Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/1-SWWQk1j2KLM4IXG3MSykxQ7svA.roa
File: 1-SWWQk1j2KLM4IXG3MSykxQ7svA.roa (raw, json)
Hash identifier: 9catN00gPNed4/E/uc612QE6tNU3OBLxSomGpEpHjmw=
Subject key identifier: F9:25:96:42:4D:63:D8:A2:CC:E0:85:C6:DC:C4:B2:93:14:3B:B2:F0
Certificate issuer: /CN=4c54ecce6cbc9c54929eaa4b22b337b0fd9b36bf
Certificate serial: 1B69EDFB
Authority key identifier: 4C:54:EC:CE:6C:BC:9C:54:92:9E:AA:4B:22:B3:37:B0:FD:9B:36:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TFTszmy8nFSSnqpLIrM3sP2bNr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/1-SWWQk1j2KLM4IXG3MSykxQ7svA.roa
Signing time: Sat 01 Jan 2022 05:03:48 +0000
ROA not before: Sat 01 Jan 2022 05:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 195.82.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459927035 (0x1b69edfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c54ecce6cbc9c54929eaa4b22b337b0fd9b36bf
Validity
Not Before: Jan 1 05:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f92596424d63d8a2cce085c6dcc4b293143bb2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6e:0e:14:db:fc:c2:cd:1f:56:f3:4f:5d:7d:
39:6e:f6:28:27:e1:a9:a6:34:ca:ec:01:7f:68:86:
2d:45:74:e4:38:12:7a:49:1c:4a:1f:91:be:1e:10:
72:dc:85:54:29:d1:f8:d9:fb:bf:30:68:75:cb:d9:
d3:63:8f:f7:55:1a:46:db:33:c8:d8:21:4a:dd:02:
6a:b5:be:38:c0:fb:cd:d4:c3:50:a8:62:b8:db:a6:
c0:ae:2e:97:80:06:05:03:b8:63:56:2b:23:49:7e:
3d:2a:fb:d6:5d:47:62:7a:60:b0:a9:24:ea:69:72:
3a:cf:34:c5:db:31:24:41:63:c8:eb:6a:6b:be:9d:
cf:2d:40:5d:58:a2:83:b6:68:9b:7b:10:e2:ca:10:
5e:e2:b6:82:63:24:a2:b3:58:1b:59:fb:f9:78:53:
11:b5:81:29:9a:79:99:91:a5:61:ac:d2:a9:fd:71:
7b:22:ea:79:38:84:91:b8:e2:ea:b1:04:b1:7a:c2:
bc:6d:5e:c9:53:a3:77:12:1d:3b:81:aa:78:2b:61:
14:6f:34:ce:fd:17:4b:a4:be:b1:69:03:f2:d4:c1:
d6:cb:71:e5:2f:42:53:bb:fd:89:f9:28:df:7b:30:
31:d5:69:fa:41:33:f8:39:5f:41:12:9f:fd:65:4e:
44:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:25:96:42:4D:63:D8:A2:CC:E0:85:C6:DC:C4:B2:93:14:3B:B2:F0
X509v3 Authority Key Identifier:
keyid:4C:54:EC:CE:6C:BC:9C:54:92:9E:AA:4B:22:B3:37:B0:FD:9B:36:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TFTszmy8nFSSnqpLIrM3sP2bNr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/1-SWWQk1j2KLM4IXG3MSykxQ7svA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/TFTszmy8nFSSnqpLIrM3sP2bNr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.82.97.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c1:aa:f3:93:cc:a0:e7:a5:cd:c9:ae:6c:4d:de:db:ec:cc:
84:01:ad:3f:47:5d:c5:fc:81:0d:22:a0:d5:0b:30:05:06:ec:
21:3a:74:47:aa:c1:7f:74:f0:af:ec:d9:39:16:52:e4:a6:76:
82:a2:79:8b:c5:62:71:30:22:ac:91:55:f7:84:75:49:17:0e:
62:8c:65:01:c4:50:ba:72:35:87:5c:ed:0c:4f:22:7a:0a:40:
67:96:ae:fb:69:c9:96:27:97:5a:b8:1d:2e:23:8b:38:01:dc:
81:ef:c0:aa:5a:6b:51:d5:d9:d3:ef:76:cf:74:c1:dc:cd:73:
4a:d5:55:e1:b4:e4:a9:68:0b:51:01:4a:58:0a:d8:cf:0b:a4:
1b:a5:2c:30:99:08:b2:60:2d:16:6b:41:f8:b3:bd:5a:2a:2b:
84:58:d9:d1:5a:23:91:5f:85:3a:56:6c:90:b2:4c:a5:f1:fc:
83:5f:42:0d:ff:46:cb:79:13:6d:29:b3:47:a6:57:ba:b1:4f:
fd:56:8e:d7:d2:22:17:48:cd:57:45:a4:f8:58:09:0e:f2:c1:
33:6c:1b:a8:9e:8f:f4:f2:3d:0c:fc:48:dc:8d:a3:57:06:4f:
8c:98:a8:b5:2e:ca:81:f8:28:bb:51:e7:96:61:74:52:f2:00:
2e:b3:0d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:51 2024 by rpki-client on console-fra.rpki-client.org