Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/lUAyHHkwvJ4L0BUdPYGNdj1vKDo.roa
File: lUAyHHkwvJ4L0BUdPYGNdj1vKDo.roa (raw, json)
Hash identifier: lCWU//GonRv3EACgks5ZAnS9NGMGQHmVWz7QsrMfyuk=
Subject key identifier: 95:40:32:1C:79:30:BC:9E:0B:D0:15:1D:3D:81:8D:76:3D:6F:28:3A
Certificate issuer: /CN=df3b796c3fc559bfaf4b76550894cff4d30b9b7e
Certificate serial: 06911148
Authority key identifier: DF:3B:79:6C:3F:C5:59:BF:AF:4B:76:55:08:94:CF:F4:D3:0B:9B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3zt5bD_FWb-vS3ZVCJTP9NMLm34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/lUAyHHkwvJ4L0BUdPYGNdj1vKDo.roa
Signing time: Sat 01 Jan 2022 06:52:20 +0000
ROA not before: Sat 01 Jan 2022 06:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 195.42.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110170440 (0x6911148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3b796c3fc559bfaf4b76550894cff4d30b9b7e
Validity
Not Before: Jan 1 06:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9540321c7930bc9e0bd0151d3d818d763d6f283a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e0:5c:0e:0b:b5:e3:fa:92:8d:78:43:56:35:
52:72:04:f4:35:91:82:ae:b5:fa:4c:3f:a3:ca:10:
e7:81:f1:77:a3:f0:e5:b4:0c:3c:8f:a6:22:e1:38:
19:d5:d9:31:6f:27:1d:00:b8:60:c5:1d:83:26:cc:
82:45:fb:db:f9:99:4c:ff:1c:53:4c:f6:0b:16:1a:
aa:72:5f:e3:a9:0f:db:04:ca:cb:c9:f8:07:23:38:
99:6d:4f:2e:d1:64:65:47:29:e2:af:bd:70:cd:31:
5a:97:98:c5:e2:4f:ed:87:76:ca:b9:85:09:35:d7:
93:ce:52:e6:a1:b8:f7:0e:79:ba:2e:26:a4:1c:53:
c9:ab:8e:e1:8f:98:cd:70:7c:66:41:e1:df:f9:17:
cd:f0:21:8e:5d:f0:4b:d4:4a:b6:d8:81:17:2c:a1:
13:e1:2d:71:d2:0c:88:42:92:31:95:fd:72:33:a3:
5d:92:e0:f7:a9:63:b8:06:10:0d:02:39:7d:81:ad:
93:70:fb:e5:0d:20:fe:8a:96:df:e1:74:f1:f3:f4:
87:5e:02:62:db:60:0c:11:f2:bd:e7:72:2b:dc:5b:
70:75:ca:d1:ed:8c:ee:fd:65:48:9d:ff:0a:e6:57:
5d:cc:a8:63:f3:35:81:29:aa:c1:92:de:55:57:14:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:40:32:1C:79:30:BC:9E:0B:D0:15:1D:3D:81:8D:76:3D:6F:28:3A
X509v3 Authority Key Identifier:
keyid:DF:3B:79:6C:3F:C5:59:BF:AF:4B:76:55:08:94:CF:F4:D3:0B:9B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3zt5bD_FWb-vS3ZVCJTP9NMLm34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/lUAyHHkwvJ4L0BUdPYGNdj1vKDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/3zt5bD_FWb-vS3ZVCJTP9NMLm34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.101.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1d:6c:1b:36:e1:97:d3:f9:10:1d:cd:fe:d8:72:a5:9d:05:
19:bf:eb:6f:6d:b7:2a:4e:3d:0c:d5:0b:2f:ab:e4:35:f8:1f:
0f:26:33:60:66:d2:30:33:99:0f:cb:7d:a3:85:51:2f:fc:2b:
9a:c2:51:27:f6:42:55:61:a0:53:da:03:f4:77:84:5e:9c:96:
17:53:f7:de:58:2c:62:7c:2e:fa:1a:80:e2:45:80:4a:d8:af:
26:e9:1b:d8:ce:49:1f:3a:77:e9:c3:8d:d9:19:28:cf:3c:f8:
c0:f9:bd:ae:af:8d:83:7a:bd:ee:8e:49:15:30:e2:b6:c4:be:
e4:87:13:ed:b1:cc:7d:15:8e:d7:e1:28:98:e6:4e:db:0f:e9:
50:f2:c3:f0:25:5b:a1:64:45:4c:7e:e6:da:b9:34:f6:5c:bd:
b4:ea:9f:f0:98:31:5e:98:0b:dd:47:21:0d:4c:55:d4:9e:85:
28:b9:b1:60:f9:0e:6d:7e:9f:e1:e6:2b:f6:8c:c1:16:b9:4e:
a6:10:1f:8a:95:da:93:f8:91:7d:2a:ad:56:00:02:69:01:54:
36:eb:3f:9a:f9:a5:b2:41:fd:42:78:a5:42:9f:70:df:4f:d4:
06:ce:3a:fb:85:34:9c:f3:29:e4:da:6a:0c:a4:0f:8b:7d:c1:
3e:f6:0c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:32 2023 by rpki-client on console-fra.rpki-client.org