Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/IPfgh1d3lEmAILex3NN-RPeie4A.roa
File: IPfgh1d3lEmAILex3NN-RPeie4A.roa (raw, json)
Hash identifier: eoe31wnM8imOhfMHf/euD1CDoyTbT7cFcZnv4g2k2LY=
Subject key identifier: 20:F7:E0:87:57:77:94:49:80:20:B7:B1:DC:D3:7E:44:F7:A2:7B:80
Certificate issuer: /CN=c7f6ad83f25c2886a25857fb515d4559527c46f7
Certificate serial: 020B881C
Authority key identifier: C7:F6:AD:83:F2:5C:28:86:A2:58:57:FB:51:5D:45:59:52:7C:46:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/IPfgh1d3lEmAILex3NN-RPeie4A.roa
Signing time: Sat 01 Jan 2022 03:52:04 +0000
ROA not before: Sat 01 Jan 2022 03:52:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59545
IP address blocks: 195.5.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34310172 (0x20b881c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f6ad83f25c2886a25857fb515d4559527c46f7
Validity
Not Before: Jan 1 03:52:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20f7e087577794498020b7b1dcd37e44f7a27b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:40:77:92:3f:c4:e2:77:77:d5:22:47:5f:
c8:7d:59:a2:8f:c6:77:41:f6:1e:4f:4e:cb:58:a3:
b9:28:e8:e8:4d:bb:b0:b0:91:de:7c:4c:3b:52:b5:
0a:e0:e6:89:e6:0d:c9:c8:24:ad:39:96:1a:f8:48:
44:e5:48:94:42:62:fc:21:c8:c2:97:9a:5c:aa:af:
a4:9a:da:9e:a4:1e:2b:6c:5d:07:d0:e4:c2:26:2c:
9d:b5:70:0f:df:5e:13:6f:c2:f1:d6:f5:5a:eb:4a:
fc:3d:01:43:29:e7:29:80:c8:b7:0f:93:11:89:33:
17:31:2b:1e:1a:d3:10:08:80:67:1c:b0:99:5c:0d:
8c:cf:cf:09:25:3a:15:8d:1b:4e:9b:1a:7d:c2:9c:
70:2f:70:ed:ee:2f:0b:86:bf:a0:19:30:d9:98:d3:
c6:f8:a8:4f:88:e3:0c:76:06:ce:4a:62:ef:a0:88:
65:c6:fc:58:5b:77:e1:8e:17:69:30:5d:1c:f4:d1:
29:16:8b:1a:a9:83:31:9c:5c:b8:64:6b:19:b4:c2:
80:03:78:7c:71:f8:54:2b:4f:31:ad:f9:13:f4:54:
50:9f:e7:3e:25:2c:11:1e:a0:0c:7f:b9:b2:6e:5e:
4e:c7:06:f3:f5:6a:f1:fe:ce:89:cb:b6:9b:1c:06:
78:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F7:E0:87:57:77:94:49:80:20:B7:B1:DC:D3:7E:44:F7:A2:7B:80
X509v3 Authority Key Identifier:
keyid:C7:F6:AD:83:F2:5C:28:86:A2:58:57:FB:51:5D:45:59:52:7C:46:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/IPfgh1d3lEmAILex3NN-RPeie4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.163.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:2c:e0:76:bc:68:a9:05:b2:2a:0a:fc:85:ae:a2:16:dd:6b:
5f:8a:2e:68:8c:e9:06:7c:e5:c9:42:eb:e1:e7:bd:23:f7:fe:
6a:f1:a8:f9:30:c5:fa:a3:55:ff:f8:c6:12:b9:08:f9:66:5c:
c2:f4:d2:cb:51:c0:8e:f1:30:44:4c:7a:0d:d7:12:b1:2d:44:
74:90:8d:94:4f:6f:97:58:55:59:5b:09:98:ef:80:a2:4e:36:
e3:c8:87:5c:ec:36:a8:ee:88:c0:3a:d6:ec:a6:26:b3:14:58:
7e:f4:8c:d7:74:dc:38:0e:8f:93:42:6d:d1:b3:72:b4:99:a1:
52:35:52:98:85:3b:53:c8:c9:22:ef:1e:35:90:18:a9:4b:73:
13:e4:0f:83:cc:05:14:be:3e:1b:6f:8d:72:7d:67:b8:49:58:
54:47:f4:22:21:17:d5:14:79:f6:e3:c3:e0:fa:dd:9c:e6:f9:
ce:6c:39:3a:f1:cf:64:22:ad:6d:15:2d:1e:1c:97:d3:1d:81:
af:4c:37:d7:da:9d:a8:99:ce:93:72:16:44:37:bb:36:9a:83:
31:9e:20:b2:57:0e:83:04:1e:46:64:bd:c1:da:3d:af:ee:1b:
34:cb:05:e2:e8:32:86:e8:1f:9a:55:72:8b:81:9b:8b:c1:21:
de:8d:15:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:12 2024 by rpki-client on console-ams.rpki-client.org