Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/L7OdKz8nLKxUr2L16ed9kJ4FB3Q.roa
File: L7OdKz8nLKxUr2L16ed9kJ4FB3Q.roa (raw, json)
Hash identifier: jV+C7bAbHYj1q2USXyoAVUfyfGuXyvSrQEN2mujOtlo=
Subject key identifier: 2F:B3:9D:2B:3F:27:2C:AC:54:AF:62:F5:E9:E7:7D:90:9E:05:07:74
Certificate issuer: /CN=2c96946c501ddf48696da2cf110fdceb286fac98
Certificate serial: 37E9AEED
Authority key identifier: 2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/L7OdKz8nLKxUr2L16ed9kJ4FB3Q.roa
Signing time: Sat 01 Jan 2022 00:54:56 +0000
ROA not before: Sat 01 Jan 2022 00:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42836
IP address blocks: 195.66.90.0/24 maxlen: 24
2001:67c:20c8::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938061549 (0x37e9aeed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c96946c501ddf48696da2cf110fdceb286fac98
Validity
Not Before: Jan 1 00:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb39d2b3f272cac54af62f5e9e77d909e050774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f5:8d:77:bb:cf:f3:01:55:40:9e:dd:15:17:
d0:03:00:1e:3f:bf:26:29:7a:71:a6:48:9e:d2:ef:
3b:75:b2:73:6b:12:49:d0:2b:fd:d7:64:c1:48:dd:
a3:5a:4c:94:2a:ae:84:84:cd:1d:78:f2:f6:4c:62:
34:28:23:ef:b1:b8:d9:f2:81:e7:bc:39:f0:e5:c0:
ec:03:90:d1:cc:f3:c9:f5:0d:5b:3f:19:b0:e0:e9:
93:cd:0a:60:ca:92:92:2b:51:8b:2a:e6:93:1d:df:
0b:87:21:32:bc:68:92:75:a3:4f:53:b7:b8:34:a1:
23:32:35:0a:33:f2:02:8b:da:37:b3:db:8a:7b:84:
5c:b6:62:bc:f0:59:aa:42:83:0f:ce:aa:87:34:61:
43:ca:5e:82:e7:ed:16:26:05:8e:16:00:d1:cb:da:
b4:a1:f0:e8:4f:ea:c9:bd:d6:03:99:0c:e7:83:ec:
c9:ca:b5:c3:ce:9d:5b:44:f2:ea:c4:8d:73:e0:7e:
05:61:cb:04:32:c2:00:79:77:04:54:6c:98:85:b1:
3b:ad:49:b5:b5:3e:e3:a2:3c:e1:e8:be:48:4e:76:
07:7c:dd:be:53:92:1f:d6:50:f6:7b:82:9d:98:28:
5f:42:13:aa:c2:c4:06:23:ea:8c:83:dd:80:3c:c4:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B3:9D:2B:3F:27:2C:AC:54:AF:62:F5:E9:E7:7D:90:9E:05:07:74
X509v3 Authority Key Identifier:
keyid:2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/L7OdKz8nLKxUr2L16ed9kJ4FB3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/LJaUbFAd30hpbaLPEQ_c6yhvrJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.90.0/24
IPv6:
2001:67c:20c8::/48
Signature Algorithm: sha256WithRSAEncryption
3c:73:a8:3d:a4:7e:b9:60:fa:9d:ab:63:61:af:7d:8d:9d:bf:
71:2f:1f:7f:2a:45:75:87:13:5c:84:6e:7b:ea:4c:93:8b:d9:
ae:7e:23:2e:ad:b7:93:91:69:c6:23:bd:38:8d:8d:4a:6a:b5:
14:8a:66:cb:e1:2f:f7:7c:03:de:a2:5c:3f:ab:be:9d:7b:45:
e3:af:38:68:3b:0a:da:8b:16:0b:6b:35:51:d9:82:3f:97:4b:
c0:39:cb:30:a4:be:66:08:e7:42:1b:3d:32:7e:a0:39:c1:b9:
f4:28:93:d3:1f:9a:0d:d8:f6:d8:c8:38:10:3c:85:21:3d:b0:
49:27:69:8f:8b:aa:7a:18:5c:60:a2:53:7d:07:d4:c9:f1:5b:
d5:29:21:3c:97:59:a4:96:4c:6b:a1:8f:53:37:a5:aa:11:41:
33:23:7e:3f:b7:cd:9e:bc:80:67:f5:9d:2d:c2:31:c6:27:95:
81:42:5d:55:08:36:fd:eb:78:f1:51:39:37:4f:4b:45:fa:64:
bf:24:c7:ff:7e:12:36:6d:a9:d1:ba:96:f8:59:9a:b4:46:5b:
fc:62:84:2c:51:57:a6:91:42:23:34:c7:f3:f2:80:60:7d:81:
d3:7a:ca:5f:39:1b:5c:1c:64:45:c9:0c:13:c0:97:17:e8:46:
1f:0b:d3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:00 2024 by rpki-client on console-fra.rpki-client.org