Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ortCyNV83vbZNjwwdprHMx6P0qk.roa
File: ortCyNV83vbZNjwwdprHMx6P0qk.roa (raw, json)
Hash identifier: cKxueYOSiQ5Nom6bIKCuFnitfdwCfwlXvZ3YCQ8yLCE=
Subject key identifier: A2:BB:42:C8:D5:7C:DE:F6:D9:36:3C:30:76:9A:C7:33:1E:8F:D2:A9
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B58A04A
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ortCyNV83vbZNjwwdprHMx6P0qk.roa
Signing time: Sat 01 Jan 2022 10:02:29 +0000
ROA not before: Sat 01 Jan 2022 10:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8990
IP address blocks: 195.228.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458793034 (0x1b58a04a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2bb42c8d57cdef6d9363c30769ac7331e8fd2a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:7a:3b:b8:4a:6b:49:f4:ca:10:84:63:47:
f5:d8:83:c5:77:4f:69:5b:5d:b0:fc:da:98:ee:e5:
83:80:ea:38:6c:43:7d:8d:bc:66:98:61:26:9d:aa:
02:b8:7e:14:eb:15:54:2c:f1:5b:bb:fc:b4:8b:0c:
86:f9:82:b5:5f:45:05:ee:74:29:00:9c:62:3d:72:
59:ed:22:34:52:5f:4a:29:4d:e1:07:bc:0a:ff:5b:
d3:43:a5:37:47:3f:72:e5:ff:88:68:27:84:1b:0b:
63:91:69:66:87:56:6e:1e:b7:e4:d5:16:02:e0:f9:
af:bf:1b:d0:3f:87:e9:2b:0f:bd:a1:1b:f9:97:16:
e3:bc:82:ff:bd:26:e2:42:ca:bb:70:c4:6c:f7:57:
be:16:0a:f1:f7:df:29:77:9f:7b:b9:6b:37:66:e2:
cf:a7:e0:f2:58:2d:14:06:28:40:7c:67:44:ad:99:
a0:3d:aa:c2:cb:25:9c:70:8c:55:31:29:1f:6e:68:
2a:2b:e6:80:6d:b5:a3:61:e4:18:4d:e9:77:6b:8e:
7d:4c:39:3b:31:82:48:95:67:f8:5a:d3:11:c7:12:
81:b9:97:42:9d:12:e1:b4:74:3b:87:97:6f:fd:31:
64:3c:17:e5:18:de:55:7c:81:c2:23:a3:5b:8f:16:
a1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BB:42:C8:D5:7C:DE:F6:D9:36:3C:30:76:9A:C7:33:1E:8F:D2:A9
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ortCyNV83vbZNjwwdprHMx6P0qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d9:ac:fd:eb:98:38:63:21:4e:32:9a:43:f8:79:d9:28:39:
a9:1e:f9:ff:06:ed:8e:4d:76:3c:82:63:a4:77:68:e1:58:d0:
5b:38:b4:a9:ae:49:29:84:15:6e:01:49:b6:af:5a:5d:fb:4f:
e3:13:65:4b:be:44:7b:e8:95:6b:45:40:3e:0a:84:b1:2f:6a:
d5:33:c1:a5:67:aa:63:43:98:75:de:df:3d:7d:cd:88:94:3d:
f3:1c:4e:77:20:7d:18:32:76:05:b5:27:71:be:5e:22:7d:7f:
24:2d:cc:b6:57:f1:65:4a:b1:30:9d:e7:d7:92:83:3d:ec:81:
8d:0b:56:38:f4:fc:ad:29:aa:b2:af:9d:4e:12:19:d8:36:b5:
86:c8:10:26:b2:74:e2:38:50:50:2c:80:68:68:49:e5:fe:30:
a6:0d:fb:d6:f8:11:b1:0c:91:91:74:fa:4a:1f:77:f2:5c:41:
7c:4b:26:29:57:54:4d:bd:cb:15:39:d8:b0:0a:7b:1f:1b:e0:
d9:34:6e:bd:9d:90:08:02:04:59:9b:23:05:ff:ae:e7:30:fe:
df:ba:2c:3d:b8:22:ae:63:5a:7b:63:63:70:35:41:77:12:83:
c4:41:b5:5c:fa:a2:76:44:f9:53:52:0c:d8:b4:bc:10:d2:4c:
50:c3:4a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-ams.rpki-client.org