Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/uYiQ8vecHMyYgupV6SB0XgxIOk4.roa
File: uYiQ8vecHMyYgupV6SB0XgxIOk4.roa (raw, json)
Hash identifier: NeQbPv4ZKMEFoAgEMSE0M5XLgQia4xFHu6T0JBQLox4=
Subject key identifier: B9:88:90:F2:F7:9C:1C:CC:98:82:EA:55:E9:20:74:5E:0C:48:3A:4E
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0A576325
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/uYiQ8vecHMyYgupV6SB0XgxIOk4.roa
Signing time: Sat 01 Jan 2022 12:58:11 +0000
ROA not before: Sat 01 Jan 2022 12:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210213
IP address blocks: 195.244.146.0/24 maxlen: 24
2a00:1780:dc00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173499173 (0xa576325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 12:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b98890f2f79c1ccc9882ea55e920745e0c483a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b4:4d:23:b4:dd:e2:75:d4:90:56:5f:ad:cc:
87:94:35:77:b9:e8:da:fa:d7:1e:53:da:b4:be:46:
53:7f:09:32:88:ee:65:f5:30:8b:52:3c:d6:92:3e:
5f:4c:1f:94:1e:26:18:0c:84:7f:bf:fa:94:fb:ad:
20:f3:2c:6a:3f:1b:3d:20:6a:28:ce:de:86:ad:65:
99:ec:44:5a:0b:54:49:26:c8:91:20:31:ec:b7:ad:
7b:7d:24:e0:cb:fa:27:26:97:10:cf:61:00:78:65:
f0:44:b1:35:b1:44:03:5a:7d:37:12:ca:ff:4c:2c:
76:98:bb:ea:ba:7b:af:1f:ae:97:26:c4:76:18:d7:
6e:ce:3a:27:63:d9:15:88:84:95:8b:8b:bf:21:be:
07:b5:cb:b1:7f:10:21:81:ed:66:0e:32:c4:14:37:
33:9f:71:8a:68:0d:54:9a:37:de:a2:c9:d0:a0:66:
f0:33:3a:c6:cd:b1:f0:12:9e:49:05:86:eb:ba:9a:
68:b0:d3:80:19:eb:ef:b3:d7:35:ac:c9:c4:ea:05:
b4:2a:56:24:f7:a3:9a:df:57:67:8d:b2:f1:21:4f:
6b:df:a1:57:36:7c:d3:c4:ab:11:8c:18:e8:a8:52:
dc:73:ef:31:04:be:0a:de:8c:66:5b:06:d5:d1:52:
a4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:88:90:F2:F7:9C:1C:CC:98:82:EA:55:E9:20:74:5E:0C:48:3A:4E
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/uYiQ8vecHMyYgupV6SB0XgxIOk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.146.0/24
IPv6:
2a00:1780:dc00::/40
Signature Algorithm: sha256WithRSAEncryption
87:f1:20:f9:9f:3b:71:21:bb:af:3b:b3:03:dd:3b:38:9f:76:
fa:45:80:f4:46:b1:6c:35:86:f3:df:9b:63:85:87:08:3b:fe:
b8:8d:66:2c:26:b4:30:49:77:db:7b:77:43:a7:ac:0e:0f:a2:
7e:4a:b6:2c:94:3c:1f:bd:85:84:a5:89:6e:ff:a6:6a:5c:73:
d0:a0:21:09:eb:0a:72:9b:1a:3c:f7:5e:9e:11:ee:1b:9a:96:
ee:92:b3:cf:0d:ea:9b:79:f8:70:c1:bc:66:d7:1e:47:28:72:
48:7b:4b:7e:7b:41:82:63:0f:15:c0:9e:f2:1c:0c:ef:23:34:
8f:07:30:65:59:d9:80:0a:8a:43:c0:63:07:78:f1:01:13:d4:
40:15:c3:19:53:58:9c:d5:44:81:cd:9c:05:04:08:e4:88:05:
d0:d9:06:6a:d4:5e:20:2d:73:3d:a0:53:01:a5:68:a5:4d:64:
63:3d:27:83:5c:32:fe:fc:46:54:5e:1c:90:54:94:3e:4e:af:
9b:39:0a:05:88:d1:79:a9:06:44:8f:e9:2a:fb:13:05:17:e2:
b6:ff:99:94:27:09:d2:f0:89:10:d2:c4:1a:7b:c3:4c:24:5d:
c0:f5:e8:db:e1:ab:2b:76:b2:b6:84:9c:7f:23:12:d1:3c:2c:
65:30:d1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:07 2024 by rpki-client on console-fra.rpki-client.org