Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/lonB4ftQCRi6jGuwj-6UHX7DdFU.roa
File: lonB4ftQCRi6jGuwj-6UHX7DdFU.roa (raw, json)
Hash identifier: YZWOWAMmUmkM23IK76lupWSNUAmeAJ0vkn9QYOZa1zk=
Subject key identifier: 96:89:C1:E1:FB:50:09:18:BA:8C:6B:B0:8F:EE:94:1D:7E:C3:74:55
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 1760498D
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/lonB4ftQCRi6jGuwj-6UHX7DdFU.roa
Signing time: Sat 26 Feb 2022 07:11:03 +0000
ROA not before: Sat 26 Feb 2022 07:11:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5480
IP address blocks: 195.208.224.0/22 maxlen: 22
195.208.232.0/23 maxlen: 23
195.208.239.0/24 maxlen: 24
195.208.240.0/23 maxlen: 23
195.208.237.0/24 maxlen: 24
195.208.244.0/22 maxlen: 22
195.208.243.0/24 maxlen: 24
195.208.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392186253 (0x1760498d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 26 07:11:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9689c1e1fb500918ba8c6bb08fee941d7ec37455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ee:c8:25:23:d2:53:d2:6f:b9:7c:e5:31:98:
5a:f6:b3:0a:7b:c3:6f:1f:f2:f2:4d:88:ba:f0:20:
a5:3f:1e:9b:65:48:e3:4b:43:ce:b4:da:c1:f0:ec:
03:c4:8c:a2:21:08:e3:a2:0a:9c:8d:34:85:ad:92:
df:73:11:06:29:8e:44:a2:af:30:39:5f:42:a9:f4:
ec:4f:61:69:43:22:f0:b0:da:72:96:d6:fb:6f:25:
24:28:5c:7e:b1:2f:eb:14:0c:d2:4c:34:bb:3c:26:
2b:fc:03:02:21:3c:5e:50:68:d1:dc:39:91:b3:c1:
b3:08:5e:b7:58:7a:20:22:0e:d2:dc:a5:5d:71:aa:
34:12:97:4d:fe:02:e0:d9:fe:14:54:bd:71:61:f4:
84:dc:d1:cf:32:57:06:34:fc:39:e1:f2:14:2d:c4:
9d:bc:b3:0b:a0:62:c3:b1:95:57:e0:7f:8e:91:93:
99:d3:f1:40:ac:75:89:9d:c7:f9:b6:c9:c3:a9:1e:
a1:f7:52:18:d4:4b:36:3b:f7:af:6f:f2:70:4d:77:
20:72:91:95:83:20:26:3e:4c:84:eb:b6:50:c6:9d:
af:45:cd:0b:68:b9:22:6a:6a:34:c9:0d:63:11:3c:
3d:7e:5e:3f:80:e6:ea:a1:fa:28:b3:9c:d1:ce:f3:
7a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:89:C1:E1:FB:50:09:18:BA:8C:6B:B0:8F:EE:94:1D:7E:C3:74:55
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/lonB4ftQCRi6jGuwj-6UHX7DdFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.224.0/22
195.208.232.0/23
195.208.237.0/24
195.208.239.0-195.208.241.255
195.208.243.0-195.208.255.255
Signature Algorithm: sha256WithRSAEncryption
09:99:f1:4a:95:1b:80:17:97:75:60:02:04:b9:5a:07:c2:0f:
a7:19:2e:4a:17:6f:b3:c9:64:9c:64:86:ca:af:97:f9:48:f2:
60:9f:e9:f4:a0:c4:ad:98:83:7a:52:f5:92:85:5c:78:06:c2:
3d:3a:f4:cc:6a:2b:71:03:a6:a5:4c:3b:0c:a2:b9:b4:4f:0d:
99:f5:45:df:1d:03:da:87:91:2e:f6:cb:3e:cb:dd:1f:9e:29:
10:aa:d1:84:6e:8e:ac:e3:2a:aa:83:56:22:39:da:b9:4d:35:
fc:96:28:cf:f7:5c:aa:20:7f:eb:66:a1:8f:81:25:b5:e0:c2:
9c:4c:e3:68:3d:ec:2a:06:e9:f7:79:de:a0:c7:4b:0e:2c:30:
5b:55:4a:c5:c1:66:c4:6e:b7:1f:93:4d:6b:ef:50:e9:f3:9c:
24:07:dd:7a:66:ad:d7:81:9d:d7:33:ff:1a:d9:c3:42:0e:6d:
4f:52:41:5c:bc:8d:58:17:a9:14:cf:33:11:fa:d8:8b:7b:d8:
40:23:06:4f:02:15:84:b0:16:8a:f0:04:ca:9f:af:58:72:57:
75:6e:13:5b:3b:7c:69:d6:6a:45:a7:c2:db:5d:49:a4:a5:42:
99:8c:6b:95:9a:0c:ef:d1:68:f9:f3:b2:ae:78:ba:ad:f2:36:
ad:de:ec:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org