Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/AkHsdO3mf4fPZRZvTyiQecADGOo.roa
File: AkHsdO3mf4fPZRZvTyiQecADGOo.roa (raw, json)
Hash identifier: CfDAK/c8RCheSv29NnVn17B0mHA32Ws7kq+QYPk1onw=
Subject key identifier: 02:41:EC:74:ED:E6:7F:87:CF:65:16:6F:4F:28:90:79:C0:03:18:EA
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 06EAE99E
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/AkHsdO3mf4fPZRZvTyiQecADGOo.roa
Signing time: Sat 01 Jan 2022 14:05:46 +0000
ROA not before: Sat 01 Jan 2022 14:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48806
IP address blocks: 195.238.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116058526 (0x6eae99e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jan 1 14:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0241ec74ede67f87cf65166f4f289079c00318ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fb:06:15:75:87:47:76:b8:7e:93:a1:27:bc:
de:1b:57:4a:6f:06:96:09:78:1b:22:0f:ec:86:f0:
fe:3b:e7:27:f3:ad:ac:11:1f:5f:66:49:58:7a:74:
df:22:9d:3f:54:4d:a0:26:6d:f3:f3:9a:e6:d0:7b:
59:9f:61:cf:f9:17:ca:fd:85:e4:0d:bd:44:fe:dd:
81:ac:87:8c:35:f8:f7:97:b2:6e:f2:2b:58:5c:84:
2b:ac:db:4a:a3:8d:5e:09:2b:0b:b5:20:bc:aa:e8:
5b:c2:ea:56:80:d0:22:59:32:41:7d:e9:86:86:ab:
22:d7:0f:92:d6:54:29:20:d6:c0:45:f9:a4:6c:97:
fe:7a:b5:99:03:cc:d7:4e:97:62:39:aa:10:5e:13:
50:fd:eb:93:db:a0:05:95:43:4c:e3:0d:f9:50:89:
f1:ce:84:1f:68:d6:e2:22:04:11:88:38:25:c9:49:
69:ce:77:eb:ce:6b:03:e9:e3:e3:44:01:ed:b5:54:
16:5e:d9:21:70:d0:fe:87:70:46:57:11:ba:8f:35:
4b:3c:6d:89:7f:1a:6f:91:6d:21:ab:fe:bb:a7:c2:
79:3f:1a:a6:23:f2:18:71:4f:78:8c:3f:7d:75:14:
57:52:03:c4:66:07:d7:dc:cc:2f:46:cf:85:cd:2d:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:41:EC:74:ED:E6:7F:87:CF:65:16:6F:4F:28:90:79:C0:03:18:EA
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/AkHsdO3mf4fPZRZvTyiQecADGOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.94.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:a0:d4:53:2e:bd:45:18:74:9b:03:42:9e:da:dd:7c:5c:c6:
06:81:88:0a:26:e0:60:59:02:d2:4a:e9:6f:c9:ea:56:1f:c4:
cb:cc:5c:0c:f4:f4:11:a9:4e:25:02:a8:96:6f:99:83:76:9e:
57:16:eb:24:b5:20:85:04:c7:e6:c5:91:a9:47:3e:27:46:41:
e1:b9:d7:b4:5e:d3:38:85:7c:1f:39:4c:10:60:c4:6f:26:f7:
da:7f:63:60:39:b4:b7:03:77:34:b2:1f:6d:52:0f:bf:1e:8c:
6c:63:90:28:11:ab:41:09:2d:91:04:75:8c:d8:94:b3:98:19:
cd:ef:8f:51:c3:d7:8b:33:f9:64:f3:36:47:fd:be:59:19:a0:
e9:ed:88:f5:d9:f5:25:10:4f:7a:9b:7c:86:9e:f3:e9:8d:78:
68:ce:5b:cc:83:1b:99:70:d2:a9:71:6a:63:06:fa:e6:8d:ba:
42:55:b1:fc:de:1e:45:3f:10:e0:d0:10:7e:68:a9:be:23:15:
3f:d9:53:e3:f3:ea:70:8a:6c:c4:75:99:c5:24:f0:5f:7e:b0:
c5:05:40:25:d7:eb:d4:aa:a7:a5:1a:ec:ec:19:8e:22:b0:0a:
b6:57:ca:c9:9c:b8:38:dc:dc:1b:51:18:83:78:a5:59:ff:03:
78:f3:7c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:33 2023 by rpki-client on console-ams.rpki-client.org