Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/onnJMCrbNEaivJHQr1JNEIs2w80.roa
File: onnJMCrbNEaivJHQr1JNEIs2w80.roa (raw, json)
Hash identifier: v1THzDvCnCsz1eI5iiaHc7iT1kcT2SlX9ADFkZvQKH0=
Subject key identifier: A2:79:C9:30:2A:DB:34:46:A2:BC:91:D0:AF:52:4D:10:8B:36:C3:CD
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01825F9F44B4BC8208A611F8C994BF372253
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/onnJMCrbNEaivJHQr1JNEIs2w80.roa
Signing time: Tue 02 Aug 2022 17:34:09 +0000
ROA not before: Tue 02 Aug 2022 17:34:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50214
IP address blocks: 195.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5f:9f:44:b4:bc:82:08:a6:11:f8:c9:94:bf:37:22:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Aug 2 17:34:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a279c9302adb3446a2bc91d0af524d108b36c3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d0:a7:24:69:70:d4:b2:c6:2d:75:61:f6:53:
eb:19:71:5a:38:20:db:c3:5a:fb:a3:5b:8b:74:96:
77:43:7e:12:50:b1:c5:c8:1f:ea:37:db:9b:e7:e1:
e3:66:86:2d:d8:4f:46:62:9b:4e:94:4a:2a:64:c9:
67:34:fb:54:75:fd:2c:83:0c:3f:b2:b3:f9:f3:d1:
5c:18:7d:c0:bb:c3:68:e8:ef:41:9a:35:ee:c2:ad:
25:d0:a1:02:0f:99:19:7a:4b:2b:f6:a1:ce:0f:0f:
25:bd:2c:d2:e7:25:f0:25:bb:b2:d0:0e:d4:f9:be:
a0:a3:3d:9f:5d:42:fe:a6:e5:48:05:27:4d:c4:d7:
e7:80:95:50:44:21:34:3c:46:2e:1b:26:ee:ee:94:
3c:b6:62:ce:5d:1e:07:ee:b0:33:4f:b0:7d:62:e6:
37:de:67:85:35:3b:72:db:6d:d2:ec:46:d9:b4:eb:
28:38:ca:6a:4b:08:52:62:65:07:de:28:16:7d:7a:
8a:c8:28:fd:83:93:c4:bc:16:f8:5d:94:f4:77:ba:
c5:56:05:31:1f:8d:78:43:c1:36:b0:75:db:a8:d4:
eb:8f:a7:ed:d6:ba:32:66:06:17:18:af:e2:4d:e8:
64:55:ba:c5:47:4b:39:75:1c:2d:18:b6:79:59:ad:
c4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:79:C9:30:2A:DB:34:46:A2:BC:91:D0:AF:52:4D:10:8B:36:C3:CD
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/onnJMCrbNEaivJHQr1JNEIs2w80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
43:1e:4c:d5:61:e1:33:87:05:9c:69:4f:b3:4f:77:5d:fa:95:
40:f0:ba:80:c6:c7:06:c8:e0:23:43:20:e2:40:5d:8e:05:ed:
f7:c1:a2:e2:22:06:1e:ca:ed:8b:90:3c:ea:33:16:d1:0c:24:
aa:29:8b:6f:4d:63:9c:06:06:62:14:d6:65:0a:bf:a8:3f:3e:
dd:5d:6a:be:b7:b5:10:86:4b:90:bd:73:94:72:5f:5f:95:96:
af:57:0b:e7:4c:b4:92:6f:f5:fd:ae:74:8d:0e:79:d0:80:b0:
fc:91:96:eb:a0:df:5f:f2:11:6e:c3:a7:b6:79:2f:7a:f5:7e:
14:e3:50:a6:93:6a:2a:36:02:22:04:cc:28:0a:a9:c0:9a:e1:
d0:2c:07:9e:02:83:40:7f:ba:5a:35:60:a3:42:02:f5:af:d2:
a5:14:ed:0f:c5:f0:ca:c5:5b:60:86:cd:8f:68:3f:ee:9c:ae:
26:57:51:76:54:c0:40:9c:30:78:97:a8:2b:be:34:5f:97:d0:
2a:87:2a:49:57:52:2a:ac:7a:a2:6c:df:0f:2a:31:8e:56:91:
e9:2e:79:2c:73:d7:07:7b:29:e3:3a:6c:a8:aa:51:54:e8:a4:
4a:cb:5d:e3:a1:63:c1:29:ed:3d:45:b6:0f:41:3d:b8:6f:ae:
4b:e0:13:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org