Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/608f6d-8cd1-499e-a518-5f15939e7680/1/PT-7h2xHWRXpw3POnk2BtPgJOfk.roa
File: PT-7h2xHWRXpw3POnk2BtPgJOfk.roa (raw, json)
Hash identifier: DxHNoU/UsBOI+UfMjgUQuaHlDEN1qTULnD4hKr99VG8=
Subject key identifier: 3D:3F:BB:87:6C:47:59:15:E9:C3:73:CE:9E:4D:81:B4:F8:09:39:F9
Certificate issuer: /CN=fa1de37bbc6c06420da626c0bb4d723231e93e84
Certificate serial: 014232
Authority key identifier: FA:1D:E3:7B:BC:6C:06:42:0D:A6:26:C0:BB:4D:72:32:31:E9:3E:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-h3je7xsBkINpibAu01yMjHpPoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/608f6d-8cd1-499e-a518-5f15939e7680/1/PT-7h2xHWRXpw3POnk2BtPgJOfk.roa
Signing time: Thu 10 Mar 2022 13:16:47 +0000
ROA not before: Thu 10 Mar 2022 13:16:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203167
IP address blocks: 195.88.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82482 (0x14232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1de37bbc6c06420da626c0bb4d723231e93e84
Validity
Not Before: Mar 10 13:16:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d3fbb876c475915e9c373ce9e4d81b4f80939f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:96:b1:81:d5:68:e2:59:bf:12:fc:c2:82:
a4:4b:89:33:09:f6:b6:3f:6e:00:f0:72:bd:1d:96:
be:3c:7b:9a:1b:72:85:2c:82:d1:a2:e0:41:57:d5:
59:0a:92:c3:b0:de:a8:82:ea:a2:97:e2:27:49:d1:
5e:90:d5:4a:a8:f5:82:9e:4f:20:3f:13:fc:95:e0:
6d:1b:28:2a:b7:94:1a:1b:08:d9:a8:b5:8b:81:98:
b0:7a:6c:1b:24:cb:73:49:c4:87:c2:9a:c8:ee:61:
33:36:35:ad:65:87:05:79:04:e6:35:2f:6e:44:a7:
7e:a3:65:f3:c0:b4:97:f5:13:80:da:9c:c2:f5:76:
5a:41:e4:49:27:fa:50:79:f6:5a:35:dd:30:c6:fc:
03:4c:52:8c:b8:47:98:9c:be:16:8b:f8:79:6a:48:
9a:a4:8f:44:e1:4e:d1:81:87:03:df:5b:84:cb:ba:
d5:ce:3d:fc:7d:e2:ad:a5:ce:dd:b1:3e:73:4f:d3:
0e:3d:b7:5f:8c:50:6d:eb:b3:d9:23:66:74:9c:3e:
7b:4b:53:4f:e4:f0:cf:af:5c:a5:b8:bc:21:1b:8f:
07:e5:7e:3f:6d:d6:ed:7e:3c:8e:b7:10:04:1f:46:
90:73:6a:f7:d5:42:01:1a:62:d5:4d:da:da:71:d4:
dd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3F:BB:87:6C:47:59:15:E9:C3:73:CE:9E:4D:81:B4:F8:09:39:F9
X509v3 Authority Key Identifier:
keyid:FA:1D:E3:7B:BC:6C:06:42:0D:A6:26:C0:BB:4D:72:32:31:E9:3E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-h3je7xsBkINpibAu01yMjHpPoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/608f6d-8cd1-499e-a518-5f15939e7680/1/PT-7h2xHWRXpw3POnk2BtPgJOfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/608f6d-8cd1-499e-a518-5f15939e7680/1/1-h3je7xsBkINpibAu01yMjHpPoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.197.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b9:be:fd:e0:f3:1b:e0:ec:2f:f4:8c:eb:71:f6:e5:49:2f:
82:0b:9c:e1:a4:39:8a:6a:98:23:66:7d:b3:32:af:5a:fe:71:
40:4d:33:71:92:a0:3a:88:af:7a:86:3d:70:d2:e3:ea:58:42:
22:b4:13:fa:01:20:0f:81:4d:3c:13:dc:b3:e7:06:08:4b:9d:
06:04:f4:d5:e9:68:44:37:19:ef:49:2a:87:b8:2a:5d:ba:20:
f9:e1:50:ea:d4:1b:5e:00:20:39:74:99:61:cc:6b:3b:1e:f6:
aa:80:06:4c:61:c0:70:49:2c:11:83:9c:bb:53:7c:8e:d4:81:
54:aa:1b:32:e7:4f:26:0b:5b:eb:e3:de:54:4a:0e:a6:66:0c:
5d:ed:be:64:a9:8a:31:bf:42:60:e9:ce:11:f6:ee:85:82:4a:
bb:90:60:5d:7b:6d:89:0c:fa:e0:d4:4a:9b:17:cc:7d:81:dc:
0b:c2:ea:2b:7f:bd:41:73:1b:18:49:8d:e0:b9:4a:82:fb:88:
b8:da:f4:fc:0a:0e:bc:73:54:fe:aa:05:bb:e5:76:cf:79:2b:
15:67:4b:d0:fe:b7:d3:5e:91:d6:ea:14:98:6a:1c:5b:80:b6:
e3:73:22:2f:a2:63:51:2b:d5:07:74:7c:ca:3e:58:c6:62:bc:
ea:0b:0f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:03 2024 by rpki-client on console-ams.rpki-client.org