Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/PTUoDRfKiwqlX359rqFvJMipMUk.roa
File: PTUoDRfKiwqlX359rqFvJMipMUk.roa (raw, json)
Hash identifier: pxDYUPQkF3uQdM7TvMBjSzr/oC8n+iV4uFXAQ349ttQ=
Subject key identifier: 3D:35:28:0D:17:CA:8B:0A:A5:5F:7E:7D:AE:A1:6F:24:C8:A9:31:49
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 0D8BE9F8
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/PTUoDRfKiwqlX359rqFvJMipMUk.roa
Signing time: Sat 01 Jan 2022 02:57:11 +0000
ROA not before: Sat 01 Jan 2022 02:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 195.13.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227273208 (0xd8be9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Jan 1 02:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d35280d17ca8b0aa55f7e7daea16f24c8a93149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:0f:85:89:ef:cf:f3:e4:92:60:a4:ec:92:
34:56:a0:5b:3f:7a:4e:b9:40:01:a8:66:8f:8e:f5:
68:0d:3d:2f:9c:f2:0a:e2:55:e3:70:ce:5d:2b:cd:
fe:3c:f9:09:b8:e1:60:36:24:3e:3d:94:84:47:e5:
f0:58:e0:ec:ee:74:92:a1:09:6a:12:f9:aa:e1:49:
41:ee:74:1b:bb:b7:29:69:5b:4c:e0:e5:50:ab:32:
29:ff:ef:7d:35:01:93:d2:ef:a9:21:15:04:8e:7f:
33:ee:99:82:4f:ec:fa:1f:1c:be:2d:91:9c:13:fd:
a6:26:b5:20:92:b0:f8:28:b7:68:b0:24:6c:88:8f:
fb:25:e2:e0:5b:44:77:32:ed:41:3a:49:c7:92:a4:
1e:df:55:b1:b7:d1:e7:82:5d:e9:63:28:90:d4:23:
d5:58:78:f9:c1:98:f8:4d:ae:7d:f7:80:6c:bb:32:
04:11:de:ff:75:dd:ed:d8:2a:d7:84:e1:a1:23:75:
85:2f:41:99:70:45:18:96:77:d1:2f:83:9e:b9:86:
31:1c:0e:de:ab:d8:43:51:3e:37:21:c0:3b:71:7c:
26:a9:41:26:01:9d:31:a9:7a:cd:ca:08:d7:33:96:
59:67:fb:63:53:63:58:74:65:2b:2d:58:94:7e:3e:
47:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:35:28:0D:17:CA:8B:0A:A5:5F:7E:7D:AE:A1:6F:24:C8:A9:31:49
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/PTUoDRfKiwqlX359rqFvJMipMUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.13.60.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:01:a2:f0:ba:de:a1:90:f3:fc:fa:e2:c4:57:e9:5e:c7:2c:
ed:5d:67:c3:89:ff:1a:9f:a9:3e:1a:2b:8a:89:f7:f7:7a:c4:
9d:da:5c:92:a4:73:8f:69:57:2b:96:0d:bd:54:a6:95:85:d2:
ce:42:5d:25:36:63:91:d4:b7:09:08:6b:a9:04:6b:ab:71:a4:
7c:65:cf:f3:63:47:af:74:b5:de:76:c6:10:59:19:db:7b:1f:
43:f5:7f:04:f7:fe:b0:bb:32:49:8f:a0:29:78:a0:38:27:b7:
45:11:94:3b:1a:ae:47:48:78:3d:a6:a3:02:31:15:ef:65:62:
66:42:ee:98:e8:7b:1e:9a:d4:57:e9:3c:d1:86:97:2b:e2:ee:
6c:df:0b:b6:41:97:ee:e8:dd:b7:a0:94:9d:d2:5e:a4:27:12:
ed:d5:30:be:44:0e:3c:4c:3c:b4:1b:9e:fb:dc:71:cd:aa:91:
d4:42:51:ce:a3:a2:b6:1b:81:94:f9:84:82:1e:10:52:58:b9:
38:9c:fa:23:eb:44:d1:a5:25:5a:7a:7d:06:7b:ee:e7:a2:83:
00:60:aa:a4:3f:e2:48:6c:19:bb:fb:cb:c9:68:23:4d:9c:37:
0c:5f:01:57:c5:f6:8e:78:80:37:be:e5:a2:47:03:d5:f4:89:
9d:7d:c3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org