Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/UxBiIQeOhN9CEOWLZsqz6CMJ-Jo.roa
File: UxBiIQeOhN9CEOWLZsqz6CMJ-Jo.roa (raw, json)
Hash identifier: L8GJ6GvWBy4LGYyLAmKeZllrmAJ/wgTKka67aXbBg60=
Subject key identifier: 53:10:62:21:07:8E:84:DF:42:10:E5:8B:66:CA:B3:E8:23:09:F8:9A
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 330C5BB2
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/UxBiIQeOhN9CEOWLZsqz6CMJ-Jo.roa
Signing time: Sat 01 Jan 2022 09:58:42 +0000
ROA not before: Sat 01 Jan 2022 09:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212790
IP address blocks: 195.114.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856447922 (0x330c5bb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53106221078e84df4210e58b66cab3e82309f89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b0:fd:7c:34:c6:b2:ee:db:5c:58:51:fb:95:
06:25:43:e0:85:c6:80:fb:d8:68:f0:ee:03:f3:cd:
f6:fd:07:ff:44:70:ea:34:69:5f:e0:1d:f0:c5:e4:
b2:c9:15:8e:37:e1:c2:75:99:06:72:c3:9f:6d:94:
fd:b2:3f:51:44:d4:63:82:20:4a:62:82:30:68:43:
d8:d1:bd:33:a7:1a:12:d1:05:6d:d7:87:54:fe:5c:
38:c3:b9:53:45:fd:40:ba:d6:a8:78:60:95:38:4e:
68:3d:df:17:ce:b3:36:e9:31:45:db:91:8c:1c:56:
f7:cc:28:cf:5f:80:8d:6b:f9:b5:66:38:18:3a:ce:
50:7f:4d:a9:9b:93:3f:2e:d8:07:b4:d5:a4:08:33:
ec:ae:39:a3:c3:1c:07:eb:74:09:c5:73:3c:bb:c4:
67:07:05:1b:4b:6a:1d:9c:b1:dc:a5:07:f7:a9:16:
a6:ee:14:73:b4:38:81:d5:f7:db:b7:d5:f5:87:30:
c6:25:94:a4:d0:bc:e4:da:27:ba:9d:08:c4:4e:a0:
78:74:bd:77:9f:ab:9a:31:42:de:af:73:d8:c1:a2:
c1:ef:a7:ca:14:70:03:ce:33:54:c6:39:ec:91:ce:
e4:e4:a7:38:f9:51:e5:4b:17:3d:df:6d:08:08:f4:
71:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:10:62:21:07:8E:84:DF:42:10:E5:8B:66:CA:B3:E8:23:09:F8:9A
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/UxBiIQeOhN9CEOWLZsqz6CMJ-Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.136.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a3:1c:44:08:aa:6c:11:5b:fa:ae:05:4d:6e:3d:73:22:eb:
34:52:83:5c:28:09:07:75:33:7c:91:38:ba:fa:07:de:87:6b:
7b:f2:74:94:3c:24:f7:43:a3:48:1b:5b:69:ed:a8:9a:70:e5:
e3:98:ba:78:26:a1:4d:86:26:76:0f:ed:c0:b2:b3:21:70:e0:
79:3b:8e:16:fe:45:00:46:97:25:ae:47:8f:e2:49:ea:8a:d9:
a7:a6:3a:4d:ff:cf:ba:5a:af:9c:72:2b:53:86:17:46:42:70:
1f:ca:38:2e:e9:5a:5c:b9:83:33:c2:46:3e:da:56:2b:ea:e5:
c6:19:a2:bb:71:28:60:c0:e3:5c:3d:a1:11:0e:38:bb:80:93:
bb:6b:ac:3e:9d:3b:8d:27:80:a5:54:36:57:de:f3:8f:82:b6:
97:2b:6d:2b:4e:5a:74:8f:b8:a6:df:b5:23:92:5e:6e:ec:04:
d6:35:33:b7:bc:cf:b9:ae:05:5b:a1:73:11:b7:5f:4b:9e:c2:
48:a4:55:aa:28:67:7c:22:bb:96:a2:fc:7c:b1:7a:98:8a:5c:
54:f7:1e:ff:6e:68:f2:cf:6b:28:26:58:52:af:6f:58:dd:01:
80:ae:11:b1:55:8f:96:ab:22:08:c2:e6:c8:5f:56:10:61:3d:
ca:99:91:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org