Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/4w8vilWvGcXebnZj__qEgMxKokM.roa
File: 4w8vilWvGcXebnZj__qEgMxKokM.roa (raw, json)
Hash identifier: +ZAjQdELVSk/jp2s8e64t3bcrWv8RRyCRqL/b5fYAzE=
Subject key identifier: E3:0F:2F:8A:55:AF:19:C5:DE:6E:76:63:FF:FA:84:80:CC:4A:A2:43
Certificate issuer: /CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Certificate serial: 0183D74EEA866F0A41A5DA6CD917C4DE93B1
Authority key identifier: 47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/4w8vilWvGcXebnZj__qEgMxKokM.roa
Signing time: Fri 14 Oct 2022 16:23:36 +0000
ROA not before: Fri 14 Oct 2022 16:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31708
IP address blocks: 195.244.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d7:4e:ea:86:6f:0a:41:a5:da:6c:d9:17:c4:de:93:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Validity
Not Before: Oct 14 16:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e30f2f8a55af19c5de6e7663fffa8480cc4aa243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:e5:d8:15:92:d0:38:63:04:ca:e2:8d:6a:
5f:c0:0a:46:35:65:12:0e:06:90:bd:54:3c:82:47:
2a:e4:00:8f:65:b6:8b:b6:69:24:2f:32:9b:2a:67:
62:a0:c8:76:89:fd:00:c4:79:6b:4e:9b:48:ef:ee:
20:c6:a4:dd:28:7f:16:8e:61:02:4e:94:d7:a8:8c:
93:2c:8a:55:17:3c:8f:3c:4c:2c:d7:d5:ec:44:ab:
d6:f0:d2:5e:42:d6:4f:94:84:e6:6d:9b:75:a1:19:
15:3c:63:4f:d8:b2:90:45:1c:11:bb:c4:ad:ab:87:
3f:f7:c8:c6:88:b5:8c:41:cb:06:43:32:7a:8d:fa:
62:d3:f8:ec:0e:a0:c0:27:f1:94:33:9a:d8:43:cc:
a9:8d:ba:f1:34:05:75:2b:f5:8c:41:09:ad:35:86:
5a:09:07:7e:ef:f6:6c:eb:78:76:8a:2f:91:08:57:
b7:05:96:04:f3:8b:61:78:dd:01:67:6b:41:eb:1b:
18:8a:53:3c:8f:79:d2:60:0e:0c:11:b5:74:ed:73:
4f:8c:82:d5:f7:2e:b9:85:15:dd:15:7d:c1:1d:b0:
b0:d0:b5:d3:6e:b5:3d:cc:7e:b6:3a:28:8f:62:8f:
05:93:5e:ca:f0:38:05:1d:9e:ad:75:6f:a5:f8:bd:
70:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0F:2F:8A:55:AF:19:C5:DE:6E:76:63:FF:FA:84:80:CC:4A:A2:43
X509v3 Authority Key Identifier:
keyid:47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/4w8vilWvGcXebnZj__qEgMxKokM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:91:0f:e9:18:21:95:a2:b9:1e:ea:28:fb:e7:88:88:ca:c9:
d5:68:17:bf:ee:be:71:22:41:50:d9:a3:11:1c:9a:6a:79:b1:
32:16:2d:0d:cc:48:9d:30:58:0a:cf:b4:a8:5c:b1:16:69:36:
d2:53:e1:a7:59:8d:f9:04:8a:44:83:a9:bc:b3:11:6a:ae:3d:
5a:16:4b:04:b6:85:f1:d2:4c:84:a4:8b:81:d5:e7:ac:92:e1:
2f:83:ca:78:8a:95:72:91:34:91:cb:08:bb:6b:90:76:30:6e:
ad:49:e9:3e:26:97:8b:97:cd:cc:c4:6e:a5:b1:e9:05:5d:3d:
fc:d7:a5:26:57:b5:76:ef:bc:be:df:c7:57:9f:6b:9c:46:68:
4b:59:fd:6b:e2:e7:14:3e:83:08:7e:26:c4:19:8f:2e:06:8b:
95:99:1a:ca:e5:32:b0:89:53:ef:06:df:00:95:ce:92:65:60:
46:17:93:03:da:cd:7e:35:e5:7c:9d:32:65:df:f6:1d:b3:66:
28:c3:f4:f2:4b:cb:2d:45:34:48:51:a1:ed:91:0d:ea:32:6a:
0d:90:5f:00:bc:6b:bd:9c:72:e8:4b:ed:50:c1:06:34:09:fa:
5c:fb:b1:c4:58:c1:04:8c:e3:e1:71:7f:52:ee:20:d8:a5:b0:
b2:38:5a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:57 2024 by rpki-client on console-ams.rpki-client.org