Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oJw7i32RzhjGIqgk4nFOQbjKYUA.roa
File: oJw7i32RzhjGIqgk4nFOQbjKYUA.roa (raw, json)
Hash identifier: OfvsjQDHK8qJrzNFwDe2IjT3StV0ujtdcP1E/a8KGTE=
Subject key identifier: A0:9C:3B:8B:7D:91:CE:18:C6:22:A8:24:E2:71:4E:41:B8:CA:61:40
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C2738C
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oJw7i32RzhjGIqgk4nFOQbjKYUA.roa
Signing time: Sat 01 Jan 2022 07:55:04 +0000
ROA not before: Sat 01 Jan 2022 07:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 288
IP address blocks: 195.169.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952267660 (0x38c2738c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a09c3b8b7d91ce18c622a824e2714e41b8ca6140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:82:e6:c8:4b:3a:b0:d0:d2:2d:04:33:f1:0e:
80:3f:bc:fb:05:1c:f3:41:fd:28:59:0a:33:70:c2:
1a:4e:ac:58:92:f3:57:00:6c:9b:a9:81:6e:66:cb:
21:fc:e8:10:1f:cd:3a:9a:91:22:62:20:6b:07:85:
d8:41:ac:c1:c6:cf:dd:66:1d:e3:18:ed:cd:d1:28:
12:e3:a1:f9:90:aa:da:9e:70:6d:53:81:36:a0:ba:
67:c4:e4:5a:1d:56:13:1c:2a:8f:43:e4:20:9a:8d:
c6:a6:51:81:11:a0:f8:c7:c8:a7:f7:e1:fe:eb:a2:
0a:57:e9:53:78:85:f7:d7:87:ca:f9:e6:55:df:aa:
c9:eb:bf:ff:63:d1:16:9b:f4:ad:14:57:5b:87:64:
c8:bd:79:02:b3:b8:d7:c2:c7:c4:a9:a5:22:a7:9d:
35:53:ed:ba:38:6d:29:59:2e:7f:ea:ef:df:fa:a8:
5d:d2:93:89:38:fa:3c:70:91:95:05:6f:95:28:e3:
fa:19:ec:93:ca:e9:c5:8b:63:72:87:a0:0d:25:c0:
31:45:a3:91:ab:80:1b:1e:c9:70:66:7d:89:b6:60:
90:c3:78:95:94:e3:11:67:d6:0c:36:82:6b:08:44:
50:f4:20:98:f3:f8:2e:46:3b:81:1c:e0:3b:7d:d1:
4c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9C:3B:8B:7D:91:CE:18:C6:22:A8:24:E2:71:4E:41:B8:CA:61:40
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oJw7i32RzhjGIqgk4nFOQbjKYUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.169.140.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:25:5d:79:ca:fe:c4:4c:4e:8c:02:d8:d3:25:a4:9c:0a:79:
09:21:2b:a2:e5:1e:6e:91:76:92:95:ed:61:b0:75:15:76:a7:
4c:37:4a:8c:a6:d7:c7:fc:50:d6:d8:87:be:27:e8:03:45:27:
e0:52:0a:0a:c2:a8:2d:e1:fd:4f:84:e5:6e:9d:d6:f3:01:85:
fb:b1:43:4e:fb:eb:9a:62:99:a6:41:75:1b:ab:a0:a4:d3:80:
55:a9:da:16:0b:13:2d:61:08:10:1f:3d:45:f7:20:ee:1f:de:
0e:49:62:8f:e0:8c:55:7a:3b:86:1d:3d:fd:e2:b8:5c:16:6e:
17:3b:ba:33:20:b0:d0:c1:6e:a7:95:33:4a:72:e5:2f:87:9e:
6a:c6:1e:a0:7e:9d:2c:27:bc:91:79:04:07:f0:9e:01:cc:d0:
b0:52:ad:c8:67:6b:4f:43:a0:f0:17:b4:55:27:12:06:bc:95:
c8:e6:2b:13:f3:ea:75:d7:e5:c0:f4:76:11:b1:f1:a4:31:21:
6f:66:81:77:a3:c7:8b:e0:1f:e4:c5:76:23:ac:13:2e:81:26:
5d:d7:54:bc:75:05:41:aa:18:ca:ca:29:98:a1:7f:2e:f2:b2:
40:32:d7:34:79:0d:84:01:95:8f:15:16:0a:fd:0a:76:49:c3:
88:c5:ac:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org