Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/X1qu5qvCnjYMX-bCfV1ginS8PHA.roa
File: X1qu5qvCnjYMX-bCfV1ginS8PHA.roa (raw, json)
Hash identifier: sL16m916pfG+VF9UL1gg3HqY10taDAKfWZRXDhh3EXs=
Subject key identifier: 5F:5A:AE:E6:AB:C2:9E:36:0C:5F:E6:C2:7D:5D:60:8A:74:BC:3C:70
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B6839E3
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/X1qu5qvCnjYMX-bCfV1ginS8PHA.roa
Signing time: Sat 01 Jan 2022 10:02:39 +0000
ROA not before: Sat 01 Jan 2022 10:02:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43711
IP address blocks: 195.56.170.0/24 maxlen: 24
195.56.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459815395 (0x1b6839e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f5aaee6abc29e360c5fe6c27d5d608a74bc3c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8c:4b:c5:a4:5d:aa:b7:b3:b4:95:1a:33:86:
38:7a:d9:32:f5:d0:1c:62:e0:3f:5c:db:08:54:4e:
94:72:6f:e4:c0:b3:9b:17:39:e0:35:b7:c0:03:55:
5c:5b:64:9c:d6:b2:fb:03:cd:7e:67:15:ee:0e:29:
66:59:b3:ab:17:98:e9:e6:1d:20:b2:62:d9:23:47:
f7:87:25:16:58:fe:b0:74:9b:12:e9:d8:47:7d:c1:
76:7f:0a:d5:77:e9:13:72:d9:1e:25:83:f1:a1:2e:
79:5d:d4:b7:34:8f:7e:b4:16:b9:8f:90:92:47:bc:
4d:c5:f0:fb:62:00:f6:43:60:f1:b1:d4:20:8b:91:
4c:13:96:72:21:d2:ae:d1:b0:94:d6:ca:4e:ae:a2:
1c:4a:4b:45:a6:ad:f1:b2:38:57:88:df:f9:b0:e8:
5c:e1:d2:a0:04:ed:63:17:3e:1f:f1:8f:99:b1:10:
fa:53:b4:a9:4f:4d:6d:36:57:b6:fe:1e:3b:23:11:
4e:8b:bd:fa:70:2d:a8:10:46:04:35:5b:3f:8a:f9:
13:e5:b8:d1:16:e5:80:55:5d:3a:9f:b5:b0:88:de:
39:db:a3:f8:5b:1f:e5:a6:83:03:2b:a1:23:ab:c8:
ed:5e:31:17:1e:ac:1b:a5:85:6c:4f:8e:c8:76:10:
c2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5A:AE:E6:AB:C2:9E:36:0C:5F:E6:C2:7D:5D:60:8A:74:BC:3C:70
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/X1qu5qvCnjYMX-bCfV1ginS8PHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.56.170.0/24
195.56.172.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ab:69:c0:d0:04:48:54:29:7d:87:fa:49:11:72:3a:e3:18:
89:a6:ab:9d:a3:3e:22:ce:a9:b3:ca:1f:ee:c1:60:76:92:f1:
e3:a6:3b:0f:61:dc:bb:3e:c6:2a:0e:8b:b1:42:57:cb:35:3a:
43:e9:18:39:af:ac:c0:13:c5:0a:ab:a8:7e:1e:bc:95:fe:01:
eb:c9:a3:83:74:36:4c:3d:19:02:3e:fb:ac:20:2d:32:2b:68:
c4:2f:20:b7:2e:e7:05:5b:43:13:11:fa:ce:53:c1:b6:35:35:
d1:74:d8:eb:53:b7:d8:4c:74:27:d1:27:22:df:a4:7e:7e:60:
33:f7:61:51:5e:37:09:7d:eb:ad:3d:c2:89:da:6f:16:a4:75:
ff:60:c8:9d:74:b3:b4:6f:fc:09:87:48:b4:6a:cd:3b:ab:fa:
a0:d0:6c:3c:df:a8:8b:0d:04:3f:1e:24:c7:02:75:62:e3:75:
90:cc:0b:ff:b5:87:c0:3e:66:97:66:5b:d6:21:07:da:d8:65:
83:56:ca:4a:32:ab:df:a6:8f:ca:81:71:19:43:c7:f7:6c:8b:
85:9e:b7:1c:79:4c:de:eb:13:9a:0a:6f:08:23:a4:f6:fb:07:
82:d7:54:8a:e8:d3:07:93:8a:14:d2:cb:93:02:d4:a3:6d:92:
93:f2:67:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org