Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/9tOTbS9RgnQi19KdTfheIRl88O8.roa
File: 9tOTbS9RgnQi19KdTfheIRl88O8.roa (raw, json)
Hash identifier: uNsO011K9oj+R6Vjp5tmiKR71q19MTX31RYUILEHKA0=
Subject key identifier: F6:D3:93:6D:2F:51:82:74:22:D7:D2:9D:4D:F8:5E:21:19:7C:F0:EF
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0AD76316
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/9tOTbS9RgnQi19KdTfheIRl88O8.roa
Signing time: Thu 24 Feb 2022 19:10:45 +0000
ROA not before: Thu 24 Feb 2022 19:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24972
IP address blocks: 195.244.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181887766 (0xad76316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Feb 24 19:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6d3936d2f51827422d7d29d4df85e21197cf0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:12:94:c1:26:d3:a0:be:c6:f5:c5:e9:57:34:
ef:a8:51:6b:9f:13:c2:e6:22:6b:9c:3b:d9:64:39:
cb:72:25:09:f3:80:75:3e:93:b6:f8:12:92:76:b1:
99:c5:c8:ea:68:d9:eb:5a:70:27:76:81:21:0c:c5:
1b:c4:1c:46:62:7b:6f:06:fa:7c:1d:5e:ec:b7:83:
6b:80:e5:4a:86:cd:e4:15:ee:a1:bb:88:b9:21:9a:
14:4d:ff:25:ae:74:74:18:4e:1a:59:f4:04:2e:e2:
9c:6d:7e:19:75:7a:ea:68:4f:b5:3d:4f:fd:eb:9e:
1a:5d:0b:de:5a:a0:9f:6b:6e:d6:a9:2e:fb:e8:1c:
f4:ee:70:c7:03:06:c7:f0:ac:65:53:72:fa:ec:f6:
85:a7:2e:b9:97:bf:f4:9a:2f:9a:e5:0e:ec:6a:e1:
47:a0:b2:9b:98:67:66:b0:ea:f9:2b:84:c8:bf:c6:
88:1a:c2:2f:a8:60:45:2a:90:2e:5e:77:3d:ea:a7:
15:0e:ac:72:60:04:a6:fc:b8:4c:95:67:7d:a2:cc:
da:48:5e:4f:cf:c9:6a:57:a5:d0:9b:fd:34:ae:40:
00:db:4a:6a:d8:f8:88:1c:b3:25:a2:f1:68:13:bd:
64:cb:d4:8f:9e:4f:61:d5:a5:ef:cc:f6:06:c6:e8:
b6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D3:93:6D:2F:51:82:74:22:D7:D2:9D:4D:F8:5E:21:19:7C:F0:EF
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/9tOTbS9RgnQi19KdTfheIRl88O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.157.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:1a:2f:64:24:f0:10:af:b3:c8:6c:e1:fb:90:45:8b:b6:02:
5d:2d:2a:09:f5:5a:24:99:de:db:17:f5:97:1b:a8:81:8f:7a:
04:52:05:cd:64:5d:2b:7b:8a:2f:02:9c:f5:04:14:8a:6a:d0:
1f:00:b6:e3:f7:6a:a2:0b:3b:35:ac:14:9f:22:41:7e:44:7b:
77:ba:a1:a7:30:1f:cb:a5:7e:fa:46:1d:e3:ce:c2:50:2b:a3:
d8:39:61:fc:68:7d:21:91:de:60:32:a8:ff:5a:8e:6d:b4:ce:
f6:e3:02:69:eb:68:50:a2:93:53:7a:98:ee:33:f2:ce:4b:b6:
23:34:4a:ba:5d:df:d7:18:3c:47:04:1e:82:2c:84:45:5c:b0:
f4:59:2f:01:71:3b:78:5b:87:cb:c5:f3:68:06:de:8a:bb:8a:
ca:60:2b:25:91:fb:62:fb:4d:7b:c4:68:88:ad:cd:4f:1d:b1:
86:78:30:79:ed:b6:b0:e2:e5:ce:5c:25:97:ed:85:de:46:86:
45:bb:80:b8:4c:11:75:0f:50:49:bd:05:be:14:94:4e:55:bf:
1f:27:e7:b8:11:8a:8f:25:38:c4:88:f1:76:00:33:89:b4:9e:
62:2e:25:4e:5c:a7:87:13:0a:34:34:c2:c7:ad:19:3e:85:3d:
37:4b:e2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:51 2023 by rpki-client on console-fra.rpki-client.org