Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O53RotRJR1armZsaK2zs8H4dYb4.roa
File: O53RotRJR1armZsaK2zs8H4dYb4.roa (raw, json)
Hash identifier: N+eRgFsAlSU6V1Tj2lk7cwmaPEJuuGvSskxUEDFtRrw=
Subject key identifier: 3B:9D:D1:A2:D4:49:47:56:AB:99:9B:1A:2B:6C:EC:F0:7E:1D:61:BE
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B69C96C
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O53RotRJR1armZsaK2zs8H4dYb4.roa
Signing time: Sat 01 Jan 2022 10:02:40 +0000
ROA not before: Sat 01 Jan 2022 10:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44277
IP address blocks: 195.228.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459917676 (0x1b69c96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b9dd1a2d4494756ab999b1a2b6cecf07e1d61be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:76:f6:1d:d5:c5:eb:58:b5:74:4f:03:58:a0:
55:51:2e:90:96:9f:25:d2:fe:ec:2f:9d:93:23:a6:
14:5d:7f:75:02:74:fd:4f:31:08:06:2f:9e:a1:f9:
96:94:73:7e:7d:34:62:c4:bb:db:96:fb:af:f2:1e:
81:3d:02:7a:cb:ef:9b:6a:da:7b:e3:79:9f:11:33:
dc:0d:d6:3b:df:7c:35:97:5a:10:a3:b4:6d:88:0a:
36:71:13:47:6f:2a:a9:6e:ba:5c:f1:4c:7e:3f:2f:
8f:2c:74:eb:7f:d8:27:1f:9d:c5:8d:b9:68:fb:a8:
23:7e:d5:54:78:eb:19:5c:e5:0e:69:e4:b9:9e:a2:
d3:a7:40:3d:9f:12:af:86:1f:ec:50:11:fe:46:f1:
7d:a3:b2:08:3f:9e:59:4d:b7:22:f5:92:ff:61:11:
a2:4f:98:1d:e8:5f:1c:00:90:a7:d5:f6:14:80:0e:
56:2f:0e:f3:b7:5d:1e:01:ea:9d:6a:44:5f:0e:22:
01:45:d5:4a:50:a3:7d:9c:f9:a5:26:e1:2a:04:48:
64:78:e4:e9:4f:69:90:4c:27:93:9f:d2:99:5d:fc:
22:e3:57:d3:7d:7b:f7:81:c0:77:ac:66:a0:c8:cd:
69:ff:52:6d:64:67:b6:db:2c:a2:72:de:ec:d2:02:
d2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9D:D1:A2:D4:49:47:56:AB:99:9B:1A:2B:6C:EC:F0:7E:1D:61:BE
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O53RotRJR1armZsaK2zs8H4dYb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.59.0/24
Signature Algorithm: sha256WithRSAEncryption
80:02:8c:a6:c7:7c:4b:75:68:e7:a2:f1:3c:fb:10:1c:75:7b:
58:e7:da:04:ea:7f:0c:34:71:fa:c0:5f:bb:bc:c2:d1:5b:5f:
2c:f6:d9:ad:ef:89:73:6c:67:19:ed:f6:40:f6:52:cb:5f:e1:
ef:45:6d:ae:9b:a1:bb:c2:ce:8e:bf:4d:fe:fc:50:27:c7:ff:
f7:17:52:58:9d:ab:96:96:f0:58:e7:c1:71:e6:63:69:f0:e7:
50:f8:24:40:8c:13:27:55:11:4c:d2:61:01:9d:ae:1e:16:33:
2a:c9:b0:d0:6a:c2:ed:91:81:ea:03:22:ca:bb:45:cc:f0:e5:
fd:59:d2:a3:c4:c3:16:36:a1:44:ea:02:91:82:bb:15:7c:f9:
1b:b1:9e:74:a7:fa:4b:a5:38:fb:57:f4:e3:ce:5e:16:ef:c9:
21:fb:03:8c:f0:4a:d8:dd:b4:94:71:24:5e:f8:69:b9:32:5b:
2d:b4:7e:72:13:b4:da:07:85:fa:85:d2:51:59:36:0e:53:b7:
20:3d:b4:45:13:d0:fc:19:3d:cd:f4:11:1d:0b:6b:d5:db:3b:
7a:c6:ac:c7:e0:47:90:d8:4f:12:cf:f8:9c:48:2c:d9:72:f6:
f5:b8:8c:f9:c5:6f:ee:90:a0:d2:8d:4c:e9:fc:c3:36:d7:a2:
f3:bf:3b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org