Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/cktKgQez_NIfWKM4tEk7Iu8EFpE.roa
File: cktKgQez_NIfWKM4tEk7Iu8EFpE.roa (raw, json)
Hash identifier: ImIhML7clBD6hLRKTEw2l0KhOiJo5w1gejmX2X5109A=
Subject key identifier: 72:4B:4A:81:07:B3:FC:D2:1F:58:A3:38:B4:49:3B:22:EF:04:16:91
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 086E667F
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/cktKgQez_NIfWKM4tEk7Iu8EFpE.roa
Signing time: Sat 01 Jan 2022 00:53:27 +0000
ROA not before: Sat 01 Jan 2022 00:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24825
IP address blocks: 195.22.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141452927 (0x86e667f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=724b4a8107b3fcd21f58a338b4493b22ef041691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d1:60:49:a2:15:6a:9c:f0:83:98:ab:e1:2e:
48:25:36:47:61:3c:bf:33:96:fa:af:a0:99:49:a7:
f6:3e:b2:a3:7d:52:9c:7a:2c:96:ee:2a:6a:93:8a:
2b:19:05:b6:3b:c6:b6:bb:9c:79:5c:3f:3b:0f:9b:
b9:25:5e:11:74:8d:1a:cd:41:f3:8f:2d:6c:e5:02:
37:2a:af:4c:bd:a6:e1:00:85:f2:ec:e7:3a:f3:f2:
43:51:92:f0:12:69:04:dc:29:89:14:26:cd:3c:8c:
ac:85:6c:36:d1:b0:cd:61:8f:06:a4:d3:c8:a4:8e:
98:37:12:84:09:3f:db:30:e7:45:bb:fb:41:ea:a9:
fa:de:dc:43:59:a4:e0:01:24:9f:92:be:68:0c:69:
92:de:e3:73:68:4d:bc:78:c0:46:70:00:7e:98:e9:
32:1f:7f:67:a0:af:2e:52:76:7e:5b:52:be:e2:71:
80:14:05:29:5e:54:21:eb:e1:bc:22:56:41:65:8a:
5b:30:86:63:52:75:11:79:b4:66:87:cd:26:e0:dc:
df:1f:55:fc:ca:c7:ec:72:6e:9f:94:dd:38:90:8b:
b8:5b:2e:96:96:b7:30:d9:66:04:73:44:e0:b7:8a:
e8:18:4d:e7:2d:46:1a:c6:0d:fa:25:f8:bb:d4:d9:
73:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4B:4A:81:07:B3:FC:D2:1F:58:A3:38:B4:49:3B:22:EF:04:16:91
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/cktKgQez_NIfWKM4tEk7Iu8EFpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:43:c9:29:1b:9e:f5:75:df:b8:6c:39:df:70:7f:6b:7e:21:
f0:a1:7f:28:bc:08:04:fb:a9:f7:52:28:52:b3:21:38:70:6c:
22:5e:d2:9e:3b:23:80:9b:6e:df:a6:b4:e2:ae:b6:27:fe:a8:
53:0a:d9:b6:07:9f:45:c4:a7:74:93:d8:47:4b:8d:59:3d:96:
1a:e1:7b:c5:82:16:af:56:28:78:ea:de:f9:f4:15:05:c3:03:
08:95:b8:f8:e7:81:28:ac:f6:5e:c2:00:c6:7b:b0:7c:1f:af:
94:01:81:6e:ff:e5:dc:4b:82:0c:fd:bc:bb:0a:66:24:1a:76:
3b:77:21:9c:bf:04:86:b6:d8:99:00:fc:4f:e9:df:ab:58:d4:
3f:1e:72:07:09:22:42:1a:ab:64:ef:e9:6f:b9:7f:37:6e:95:
2f:b1:04:a6:1f:df:9c:87:4f:96:ec:45:e3:5a:a9:41:94:a2:
4f:59:21:40:a4:a2:dc:c1:55:b7:f3:1a:60:71:0f:3a:92:ee:
83:9e:18:fb:54:6c:e8:bb:29:dc:63:33:2b:1a:c0:55:f1:25:
e3:3e:7e:7e:53:2b:05:92:02:03:1d:96:d5:27:43:03:5d:4c:
01:8e:e5:1c:39:17:d9:9b:58:09:b9:07:98:b9:39:0a:72:de:
20:1f:6c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org