Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/v1Rei3-W2MnnHcMvO5Ny9YT_2TI.roa
File: v1Rei3-W2MnnHcMvO5Ny9YT_2TI.roa (raw, json)
Hash identifier: T2kHG4WDdWFBow4KiWRdgdG3ESUi9Co9RPelUbO3wtU=
Subject key identifier: BF:54:5E:8B:7F:96:D8:C9:E7:1D:C3:2F:3B:93:72:F5:84:FF:D9:32
Certificate issuer: /CN=4b01b0851b7f89ea4bb132a7f5395b9d2aca1c02
Certificate serial: 03BC790F
Authority key identifier: 4B:01:B0:85:1B:7F:89:EA:4B:B1:32:A7:F5:39:5B:9D:2A:CA:1C:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SwGwhRt_iepLsTKn9TlbnSrKHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/v1Rei3-W2MnnHcMvO5Ny9YT_2TI.roa
Signing time: Mon 28 Mar 2022 20:55:28 +0000
ROA not before: Mon 28 Mar 2022 20:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12400
IP address blocks: 195.225.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62683407 (0x3bc790f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b01b0851b7f89ea4bb132a7f5395b9d2aca1c02
Validity
Not Before: Mar 28 20:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf545e8b7f96d8c9e71dc32f3b9372f584ffd932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:20:d8:d5:3d:1d:00:67:48:c7:60:55:55:9e:
40:ad:e8:c8:fd:07:31:fa:68:f6:58:42:27:87:e0:
d0:c0:36:4f:6c:d5:f9:18:3e:00:7a:a0:7b:6d:ed:
1e:d2:aa:5b:4c:92:7a:19:9b:89:7c:34:db:52:8d:
11:64:6a:e5:76:d6:6b:17:3f:31:7f:0e:ac:02:2a:
f8:bb:54:0f:9b:cc:45:f1:05:9f:ab:62:21:bd:bf:
d9:d7:31:d6:7c:e6:36:2a:3d:43:85:c2:fb:28:58:
79:ff:f4:3e:e5:bf:85:17:f0:2f:fb:cb:6a:f5:03:
4a:5b:90:f9:86:fd:a1:0e:70:44:b7:2c:6e:cf:59:
3e:fa:73:97:01:64:cb:7e:55:34:b3:10:1a:c0:f4:
9c:8b:52:3f:aa:7c:49:e4:9c:4a:fa:02:67:18:de:
ff:a9:e2:53:7f:79:f6:95:67:dd:8d:3c:f3:83:3a:
88:e2:db:a4:fc:d2:90:3d:58:dd:65:2d:23:3d:54:
45:38:93:8e:30:28:c9:53:ad:74:2e:7f:68:c0:3a:
ef:fa:da:97:9b:84:2b:80:5d:26:0f:20:28:db:96:
1b:45:0f:98:53:87:dc:9b:92:41:78:34:b9:be:9f:
d2:c1:f9:dd:a5:89:3f:96:64:94:a0:83:ac:32:22:
13:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:54:5E:8B:7F:96:D8:C9:E7:1D:C3:2F:3B:93:72:F5:84:FF:D9:32
X509v3 Authority Key Identifier:
keyid:4B:01:B0:85:1B:7F:89:EA:4B:B1:32:A7:F5:39:5B:9D:2A:CA:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwGwhRt_iepLsTKn9TlbnSrKHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/v1Rei3-W2MnnHcMvO5Ny9YT_2TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/SwGwhRt_iepLsTKn9TlbnSrKHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.46.0/24
Signature Algorithm: sha256WithRSAEncryption
23:0b:6f:ba:b8:f6:b5:fb:e5:2f:b9:5e:9d:52:9c:b6:0e:c2:
79:17:1e:1b:f2:a2:f3:7d:1f:d4:89:22:67:fd:d0:46:28:e4:
b4:bc:49:8c:e2:19:bb:4c:eb:64:35:e7:64:11:c0:97:78:26:
de:ab:d4:45:2e:d9:7c:d8:ca:52:8a:7b:be:14:1c:89:04:af:
41:49:a1:52:ee:d4:1c:19:36:0f:3b:b2:65:8d:f0:ad:03:6d:
0d:68:b5:e2:cc:ed:ac:c4:1f:7f:c4:bf:52:62:98:7a:b3:df:
2e:2f:cf:ed:0e:fc:a9:b6:0d:52:26:6a:70:5d:79:db:22:52:
36:90:88:81:41:f2:70:c7:fc:60:b8:f8:89:a8:3a:56:9e:85:
b5:d6:f4:07:1c:39:99:09:ab:74:0e:dc:39:26:06:22:5a:ef:
b7:32:f8:b7:55:cd:58:12:d3:a1:31:e3:25:a0:be:e3:90:cd:
5b:bb:e4:ea:26:c0:9a:a0:02:6a:cd:2a:89:79:ac:b4:20:59:
41:fb:94:32:4e:17:79:7b:60:ff:df:4e:77:87:ea:30:02:21:
7e:9a:b1:63:d0:e7:84:cf:30:82:80:ce:09:4d:0e:a6:e7:06:
2e:5e:03:f8:50:b9:ce:2a:cf:82:ec:26:0c:1d:26:68:23:3f:
ed:7d:84:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:54 2024 by rpki-client on console-ams.rpki-client.org