Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/3Omk8m-FaJrL7qWkfCN_J6rIMpw.roa
File: 3Omk8m-FaJrL7qWkfCN_J6rIMpw.roa (raw, json)
Hash identifier: mDMOxjXWxgVAri3MNRBiqQsn2bawRFyEuFVzuL3KYFE=
Subject key identifier: DC:E9:A4:F2:6F:85:68:9A:CB:EE:A5:A4:7C:23:7F:27:AA:C8:32:9C
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 9DCD61
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/3Omk8m-FaJrL7qWkfCN_J6rIMpw.roa
Signing time: Fri 25 Feb 2022 16:30:59 +0000
ROA not before: Fri 25 Feb 2022 16:30:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 195.95.204.0/24 maxlen: 24
195.95.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10341729 (0x9dcd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Feb 25 16:30:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dce9a4f26f85689acbeea5a47c237f27aac8329c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:1b:85:19:d0:ac:e4:40:c4:a1:f8:36:f2:
9a:b7:9e:95:68:ba:1d:26:a6:78:fb:00:e3:ea:57:
1f:15:da:db:01:89:d8:91:0e:bb:6a:5b:cd:86:0e:
00:60:be:18:00:a1:76:8b:ec:c0:c0:0a:5b:35:00:
31:94:89:d0:b0:e3:6f:11:3a:f7:18:70:1a:1e:7e:
e2:55:23:aa:88:e4:27:87:23:78:eb:04:84:a4:f5:
ab:26:29:81:9b:d8:d5:c8:b8:c2:6d:bd:6d:dd:ae:
52:0b:a1:d4:92:83:8e:76:8e:bd:87:a1:e4:fc:7f:
58:b1:27:04:15:22:ce:2d:a8:75:b5:47:ed:63:61:
ec:c3:6f:e9:8a:9f:db:c3:8b:78:83:8f:74:1c:d2:
aa:a7:2e:47:22:2d:ff:3d:ac:7d:2d:28:b1:66:f9:
89:03:db:e7:c2:8c:6d:7b:c8:42:eb:39:cb:ca:f6:
8a:c7:a4:2e:b3:de:2b:c3:cc:61:49:61:44:86:df:
46:5b:b3:10:40:34:52:fd:1c:aa:80:25:0f:2d:3d:
88:43:fb:2f:79:47:6d:3e:ae:e3:eb:46:f1:15:02:
d3:3a:fb:39:49:34:32:92:94:10:01:02:ab:4d:b6:
88:63:04:85:61:44:84:87:76:fa:01:5c:6e:b8:6a:
78:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E9:A4:F2:6F:85:68:9A:CB:EE:A5:A4:7C:23:7F:27:AA:C8:32:9C
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/3Omk8m-FaJrL7qWkfCN_J6rIMpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.201.0/24
195.95.204.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:46:03:bc:a4:83:29:89:c7:fd:08:61:c1:41:4c:22:ca:06:
87:30:a8:f4:96:1f:be:59:cf:16:79:1d:a6:bc:9b:d4:96:48:
2b:60:af:47:49:bb:a9:3b:f6:08:68:2b:bf:f9:ef:4b:4b:31:
23:a8:c1:8f:b1:78:2e:6b:c4:e5:41:f4:4d:c7:e8:4e:78:11:
c1:32:a5:65:80:d3:39:32:83:dd:bc:8f:ac:1a:31:bf:de:e1:
bf:1a:72:fb:82:3e:93:0e:35:14:c6:c3:d0:b2:88:6a:bf:a9:
5c:41:ea:a2:0e:4f:50:06:2b:a9:69:12:90:57:83:62:57:0b:
f4:8f:d3:16:70:dc:05:c0:0f:52:ef:62:fc:9e:f3:5b:fa:27:
15:d4:5a:6b:82:e6:4c:26:d2:cc:9b:6d:16:75:5f:dd:17:91:
f0:e6:52:c4:06:67:38:08:ea:fb:1e:d1:9e:4a:1f:97:d1:6f:
0f:60:d1:64:71:d1:9a:58:2d:0d:fa:5b:23:bc:49:b6:26:fe:
74:64:3a:59:9f:13:90:3b:70:be:f5:44:ea:f5:40:93:93:f1:
41:a5:50:1b:9d:ff:e6:62:7a:2d:86:ec:55:b5:8b:af:fd:0d:
4d:c4:df:46:63:4a:fd:5a:89:c9:cf:43:e8:3b:6b:51:44:d4:
8c:b8:83:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org