Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/4KC83FIqONI6hTEtGVWxd-gKulQ.roa
File: 4KC83FIqONI6hTEtGVWxd-gKulQ.roa (raw, json)
Hash identifier: qG1yYokpfl9tIZDAe6wxXTg5EDdJzSX2ynN74BK15N0=
Subject key identifier: E0:A0:BC:DC:52:2A:38:D2:3A:85:31:2D:19:55:B1:77:E8:0A:BA:54
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 09CCCE22
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/4KC83FIqONI6hTEtGVWxd-gKulQ.roa
Signing time: Sat 01 Jan 2022 14:06:02 +0000
ROA not before: Sat 01 Jan 2022 14:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 195.8.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164417058 (0x9ccce22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: Jan 1 14:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0a0bcdc522a38d23a85312d1955b177e80aba54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:98:2d:6d:6d:76:98:97:66:24:40:a3:66:4f:
a9:9a:1d:0f:21:f8:e2:9e:7a:02:bb:f1:72:12:c8:
d7:dd:a2:3e:70:4c:d9:f7:5f:1c:d3:14:75:bd:8d:
52:7c:54:d3:b8:ce:75:93:50:94:99:0d:ea:4e:91:
f5:71:c9:27:b0:ee:6c:14:21:61:95:20:93:46:3f:
22:14:7d:fa:ca:fe:cf:bf:aa:b5:55:d5:94:bd:23:
61:00:15:72:8c:b2:24:ea:ee:22:74:05:25:11:af:
0a:74:ac:3d:64:7d:ab:e6:88:25:6b:8d:cb:f3:87:
57:7b:76:a7:88:7d:dd:73:e2:04:b9:fa:ce:e5:93:
20:60:b3:2d:2a:a6:ff:d6:d3:73:d7:40:2f:62:46:
81:67:a4:27:4a:12:fa:cf:68:c0:d7:9c:68:87:f1:
92:d3:9d:90:e8:3a:b3:1c:fe:06:e2:bf:58:ff:de:
72:fd:89:aa:06:43:38:d9:a8:93:c6:ce:72:11:35:
32:28:4d:ef:57:79:8a:d2:53:ef:46:80:c9:26:6f:
ec:3d:f3:59:17:76:59:7e:e0:8c:27:bc:b5:98:e2:
7a:1d:a4:e3:8d:b8:01:d2:8d:e3:d4:a3:d2:36:4b:
12:96:fd:6f:1b:d4:b0:96:4f:14:97:b4:83:02:40:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A0:BC:DC:52:2A:38:D2:3A:85:31:2D:19:55:B1:77:E8:0A:BA:54
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/4KC83FIqONI6hTEtGVWxd-gKulQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.108.0/24
Signature Algorithm: sha256WithRSAEncryption
35:7d:c0:b9:2e:ce:eb:9f:2c:02:17:6d:da:e2:a4:d7:86:21:
7b:a9:44:68:df:c0:83:d8:5a:52:d8:29:08:86:18:1e:f3:61:
fc:e1:92:05:47:d3:d5:50:83:57:f8:62:86:6e:14:44:16:75:
47:7d:63:f0:a1:38:93:bb:e5:ad:e6:26:79:22:a8:97:16:a1:
00:a7:72:0e:81:e9:af:eb:17:e9:31:40:e1:7a:b2:a2:58:33:
2e:2d:6b:e0:45:37:b9:f3:dc:7f:c4:39:43:87:3a:db:96:66:
7a:e3:10:86:b5:6e:07:02:7a:aa:42:42:ac:51:03:24:c4:6f:
be:85:31:68:1f:c6:98:67:71:0b:50:4f:70:c3:5a:77:47:7c:
6c:f1:06:5c:26:d4:ee:e7:c5:c1:ce:d0:db:fb:49:7f:6b:1f:
44:95:b2:88:85:c2:28:4e:e7:6d:93:2a:aa:12:c0:74:08:2c:
67:bb:2c:8e:5c:a0:b6:3c:05:2e:23:2e:a6:47:b6:55:83:03:
b9:49:7f:80:c2:c1:39:c8:60:e2:6b:01:03:66:ea:f0:49:5a:
ba:30:df:a0:c5:25:b7:51:ed:f0:2e:a4:7d:34:3f:70:86:24:
b4:6d:4a:c7:5b:b8:18:13:5b:05:56:91:9e:48:bb:9b:8f:34:
2a:0a:27:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-fra.rpki-client.org