Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/24640e-f25c-42e7-b37c-b7312ab20273/1/ckFcTD8pC0Pu7BMatj-wsq7PSUU.roa
File: ckFcTD8pC0Pu7BMatj-wsq7PSUU.roa (raw, json)
Hash identifier: wQQ9w1q63L/nwSiQiE9yb7Bw5AFFnXDUWMlbsqbMyek=
Subject key identifier: 72:41:5C:4C:3F:29:0B:43:EE:EC:13:1A:B6:3F:B0:B2:AE:CF:49:45
Certificate issuer: /CN=4d92be02509643bc7a2f862871639d08e276c636
Certificate serial: DC25FC
Authority key identifier: 4D:92:BE:02:50:96:43:BC:7A:2F:86:28:71:63:9D:08:E2:76:C6:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZK-AlCWQ7x6L4YocWOdCOJ2xjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/24640e-f25c-42e7-b37c-b7312ab20273/1/ckFcTD8pC0Pu7BMatj-wsq7PSUU.roa
Signing time: Sat 01 Jan 2022 04:51:42 +0000
ROA not before: Sat 01 Jan 2022 04:51:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212506
IP address blocks: 195.16.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14427644 (0xdc25fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d92be02509643bc7a2f862871639d08e276c636
Validity
Not Before: Jan 1 04:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72415c4c3f290b43eeec131ab63fb0b2aecf4945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:07:d3:e7:09:eb:9a:9d:a1:bd:5c:6b:ac:
d0:37:bd:97:2f:11:ab:4e:2f:c8:a6:9f:c6:b5:05:
72:a7:28:7d:dd:a6:fa:d2:84:63:5d:15:ad:cf:43:
21:70:8a:c9:7f:c2:c4:04:a5:c2:bf:c4:91:9a:f6:
f7:93:13:75:9e:ee:b5:bd:3b:1f:02:29:23:a3:a7:
f3:c4:62:4b:5a:3a:d0:c5:dc:7b:19:c5:8d:10:4d:
fd:7a:8d:4b:d3:04:14:b4:6b:7c:e6:e9:96:50:af:
ec:4c:bd:0e:c0:2c:0c:3b:de:53:22:dc:38:9f:3c:
cb:89:0e:fd:80:12:36:e8:07:b7:49:b5:3a:70:64:
43:9f:d7:4f:a7:e3:9e:48:a1:85:0d:07:45:20:1e:
59:0a:10:2d:c2:a5:e7:59:55:22:41:a9:ae:d2:b0:
38:19:23:e3:06:01:17:2c:9b:67:56:c3:cf:92:e6:
f6:f8:26:3b:de:6d:b9:ad:9d:95:71:19:92:4d:9e:
64:35:eb:5d:e7:a1:c5:b8:66:35:73:46:79:a7:a5:
a0:58:5a:50:61:cd:a1:ab:81:0c:e4:47:35:25:19:
f2:20:dc:63:4e:21:5f:d6:dd:57:db:83:c8:b3:a4:
fe:4b:ce:3a:58:74:cf:57:6f:fe:50:21:a7:5c:1a:
49:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:41:5C:4C:3F:29:0B:43:EE:EC:13:1A:B6:3F:B0:B2:AE:CF:49:45
X509v3 Authority Key Identifier:
keyid:4D:92:BE:02:50:96:43:BC:7A:2F:86:28:71:63:9D:08:E2:76:C6:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZK-AlCWQ7x6L4YocWOdCOJ2xjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/24640e-f25c-42e7-b37c-b7312ab20273/1/ckFcTD8pC0Pu7BMatj-wsq7PSUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/24640e-f25c-42e7-b37c-b7312ab20273/1/TZK-AlCWQ7x6L4YocWOdCOJ2xjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.72.0/24
Signature Algorithm: sha256WithRSAEncryption
84:7f:68:08:b0:ae:20:23:56:a3:b6:31:5a:e6:d9:ba:dd:69:
d6:47:f4:c4:de:de:b0:93:96:2b:00:d4:5f:13:1a:f1:3e:1a:
7c:c7:db:65:35:c1:eb:98:5a:99:fc:6d:25:b8:42:d1:01:d4:
41:e6:67:e9:4c:66:15:6b:54:77:bd:e7:4a:b3:56:43:8a:43:
61:c5:da:ed:8e:3a:68:65:2e:71:9f:fb:34:87:56:26:a8:39:
93:ed:03:71:65:8d:9d:c5:aa:79:63:e7:a5:95:51:4a:bd:a4:
4d:74:f8:29:36:23:7b:19:61:c5:94:13:df:a2:26:b0:5f:6a:
86:ac:63:db:fd:b9:8d:9e:b2:28:5e:31:5c:da:a1:fc:b6:7f:
a5:a2:0e:03:7c:93:77:c8:ef:15:15:68:e4:1c:cc:e1:31:2c:
45:00:dd:77:e2:6f:33:c5:5f:d3:85:7b:44:5a:27:b3:f3:2c:
96:21:28:e2:31:36:46:2d:17:a3:f9:10:ad:df:b1:bc:d7:65:
5c:09:df:06:04:85:4d:11:50:8f:05:bd:b6:c4:b1:a5:9c:e6:
62:ff:1c:77:b2:b3:74:5f:8c:32:3f:4b:17:4e:1c:15:b2:d2:
4b:ff:b8:c7:6a:72:b0:68:1d:7d:f4:4f:a9:b9:79:54:3a:da:
96:f7:67:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org