Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/1-kK4oBB0deMzC6Xtg9AvtptXRTk.roa
File: 1-kK4oBB0deMzC6Xtg9AvtptXRTk.roa (raw, json)
Hash identifier: jT+tn27ro2nQDGhxokizlhg0DKhaUIFn3kSAvJUyrGk=
Subject key identifier: FA:42:B8:A0:10:74:75:E3:33:0B:A5:ED:83:D0:2F:B6:9B:57:45:39
Certificate issuer: /CN=5032f297789a194a8b507805f35d42ee78c0d4c3
Certificate serial: 0599E229
Authority key identifier: 50:32:F2:97:78:9A:19:4A:8B:50:78:05:F3:5D:42:EE:78:C0:D4:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDLyl3iaGUqLUHgF811C7njA1MM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/1-kK4oBB0deMzC6Xtg9AvtptXRTk.roa
Signing time: Sat 01 Jan 2022 12:56:13 +0000
ROA not before: Sat 01 Jan 2022 12:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41037
IP address blocks: 195.95.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93970985 (0x599e229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5032f297789a194a8b507805f35d42ee78c0d4c3
Validity
Not Before: Jan 1 12:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa42b8a0107475e3330ba5ed83d02fb69b574539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:fd:ef:b6:57:f2:a5:74:10:b5:41:f7:11:
c6:cc:36:cc:8a:02:2d:51:01:f0:1c:53:29:de:e0:
4c:f7:80:8b:98:7d:27:e1:04:31:f3:75:b6:21:b9:
36:f0:27:bd:ad:cb:76:50:09:1e:72:67:ed:40:b4:
2b:45:ed:61:ed:74:c4:03:0a:4d:3d:8a:66:a9:84:
d1:59:24:f3:08:07:20:de:81:f4:76:1d:5c:4a:a8:
c7:29:29:ee:ca:d7:78:f2:22:33:39:67:a8:f5:49:
fd:6d:ee:30:af:8e:2a:ab:aa:af:5f:36:c0:74:64:
d9:fe:32:7f:c2:d3:cc:0a:76:f6:89:06:ee:b8:5d:
9f:ab:c2:de:d6:ba:47:e3:95:a7:f3:de:11:d8:fc:
59:75:22:9f:21:ea:19:93:8c:44:53:4d:ad:fc:cc:
ac:13:f3:07:d7:ec:33:30:66:17:44:77:53:28:ee:
62:d0:98:ca:69:59:d6:dc:6a:a8:e6:c2:52:b5:eb:
74:04:87:e4:07:ad:37:16:3c:3c:b0:bf:1c:c1:34:
ad:49:d2:6f:53:e8:0c:ff:2a:8e:a6:f2:6b:72:d7:
8e:bb:1c:2a:a2:eb:94:24:19:b2:76:a1:b1:7c:39:
db:88:66:40:0b:8a:64:c0:1e:b4:3e:ce:01:27:84:
b4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:42:B8:A0:10:74:75:E3:33:0B:A5:ED:83:D0:2F:B6:9B:57:45:39
X509v3 Authority Key Identifier:
keyid:50:32:F2:97:78:9A:19:4A:8B:50:78:05:F3:5D:42:EE:78:C0:D4:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDLyl3iaGUqLUHgF811C7njA1MM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/1-kK4oBB0deMzC6Xtg9AvtptXRTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/UDLyl3iaGUqLUHgF811C7njA1MM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:2b:35:bc:2f:ad:05:e3:b5:c6:a5:a6:15:13:23:69:af:3f:
fa:55:4e:43:a6:d0:00:3f:e5:ac:8c:31:ff:39:18:2b:b7:f8:
01:97:e8:7f:61:81:25:c4:b9:f7:da:37:f5:76:82:d2:f9:34:
c7:cd:18:56:fa:67:04:5b:7a:1a:d5:bc:44:98:9b:af:a3:75:
83:1e:9b:ec:d8:33:94:f7:ca:b7:00:de:6d:48:ed:ca:7c:e3:
4f:54:ac:d4:0d:09:4b:3c:c4:a7:62:f4:2d:22:26:f2:a3:59:
56:56:e3:72:3a:a0:0a:97:a8:3d:46:dc:d4:b8:69:48:44:95:
d2:c8:11:61:38:01:53:d8:f2:cc:63:ca:50:65:25:3e:f5:d1:
cd:97:54:53:5e:49:25:dd:23:0f:01:4c:22:13:50:a3:ac:8d:
7a:05:d6:04:53:a3:21:3b:1c:f7:bb:fb:18:1d:7f:fd:80:3e:
a6:96:74:be:4c:10:90:b4:e8:76:63:8c:08:18:eb:fb:2f:18:
5a:2b:f5:d5:e4:0a:13:c6:de:e4:8e:e4:9b:e7:5b:fd:48:e4:
9f:bc:be:6c:5d:40:71:0e:5c:75:94:01:8f:55:bc:1c:1c:69:
1c:6b:4b:cb:f2:04:67:9f:fe:1b:35:b9:34:ab:1e:c6:6a:29:
7b:00:34:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:14 2024 by rpki-client on console-fra.rpki-client.org