Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/3AOEOvSlnAnVBxrO6S0NdgrIolI.roa
File: 3AOEOvSlnAnVBxrO6S0NdgrIolI.roa (raw, json)
Hash identifier: O8PaaR6QTSK2ismpUiVcCBMhLap+x1iphyq4MzJR6Z4=
Subject key identifier: DC:03:84:3A:F4:A5:9C:09:D5:07:1A:CE:E9:2D:0D:76:0A:C8:A2:52
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B65FDEE
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/3AOEOvSlnAnVBxrO6S0NdgrIolI.roa
Signing time: Sat 01 Jan 2022 10:02:37 +0000
ROA not before: Sat 01 Jan 2022 10:02:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33954
IP address blocks: 195.228.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459668974 (0x1b65fdee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc03843af4a59c09d5071acee92d0d760ac8a252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:a9:34:16:6e:02:a2:23:1a:c6:fb:f7:09:
ee:1f:30:97:6a:82:25:d5:54:37:c6:f2:ef:6f:74:
cf:bd:cb:fc:99:dd:74:e0:0f:d6:39:82:03:04:e2:
3d:d3:6b:db:ea:01:7f:f1:a5:d7:bd:a3:f4:bc:ab:
e0:94:5f:29:26:f5:94:e5:43:19:2c:ac:c1:85:5a:
0b:16:47:13:48:62:94:b8:7c:6c:39:27:e1:a8:a6:
a7:6f:60:34:bf:70:85:4e:fc:e2:34:8c:e3:c0:93:
cd:c9:fe:c6:e0:7c:0a:92:fe:3d:b3:35:c5:ec:5a:
c7:b1:f5:05:56:22:eb:9e:5d:7f:1e:c5:45:7f:33:
d1:26:f7:46:2c:bc:dc:28:51:bb:6e:5d:78:a5:19:
a1:97:c0:e5:33:48:b5:b5:85:a0:37:32:23:fc:b4:
0d:7e:f7:70:e6:a7:e9:22:44:db:ff:05:b2:7e:fb:
f2:c3:7f:8b:d8:88:20:c0:25:e7:75:7f:80:a6:51:
b7:5f:48:e5:aa:ea:e2:81:ad:55:00:df:36:7c:18:
0f:43:d6:e4:64:13:16:88:31:c6:2b:70:52:56:6d:
06:c5:d0:78:cd:83:8c:53:0a:1b:e8:ba:29:c8:d1:
4b:50:3a:bf:16:7a:89:af:a1:0b:e1:d5:22:43:6f:
51:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:03:84:3A:F4:A5:9C:09:D5:07:1A:CE:E9:2D:0D:76:0A:C8:A2:52
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/3AOEOvSlnAnVBxrO6S0NdgrIolI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.53.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:16:d4:57:66:2f:89:31:1c:89:8c:5c:54:df:ef:1f:b1:6f:
eb:64:3f:e8:62:55:2d:d3:f6:6b:c3:44:54:cb:43:b6:fe:bd:
e7:01:3f:86:0d:e7:ee:7c:85:d0:56:d8:6f:bc:91:5f:ef:08:
53:17:1f:c3:f8:fa:6a:f0:4e:4e:7e:37:51:ed:5a:b4:93:9f:
e8:8f:f2:8f:7d:d4:83:b0:28:40:6b:a7:38:70:13:0d:ed:c1:
1f:58:1d:9d:41:a7:dd:37:fe:4b:ca:59:8a:f9:6f:67:4b:ca:
9c:67:c5:0d:9b:f4:cb:31:46:be:aa:3e:0d:74:16:db:32:65:
1a:8e:28:8b:8e:6b:ba:af:3a:77:1b:c4:b6:d5:e1:95:b1:8b:
92:c3:ed:cb:dd:9e:f3:a6:b8:be:19:a2:87:a8:b9:7a:a9:5e:
b9:aa:46:2e:db:0a:eb:04:f5:fb:1a:dc:21:5d:66:11:a2:12:
bf:27:44:a9:da:fb:b8:03:e5:b2:28:2f:3d:12:19:e0:b4:27:
15:78:f1:c2:8b:3c:79:f9:c2:c9:50:c2:e6:67:82:f8:0d:b5:
10:f9:cd:9a:b3:54:3b:f2:48:51:75:47:19:ea:25:12:51:17:
66:1d:bd:4b:43:0b:bc:d5:5d:36:15:6e:28:bd:82:d9:93:4f:
9a:be:19:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:13 2024 by rpki-client on console-ams.rpki-client.org