Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/FMNyl1U-mXlxPIhXsb964gGMJpw.roa
File: FMNyl1U-mXlxPIhXsb964gGMJpw.roa (raw, json)
Hash identifier: LUy9Dx7RetypiEg7Qrb/9p0zmaMi7gbLs15WInlw1mQ=
Subject key identifier: 14:C3:72:97:55:3E:99:79:71:3C:88:57:B1:BF:7A:E2:01:8C:26:9C
Certificate issuer: /CN=c128165f8eee185faaf9aa33875f4ee412b10f8c
Certificate serial: 014F4FD4
Authority key identifier: C1:28:16:5F:8E:EE:18:5F:AA:F9:AA:33:87:5F:4E:E4:12:B1:0F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSgWX47uGF-q-aozh19O5BKxD4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/FMNyl1U-mXlxPIhXsb964gGMJpw.roa
Signing time: Sat 01 Jan 2022 13:56:18 +0000
ROA not before: Sat 01 Jan 2022 13:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25541
IP address blocks: 195.245.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21974996 (0x14f4fd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c128165f8eee185faaf9aa33875f4ee412b10f8c
Validity
Not Before: Jan 1 13:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14c37297553e9979713c8857b1bf7ae2018c269c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:42:e0:24:3f:bb:b4:34:f2:7f:a9:2c:10:62:
ec:54:8c:27:35:d5:57:bc:b6:d0:c2:09:1a:40:f5:
58:3c:25:62:d2:19:1e:36:54:e8:99:be:99:71:9d:
9a:80:34:ac:db:24:49:8d:69:2a:c1:5b:45:1c:bb:
b7:c0:a5:5c:3f:fd:58:8c:6f:dc:d2:81:c7:3f:e5:
8b:20:16:0e:9a:92:6a:98:c8:93:52:f1:6c:b3:31:
3e:9e:4e:bc:c4:8a:1c:09:0b:10:80:d0:d2:db:3b:
cd:9d:24:8c:8b:5d:24:33:1f:db:ac:91:6f:3b:26:
a6:81:90:3e:e4:2b:d4:10:c0:58:00:21:70:44:54:
64:67:d1:d7:69:d0:66:d1:80:7e:2f:66:2b:2c:d7:
57:8e:b3:db:60:c5:51:10:11:75:ff:98:b7:11:58:
de:21:a0:2a:45:9f:e1:9c:1f:16:1e:5c:b9:eb:ee:
05:7b:02:98:c0:0e:e7:da:8b:4a:b5:4e:bc:f7:f8:
90:ce:23:16:30:ad:25:cf:cd:e5:c8:45:70:15:a8:
6c:4f:ba:06:78:71:a3:cf:26:a2:d5:81:2d:0a:5f:
cb:be:c7:98:fb:07:7a:b8:76:b4:a4:50:10:03:6d:
2c:bd:0b:b9:21:47:02:75:a1:28:4f:48:d3:e3:a3:
ea:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C3:72:97:55:3E:99:79:71:3C:88:57:B1:BF:7A:E2:01:8C:26:9C
X509v3 Authority Key Identifier:
keyid:C1:28:16:5F:8E:EE:18:5F:AA:F9:AA:33:87:5F:4E:E4:12:B1:0F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSgWX47uGF-q-aozh19O5BKxD4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/FMNyl1U-mXlxPIhXsb964gGMJpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/wSgWX47uGF-q-aozh19O5BKxD4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.216.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:10:9e:5e:dd:85:b8:b9:6d:b8:33:35:84:64:f6:34:b1:72:
8c:dd:09:f0:84:2e:3a:94:14:dc:fa:8d:32:75:be:39:fb:c2:
c7:1d:f1:a3:15:d4:a8:55:cb:66:07:3b:9c:c9:7b:b9:ab:f1:
15:9b:bc:f3:43:97:00:98:75:bf:4a:01:01:62:c2:db:88:dc:
69:a8:20:7b:48:24:29:fe:f8:f1:4e:cd:b1:15:13:ea:f5:6d:
ba:88:cb:d1:a8:34:d7:d9:0f:85:77:66:f3:58:3f:e4:9e:fd:
d8:5a:81:ac:d2:d8:66:3a:dd:b2:3b:67:b2:9e:82:37:4f:ed:
b7:67:bf:a4:4b:05:07:61:cb:9d:57:59:25:46:a9:19:fd:fb:
4b:ac:aa:2e:05:10:7b:0c:dd:50:74:8a:e8:de:9d:92:8d:24:
c6:c0:5a:e3:f1:90:a5:e0:af:0f:6f:0e:d3:e4:31:64:25:3b:
93:e8:64:8f:7e:73:74:a7:27:82:6c:c1:b3:79:fd:2b:e0:e1:
41:95:1b:0c:69:78:ff:95:20:d6:ea:06:98:99:f8:fd:4b:71:
97:5f:ac:17:ab:8b:4d:1f:77:7c:0a:c9:56:90:b6:39:36:29:
47:27:10:96:d5:fb:d5:54:0c:dd:ee:f3:29:bb:d2:6a:54:d6:
87:38:1e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:16 2024 by rpki-client on console-fra.rpki-client.org