Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/1-Yg7jZJi06BFgMipu_KSBMevZ-I.roa
File: 1-Yg7jZJi06BFgMipu_KSBMevZ-I.roa (raw, json)
Hash identifier: CTZyZ55a+1Ap4jlgBNwXytL86Vo3TSUSRubmm7VZz8M=
Subject key identifier: F9:88:3B:8D:92:62:D3:A0:45:80:C8:A9:BB:F2:92:04:C7:AF:67:E2
Certificate issuer: /CN=d8b92af44b79fc0acf64103eb5fb337a91eecd9a
Certificate serial: 016258
Authority key identifier: D8:B9:2A:F4:4B:79:FC:0A:CF:64:10:3E:B5:FB:33:7A:91:EE:CD:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Lkq9Et5_ArPZBA-tfszepHuzZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/1-Yg7jZJi06BFgMipu_KSBMevZ-I.roa
Signing time: Mon 16 May 2022 16:01:12 +0000
ROA not before: Mon 16 May 2022 16:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 195.95.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90712 (0x16258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b92af44b79fc0acf64103eb5fb337a91eecd9a
Validity
Not Before: May 16 16:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9883b8d9262d3a04580c8a9bbf29204c7af67e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e6:bc:a1:b6:7d:c8:f8:64:86:ec:31:75:b1:
1b:64:3e:a0:87:e8:a1:a6:23:f7:10:56:3f:f6:d8:
cd:e4:b2:d3:c2:76:0e:0a:1c:55:c8:67:bf:b5:66:
f3:79:c7:31:ec:36:e0:4e:86:44:3f:22:59:ee:a3:
94:8d:f8:4c:71:a8:c3:17:e2:79:8a:4d:cf:1d:b1:
93:96:ad:18:03:f1:f0:f2:08:b3:22:f5:ab:b7:d9:
f4:62:01:b8:11:5c:e6:87:7d:75:fc:c9:25:a2:09:
04:7a:b6:29:ac:df:16:65:17:78:41:a7:16:69:8f:
09:4a:9f:28:a7:09:ba:05:39:12:80:e2:34:33:bc:
b8:91:c5:44:a9:3d:83:6b:94:87:8c:38:4b:42:6f:
e6:b4:1c:11:0d:84:bf:91:c0:ae:13:fa:12:f6:1c:
b7:0d:b9:7f:19:67:a9:64:ab:48:9e:4d:7c:fe:6c:
22:b1:1b:dd:e6:1c:2c:9c:0c:63:f0:25:a4:a3:3b:
f2:24:2e:e5:d8:47:a0:b6:59:8d:53:6a:d6:bf:71:
cd:12:d4:94:0f:21:e8:f5:10:a8:d6:d4:77:92:25:
62:3b:da:00:99:aa:7b:71:02:17:d0:2d:c7:70:34:
38:6a:00:f9:e3:82:70:24:f9:ed:7a:7f:eb:61:6c:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:88:3B:8D:92:62:D3:A0:45:80:C8:A9:BB:F2:92:04:C7:AF:67:E2
X509v3 Authority Key Identifier:
keyid:D8:B9:2A:F4:4B:79:FC:0A:CF:64:10:3E:B5:FB:33:7A:91:EE:CD:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Lkq9Et5_ArPZBA-tfszepHuzZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/1-Yg7jZJi06BFgMipu_KSBMevZ-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/eac86b-6e91-4bbe-a203-67ac97118cac/1/2Lkq9Et5_ArPZBA-tfszepHuzZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.148.0/24
Signature Algorithm: sha256WithRSAEncryption
03:33:92:34:39:28:62:51:4c:9d:70:69:5c:bb:d1:1f:5c:01:
43:e9:53:b6:a0:13:49:95:03:3a:26:33:30:a6:ad:12:29:da:
7c:a6:2e:86:7d:31:e1:3e:d5:48:e3:f1:dd:1d:e5:a4:3a:1c:
ef:fa:ec:00:7d:33:dc:e0:c0:d9:c8:0e:0f:fb:9b:89:44:47:
22:74:80:3a:7b:3e:d1:39:7e:0a:a8:29:90:36:cf:9f:f8:ba:
7e:0e:be:76:3d:35:a6:b1:47:22:64:15:a2:2e:64:96:52:52:
b0:86:5f:4a:10:f4:66:e1:08:29:02:e3:24:6e:de:19:7a:c1:
13:03:f2:95:55:89:c9:49:3e:1b:0e:86:d1:3a:06:e8:34:a1:
12:54:66:60:ee:77:83:fa:55:7c:f4:08:8d:41:57:a0:ff:3e:
d3:17:04:04:6b:48:ba:14:e4:99:89:57:d9:db:91:4d:76:68:
5d:87:92:49:ad:54:39:ec:c0:e7:84:47:7d:94:67:a0:d1:76:
3c:40:47:ab:dc:a5:f5:a2:3c:84:83:95:2a:fd:fb:4c:2d:70:
de:58:23:2d:64:11:06:ca:6a:82:93:52:f1:eb:4a:8e:1a:f5:
65:50:93:23:30:d8:f5:1b:60:0b:32:53:f6:d4:f9:42:b7:5d:
d2:23:f0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:52 2024 by rpki-client on console-ams.rpki-client.org