Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/JOSfA5_SNTIR3DQ8fPgOpVo9u0w.roa
File: JOSfA5_SNTIR3DQ8fPgOpVo9u0w.roa (raw, json)
Hash identifier: UwGyOPIibudepxM3KTTYcH0ckgpw0Uh3toypHSrchmU=
Subject key identifier: 24:E4:9F:03:9F:D2:35:32:11:DC:34:3C:7C:F8:0E:A5:5A:3D:BB:4C
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 08E760B9
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/JOSfA5_SNTIR3DQ8fPgOpVo9u0w.roa
Signing time: Sat 01 Jan 2022 08:05:15 +0000
ROA not before: Sat 01 Jan 2022 08:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29582
IP address blocks: 95.158.145.0/24 maxlen: 24
80.95.19.0/24 maxlen: 24
2a00:e200:103::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149381305 (0x8e760b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 1 08:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24e49f039fd2353211dc343c7cf80ea55a3dbb4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:17:f3:fa:ee:cc:fb:98:c4:16:50:c9:b6:7e:
80:cc:dd:53:8a:30:41:bd:ca:47:e1:3f:e4:fa:ad:
43:f6:93:e6:81:77:a2:30:52:19:dc:e4:28:b3:da:
fe:9c:94:39:b6:91:b7:92:67:3c:8e:00:ea:1f:7a:
76:e8:7e:0e:f8:fb:dd:66:a7:84:9e:9f:e1:37:d2:
2c:21:5c:4b:60:eb:6e:9e:3a:23:87:3e:36:83:e9:
d0:d1:42:52:8b:f3:13:14:d9:d0:e3:88:38:15:cb:
43:4e:b3:f9:eb:97:c3:52:e5:49:00:ba:61:7d:60:
16:f4:67:46:71:24:4e:34:7e:ac:83:ba:10:eb:2b:
87:4f:b0:2d:a3:42:e6:cc:a1:b9:90:52:28:f0:6a:
98:e4:f4:36:a5:50:02:b3:a2:40:af:05:36:3b:7c:
60:58:d5:9e:dc:27:3e:5c:60:c8:35:e7:20:c2:dc:
8c:88:ef:1a:e0:5a:d5:1f:c7:ce:e4:9f:da:02:64:
88:1c:72:3c:f4:90:d2:82:4a:24:e9:0f:4b:b7:f1:
07:22:b6:26:77:99:c2:59:b9:c9:3e:a2:b3:31:5b:
59:34:cd:1c:4a:fe:14:10:db:b8:c3:6e:f5:bb:6e:
61:29:bf:50:59:df:9c:0a:60:70:4d:f0:36:9c:31:
e4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E4:9F:03:9F:D2:35:32:11:DC:34:3C:7C:F8:0E:A5:5A:3D:BB:4C
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/JOSfA5_SNTIR3DQ8fPgOpVo9u0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.19.0/24
95.158.145.0/24
IPv6:
2a00:e200:103::/48
Signature Algorithm: sha256WithRSAEncryption
47:d3:75:6b:64:27:8e:30:34:90:f4:19:8f:aa:71:df:5d:f9:
08:07:fa:a8:c7:90:9c:35:70:fa:1c:e2:ad:74:42:2b:66:66:
75:8f:61:d1:fb:c9:bd:a9:24:cd:bb:af:36:95:b2:65:32:a1:
84:54:4c:b2:a2:45:c1:94:cd:3e:95:c4:48:64:f3:de:9f:95:
46:ca:aa:0c:ee:1c:a8:63:ab:c0:e5:e8:d1:c4:c1:1d:a5:c2:
e2:99:19:e0:5b:23:cb:67:86:b6:84:7f:74:e3:96:1e:bb:90:
2e:e2:82:d1:fb:9f:b2:27:5c:69:00:52:84:eb:cd:9f:5e:65:
29:ca:9e:a8:92:51:3d:ae:27:de:05:06:2e:4e:aa:cf:ec:dc:
16:58:f0:32:28:d4:e0:d4:3d:ec:e8:be:39:fd:9d:4d:3b:d7:
b4:8a:68:83:f2:75:09:30:d6:c0:47:8c:23:e8:ef:b2:88:ba:
a2:66:5d:5e:cc:f8:81:ab:6b:10:fd:c3:98:d3:cd:15:b5:97:
7e:ac:60:cb:1f:82:70:30:9d:fc:bd:0b:63:4d:87:e7:df:14:
f4:99:cb:29:b0:fa:09:60:0d:5f:31:b9:a3:a1:aa:c2:2e:84:
d9:44:ac:d8:e1:b8:01:73:84:eb:c1:0f:e9:b7:17:49:3c:89:
32:f4:cd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org