Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a00b89-b398-40d9-bdb5-427b2d4f9c82/1/APOnKNVAd-SLt4q-DUd_2pi2Ud0.roa
File: APOnKNVAd-SLt4q-DUd_2pi2Ud0.roa (raw, json)
Hash identifier: SJ8O0AZJ8fsevRsaAfC2NQ5YkCT22G2W7M1RU3i0eNA=
Subject key identifier: 00:F3:A7:28:D5:40:77:E4:8B:B7:8A:BE:0D:47:7F:DA:98:B6:51:DD
Certificate issuer: /CN=7ec5d4828dc34199ef717cc03a48a0074c1443b8
Certificate serial: 13F7EF57
Authority key identifier: 7E:C5:D4:82:8D:C3:41:99:EF:71:7C:C0:3A:48:A0:07:4C:14:43:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsXUgo3DQZnvcXzAOkigB0wUQ7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/a00b89-b398-40d9-bdb5-427b2d4f9c82/1/APOnKNVAd-SLt4q-DUd_2pi2Ud0.roa
Signing time: Sat 01 Jan 2022 08:56:40 +0000
ROA not before: Sat 01 Jan 2022 08:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39071
IP address blocks: 195.66.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335015767 (0x13f7ef57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec5d4828dc34199ef717cc03a48a0074c1443b8
Validity
Not Before: Jan 1 08:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00f3a728d54077e48bb78abe0d477fda98b651dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:39:28:8f:da:09:5a:7d:5f:5b:f0:73:72:60:
a6:28:47:f2:32:0d:e8:c1:19:7a:43:d6:78:9a:c0:
db:6e:ba:5c:40:d9:d2:ba:3e:e5:ae:84:c2:e3:20:
5e:1a:4e:99:ab:7d:81:1b:22:4e:53:43:81:99:96:
31:05:af:bb:e0:de:9e:f0:e4:ff:a9:b6:91:1e:50:
2e:7c:f8:64:05:e0:70:d8:14:6b:fa:a6:93:96:64:
bf:b8:87:f3:1a:a6:57:94:d8:ff:f7:5f:62:cf:9a:
16:ff:c0:82:7a:44:e4:74:d1:92:a3:48:54:42:36:
c5:a8:25:26:4e:1b:82:1c:cd:22:44:4d:d1:5b:0a:
c2:5d:33:a2:f5:43:dd:f7:ca:4f:88:77:62:8f:d4:
d5:e0:f1:cb:bc:0c:f9:05:fe:68:fb:6e:ee:08:d5:
1a:55:e6:79:8e:f0:f7:c8:2f:94:75:30:86:bb:e1:
dc:8a:4c:3f:18:ec:43:09:59:4a:bf:3b:93:19:90:
b3:e7:6d:b4:58:01:b4:99:3f:e6:6b:94:fc:28:7d:
a8:16:4d:97:0b:4b:42:08:3b:f8:41:86:fe:7c:7d:
65:09:53:f2:83:52:d9:b0:5b:43:41:c3:9a:0b:30:
ce:d8:e1:79:7e:77:6e:43:b3:bc:23:1c:dd:d1:5d:
59:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F3:A7:28:D5:40:77:E4:8B:B7:8A:BE:0D:47:7F:DA:98:B6:51:DD
X509v3 Authority Key Identifier:
keyid:7E:C5:D4:82:8D:C3:41:99:EF:71:7C:C0:3A:48:A0:07:4C:14:43:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsXUgo3DQZnvcXzAOkigB0wUQ7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a00b89-b398-40d9-bdb5-427b2d4f9c82/1/APOnKNVAd-SLt4q-DUd_2pi2Ud0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a00b89-b398-40d9-bdb5-427b2d4f9c82/1/fsXUgo3DQZnvcXzAOkigB0wUQ7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.66.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a3:2f:84:be:11:3d:57:69:65:65:47:d6:8e:29:88:58:26:
a2:36:88:85:2d:35:49:d5:59:5e:ad:bb:ca:ad:00:6f:6d:d5:
0f:3d:77:b8:08:3a:0e:ac:b5:17:9c:e7:0f:40:bd:95:16:a9:
40:4a:d8:d7:43:fa:56:ad:04:45:9d:27:f2:15:3f:5e:53:3b:
14:31:4d:90:18:29:39:9c:6f:39:2d:90:b4:43:0b:cb:29:f6:
a6:4a:a1:05:1e:31:c7:b3:cb:9b:3c:7e:58:fb:ab:b7:68:a3:
01:fe:c1:f4:0d:32:61:ad:39:db:d1:08:c6:cb:ee:1e:64:b8:
56:d5:22:6a:a1:c3:a3:eb:39:b2:b3:e5:5f:02:62:f8:d3:5c:
73:82:b5:03:f6:66:11:41:71:7b:6d:fc:ad:71:eb:7c:ff:29:
f6:38:3e:96:dc:2d:b8:b2:62:35:9b:3d:46:85:68:86:7b:7b:
44:51:58:df:8f:e1:d7:85:ff:c0:98:88:e5:c4:90:6a:e2:7d:
61:18:a3:2b:68:40:a8:c0:7e:7c:bd:9d:91:d9:ed:c2:9a:26:
64:c6:44:5d:41:34:8b:f2:c4:e7:37:cd:6f:ee:ef:92:7e:f6:
48:9a:20:fd:f6:e5:d6:6e:90:24:48:09:fe:60:63:98:be:d2:
df:d9:c4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:17 2024 by rpki-client on console-fra.rpki-client.org