Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/bjxhCpgU3CKAW3QqEE9Rmlrxk8s.roa
File: bjxhCpgU3CKAW3QqEE9Rmlrxk8s.roa (raw, json)
Hash identifier: kxjmYN4OhWHDFmUtIkXu2TEx+vUCpRU8HBLiWqtN6Bk=
Subject key identifier: 6E:3C:61:0A:98:14:DC:22:80:5B:74:2A:10:4F:51:9A:5A:F1:93:CB
Certificate issuer: /CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Certificate serial: 06B088D4
Authority key identifier: 9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/bjxhCpgU3CKAW3QqEE9Rmlrxk8s.roa
Signing time: Sat 01 Jan 2022 10:00:44 +0000
ROA not before: Sat 01 Jan 2022 10:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5539
IP address blocks: 195.230.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112232660 (0x6b088d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Validity
Not Before: Jan 1 10:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e3c610a9814dc22805b742a104f519a5af193cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9d:a1:2c:d6:06:99:c8:81:ab:79:ad:32:b0:
f9:c8:b7:c6:ca:3f:c5:73:6b:dd:d4:8a:f8:88:2f:
bd:36:9c:1e:e0:3f:66:d3:37:c3:67:ff:94:8c:03:
66:7c:fa:e6:25:7b:28:8a:af:1f:87:73:60:ab:e3:
f8:24:72:69:c9:17:56:72:c5:cc:9b:30:91:50:20:
b5:d1:e2:d6:f4:87:93:2a:ea:8b:9e:95:4d:0c:8d:
d7:60:ee:f7:bb:d9:9b:e7:3c:a4:8a:f9:7e:35:ee:
83:ec:81:a0:33:4d:9c:bf:e0:5a:e2:2f:80:c2:06:
17:42:85:1c:6d:f9:b9:4a:b9:38:14:4b:84:04:25:
cc:b9:98:a0:32:cd:df:e9:52:c9:6a:f5:35:f6:5f:
1f:88:c0:8c:eb:7c:26:8b:74:3f:34:ce:19:90:d6:
f2:6d:2d:14:97:97:78:e1:31:50:1c:a3:f7:39:13:
38:e8:bf:cd:96:94:50:03:4d:52:18:10:7a:5f:8b:
a5:59:0c:97:5a:21:c9:46:51:93:06:4f:9e:97:2b:
81:4b:65:70:ab:2c:9e:34:6c:99:c2:a7:da:c1:27:
b5:23:bf:9e:77:ac:85:be:1f:e4:08:6d:c3:bb:0f:
83:45:f9:eb:cb:9a:3e:50:61:47:0c:87:95:50:50:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:61:0A:98:14:DC:22:80:5B:74:2A:10:4F:51:9A:5A:F1:93:CB
X509v3 Authority Key Identifier:
keyid:9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/bjxhCpgU3CKAW3QqEE9Rmlrxk8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.114.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:65:4f:93:52:06:2a:75:67:a0:8a:c1:c2:36:8a:5c:10:fa:
bf:cf:54:e6:46:68:33:d2:c6:84:53:0b:b7:9d:0c:59:11:84:
fc:2f:03:dd:7a:92:80:6b:6e:59:3b:97:cf:5d:4b:f1:bd:df:
a2:2f:27:a6:06:c8:92:0e:36:6e:2a:f8:e3:46:92:5b:be:a2:
61:b9:cf:14:e6:5f:ca:c8:29:2a:b3:68:d3:a6:54:bd:1f:80:
06:c3:2c:9c:07:51:3a:88:c6:be:18:9b:47:01:4f:1a:6f:f6:
c6:3f:8c:c8:33:30:8f:c3:d5:c6:73:88:ff:c5:89:92:3a:02:
22:2d:bd:7a:46:60:1f:b9:b3:49:00:06:ac:f2:1a:b6:e6:3f:
f3:58:8c:ee:59:e1:94:5e:ed:9b:66:9d:8a:bb:d7:cd:4c:6e:
a9:6a:b0:f9:19:8c:26:e8:86:54:2e:72:83:8a:53:d1:ce:e9:
40:b7:9d:05:4b:4c:bb:f9:32:74:98:88:6f:e6:55:49:3e:af:
0a:37:30:1d:e8:a3:4c:9a:a6:30:1c:ca:13:99:8a:8a:2a:51:
3a:42:13:d8:95:1a:ae:b1:39:d0:cd:9f:9f:86:19:00:27:4e:
f0:97:5b:3c:ac:6f:e4:93:02:d4:da:0c:a4:42:11:8c:3f:22:
16:8b:1d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org