9:93:ab:59:be:99:
0c:73:b3:ac:5e:cb:2c:fc:06:4a:d9:61:db:c6:29:b7:2a:c0:
25:9b:fb:ec:27:06:d9:9a:04:e6:11:31:82:95:ca:e1:bf:81:
00:73:b2:86:99:ec:8e:3f:64:bc:6b:7b:ce:00:92:03:77:da:
d5:c2:0e:72:39:6e:41:52:a2:96:71:92:85:cf:0c:18:61:40:
22:37:3d:d1:55:3c:f0:d7:94:ca:63:f9:1b:8a:ad:85:65:56:
f4:aa:57:7e:93:be:db:f3:8c:eb:ca:b5:9e:e0:28:2a:a6:46:
2a:61:d6:91:b7:6d:88:9c:dd:b4:45:68:7c:92:8f:70:a7:64:
32:9f:32:86:49:bd:6d:b3:80:d7:ef:09:30:cb:f6:14:89:41:
e7:3d:1f:50:1e:4a:ec:cc:c4:66:5d:89:21:be:62:f5:c0:b6:
04:1d:9a:1b:c2:0d:19:31:e5:0d:ff:fc:af:50:32:b0:49:3b:
f9:d6:6d:8a:f1:94:24:dc:77:d5:c9:a1:64:fd:e1:47:12:ef:
e8:9f:85:e0:a5:f4:7a:0e:4b:53:d7:8a:6e:b8:06:f5:e6:9a:
49:64:36:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:36 2024 by rpki-client on console-ams.rpki-client.org