Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/x0ooi8aUfWhiBMCBn7f3Gcys7dQ.roa
File: x0ooi8aUfWhiBMCBn7f3Gcys7dQ.roa (raw, json)
Hash identifier: 3uDzonejrDv4IVJheRNt1MSe5lDmHmZVqOlLL/uQjAM=
Subject key identifier: C7:4A:28:8B:C6:94:7D:68:62:04:C0:81:9F:B7:F7:19:CC:AC:ED:D4
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 021683
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/x0ooi8aUfWhiBMCBn7f3Gcys7dQ.roa
Signing time: Tue 26 Apr 2022 15:10:10 +0000
ROA not before: Tue 26 Apr 2022 15:10:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 195.47.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136835 (0x21683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Apr 26 15:10:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74a288bc6947d686204c0819fb7f719ccacedd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:27:ad:c4:5f:26:70:bd:ca:12:21:da:47:7c:
13:1a:3e:36:de:31:41:06:0b:18:89:68:da:01:99:
b2:fd:d1:5e:f9:a2:14:d3:6e:cc:73:31:44:cb:fd:
69:66:40:36:09:f2:86:2b:4c:0c:3f:3e:26:fa:74:
66:71:93:1d:5d:c8:8b:51:54:b5:bd:02:34:55:56:
9a:87:74:c4:30:08:76:61:b4:7e:a0:39:fb:b6:c0:
52:c8:fe:6e:64:ce:5e:96:af:53:9b:dc:4b:59:7c:
77:5f:b7:d0:b9:bf:b6:88:68:f1:78:5d:ad:98:91:
7d:9d:33:c6:e2:af:5b:94:46:64:1e:be:72:e9:81:
09:10:28:8a:fd:44:54:e1:32:d2:89:80:97:88:7b:
6d:90:92:29:16:74:6d:dc:c6:61:1c:5f:5b:89:3a:
48:14:8e:19:6a:db:a0:2b:65:46:97:39:36:62:5f:
ec:8c:79:af:7d:0c:0c:df:37:cb:3b:c5:60:79:62:
d2:0c:f0:6f:14:32:ef:79:56:b8:a5:c7:d8:3c:24:
f7:46:5d:4c:50:04:d9:6b:d9:de:9b:c9:55:93:f6:
ba:d4:01:41:5f:bf:52:2d:df:ba:45:b4:6b:c1:f3:
bd:9a:50:67:75:5d:09:e3:74:f5:a2:99:22:f9:5f:
2a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4A:28:8B:C6:94:7D:68:62:04:C0:81:9F:B7:F7:19:CC:AC:ED:D4
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/x0ooi8aUfWhiBMCBn7f3Gcys7dQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.231.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7a:e9:30:55:96:0d:c1:ba:cc:2c:90:f5:42:63:66:ab:f8:
66:2a:73:8b:7a:eb:27:9d:86:89:b1:d4:61:9c:5d:e8:2c:d4:
98:bb:4a:0f:51:48:6c:0f:9a:cc:b0:00:f2:22:3c:ed:af:b8:
ad:01:9b:22:a3:11:b2:8a:e5:62:00:42:9d:e1:9e:29:e7:6f:
9f:ff:c1:43:d1:e7:59:0a:0b:f7:10:21:c6:60:6a:fa:c5:52:
39:f1:24:7d:13:bc:77:a3:5c:ef:57:9a:e7:17:5c:e6:39:b8:
c0:b2:06:06:c2:62:68:99:a7:bf:b8:77:39:aa:46:d4:b1:cb:
fc:76:af:ff:7a:5d:20:6f:f1:af:d8:b8:4f:7c:0d:31:38:fb:
aa:78:f1:be:0d:d8:d2:68:75:c6:5b:19:03:a3:b4:8c:53:7a:
b9:ed:ef:06:50:37:7e:9c:37:d0:75:c0:e5:f4:0e:7a:ac:8e:
4f:fb:94:5f:6f:51:4f:35:0a:29:4b:89:ab:ba:4b:1c:20:7d:
f3:65:be:5a:3c:9e:13:c2:c0:4c:6a:ba:17:81:b3:b4:82:29:
66:3e:f9:81:58:b1:fd:e0:85:f2:ca:ab:e6:23:55:08:e4:bd:
85:b3:33:69:84:cf:36:77:f8:94:8e:10:dd:cb:1a:5c:c2:d6:
1d:04:c5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:41 2024 by rpki-client on console-ams.rpki-client.org