Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dewQokAnNxBjcxm4BIM7Sm8iTGs.roa
File: dewQokAnNxBjcxm4BIM7Sm8iTGs.roa (raw, json)
Hash identifier: +gYkiqzsPD6obpjV0FoLt/cf0YS2DL0xTTa+Zx/iheQ=
Subject key identifier: 75:EC:10:A2:40:27:37:10:63:73:19:B8:04:83:3B:4A:6F:22:4C:6B
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01848520D05145DD1CDDA959B7DB6413B7E9
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dewQokAnNxBjcxm4BIM7Sm8iTGs.roa
Signing time: Thu 17 Nov 2022 10:27:11 +0000
ROA not before: Thu 17 Nov 2022 10:27:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51431
IP address blocks: 213.195.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:20:d0:51:45:dd:1c:dd:a9:59:b7:db:64:13:b7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 17 10:27:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75ec10a240273710637319b804833b4a6f224c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f3:f6:99:d5:07:4a:8a:8f:b8:f4:9d:e7:ad:
a6:6d:29:b2:ac:d8:3f:5a:9a:a1:a1:ea:57:43:87:
3b:16:59:ce:04:7a:24:20:b8:34:a3:0d:eb:90:66:
bf:7e:82:56:7c:a8:ef:43:6a:32:b3:1e:9a:b0:06:
41:76:83:9d:0e:44:06:9a:7e:ac:04:75:ec:f9:21:
23:1f:83:52:05:91:72:13:a6:d1:e2:87:8c:c3:20:
5e:39:34:08:f0:e5:7d:cd:23:ad:ca:d6:08:15:a7:
92:9f:e9:42:80:ad:0e:a3:80:c7:8d:b4:46:93:70:
9b:06:58:83:3b:0d:3d:c3:20:25:5d:06:46:00:c7:
82:b0:c3:ff:7c:db:f5:01:60:d7:f5:b4:5c:0d:ae:
b4:25:a0:0b:6d:05:a4:99:88:d1:66:54:d4:3e:4f:
be:a5:1c:a6:6a:6e:b8:2e:ae:2b:6d:08:f0:49:a4:
5d:72:33:31:74:2b:af:e6:bf:51:90:ac:1b:55:26:
7f:da:dd:f2:70:ba:e7:b5:40:88:e2:ea:50:8e:b2:
ba:8c:3d:44:af:40:28:8c:f5:c8:da:72:5b:3f:15:
9c:36:21:57:2e:0a:f6:f9:4d:66:58:26:6f:1e:e9:
f0:1c:04:3a:67:c5:94:d8:5d:4c:0d:8c:33:e6:1a:
1e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EC:10:A2:40:27:37:10:63:73:19:B8:04:83:3B:4A:6F:22:4C:6B
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dewQokAnNxBjcxm4BIM7Sm8iTGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
46:75:6e:2d:5b:fa:35:6d:86:63:bd:2d:13:6a:5f:b8:4e:de:
40:d3:92:32:d8:1e:de:e8:ff:ca:be:cc:dc:95:b4:21:16:b0:
7b:bb:fd:46:37:ef:7f:6b:10:7e:d1:e2:14:73:82:44:de:ef:
ba:f2:e1:ec:57:d3:0c:7f:3d:e5:8e:a0:82:9f:d7:79:29:74:
fc:68:9e:b8:79:cb:53:4a:a6:51:02:28:37:7c:64:e7:bb:ae:
41:82:0b:9d:d2:15:0e:8c:fd:d4:d7:60:79:81:bd:df:43:e1:
ec:08:95:3a:b0:12:95:e7:b8:46:88:89:a1:5f:fb:10:c6:d6:
cc:63:7c:37:a0:db:15:23:80:ee:42:42:ac:87:a6:20:51:be:
4f:f6:e4:2b:e3:70:59:e0:cf:cf:0d:7c:39:8c:b4:e4:60:da:
6f:7e:9a:79:16:45:d2:6c:fc:d4:92:92:8d:c3:fd:03:af:a7:
15:1c:9a:50:09:c2:77:c2:e3:bf:9b:b7:15:59:10:c7:8b:e9:
47:74:0c:e1:35:6a:6b:20:fc:f9:e1:0b:57:f2:50:56:b7:5b:
de:fe:c2:47:93:7e:99:13:a1:be:62:ed:54:c7:29:32:64:42:
40:4c:ca:70:0d:0c:6e:bb:1d:a6:e0:0c:27:06:67:b6:60:1a:
b3:9b:10:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org