Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/t-NCdU9FhDVqxZS-pdBxY0FZgxU.roa
File: t-NCdU9FhDVqxZS-pdBxY0FZgxU.roa (raw, json)
Hash identifier: jQTPFaIBZ8nezye2w532/8LSYvP88awBek5nPqlK6Hw=
Subject key identifier: B7:E3:42:75:4F:45:84:35:6A:C5:94:BE:A5:D0:71:63:41:59:83:15
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B6248C7
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/t-NCdU9FhDVqxZS-pdBxY0FZgxU.roa
Signing time: Sat 01 Jan 2022 10:02:35 +0000
ROA not before: Sat 01 Jan 2022 10:02:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28924
IP address blocks: 195.56.147.0/24 maxlen: 24
195.56.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459425991 (0x1b6248c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7e342754f4584356ac594bea5d0716341598315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:20:72:23:6c:90:1f:bd:ae:8c:a7:01:53:e8:
1a:20:92:0a:37:df:ce:b2:4b:bc:88:21:97:01:cc:
f9:d0:33:d6:41:5d:56:82:1d:ba:bc:ae:63:d4:03:
9b:57:aa:ae:23:c9:87:c3:4a:ba:ba:e9:f5:13:f6:
09:6a:32:43:28:ae:71:30:cc:8b:e2:07:1f:c5:47:
be:a6:ec:28:68:9a:40:c4:72:f5:b7:b8:47:7f:3e:
99:35:67:d0:3c:9a:c8:4c:ad:70:68:66:d6:37:8b:
58:0d:88:e9:98:69:df:20:2c:a4:14:7c:fe:1f:ac:
a4:cf:09:42:1b:33:89:67:20:51:e3:86:11:f0:ff:
aa:ff:cd:39:28:7a:54:54:a1:70:f0:26:69:26:7e:
05:ad:77:d2:7d:e1:bb:37:aa:45:d7:22:7f:d3:4a:
8a:ed:7a:40:42:63:ba:78:ca:1e:f2:05:00:75:cb:
54:56:e2:d7:8a:24:bb:83:bc:cb:ed:e6:65:6d:65:
70:0d:97:d0:5e:69:db:fc:b1:3d:77:d9:61:30:8f:
bc:57:3b:1f:dd:82:82:a2:b9:b5:1a:6e:f3:69:58:
56:1f:49:e3:4a:af:12:08:a8:c3:eb:89:1c:00:4a:
c3:6a:56:c0:20:09:b2:50:53:46:14:f5:88:8b:50:
ad:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E3:42:75:4F:45:84:35:6A:C5:94:BE:A5:D0:71:63:41:59:83:15
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/t-NCdU9FhDVqxZS-pdBxY0FZgxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.56.44.0/24
195.56.147.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d4:e9:fd:36:f0:2a:64:6c:94:7b:62:53:ad:c3:63:54:84:
23:67:db:8c:33:11:2c:de:89:d0:67:00:07:f0:15:55:1e:27:
c8:b1:7a:6c:a9:c2:14:67:65:4f:20:9a:77:02:1b:80:be:e9:
ad:5d:75:4a:16:a3:ad:a9:cb:0d:6f:ce:a3:a4:a8:5e:82:cc:
87:b8:0c:ac:0d:dd:90:f2:0d:de:93:36:90:01:cb:53:36:d1:
f9:d9:b8:29:37:1f:01:4e:59:eb:c9:c8:f4:bd:c7:aa:10:0b:
75:f8:7b:ef:39:06:7d:6e:b1:92:97:3f:22:37:3c:7c:e7:57:
c4:3f:0b:e7:70:5d:ef:34:01:6b:e4:92:b9:56:16:d7:55:9a:
40:c1:31:55:1f:b7:96:7d:2a:91:02:70:82:af:0c:7e:8a:e5:
0c:d6:c5:4b:01:e4:ba:d6:78:94:dc:51:df:ba:6c:2c:42:6c:
37:bb:db:e5:1a:5b:6e:fb:8f:c0:94:01:33:02:63:b0:de:17:
0c:17:7c:9d:8e:99:7d:ec:5d:56:a9:b1:09:c1:d7:52:42:91:
02:e3:10:59:b8:41:1d:02:4e:68:0d:4b:14:10:97:0f:74:3a:
60:b6:f3:82:cc:42:c9:83:3e:92:d0:86:c1:ed:d6:e0:eb:c6:
c4:73:1d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:13 2024 by rpki-client on console-ams.rpki-client.org