Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/9a1fff-050e-4de9-8e64-5d4010900e86/1/PVFSmDuR1owrRydpjCIuw0P23XY.roa
File: PVFSmDuR1owrRydpjCIuw0P23XY.roa (raw, json)
Hash identifier: MYqzydY5ABVUWZzNuPjzsZjh0ks2sC2uUzGT5UmVBzs=
Subject key identifier: 3D:51:52:98:3B:91:D6:8C:2B:47:27:69:8C:22:2E:C3:43:F6:DD:76
Certificate issuer: /CN=4716a44374fea5ec99f10fb8d6c7d8efe2a3348b
Certificate serial: 0AB8
Authority key identifier: 47:16:A4:43:74:FE:A5:EC:99:F1:0F:B8:D6:C7:D8:EF:E2:A3:34:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RxakQ3T-peyZ8Q-41sfY7-KjNIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/9a1fff-050e-4de9-8e64-5d4010900e86/1/PVFSmDuR1owrRydpjCIuw0P23XY.roa
Signing time: Mon 11 Apr 2022 17:59:06 +0000
ROA not before: Mon 11 Apr 2022 17:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25326
IP address blocks: 195.234.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4716a44374fea5ec99f10fb8d6c7d8efe2a3348b
Validity
Not Before: Apr 11 17:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d5152983b91d68c2b4727698c222ec343f6dd76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:5b:de:9e:a2:d5:19:73:af:73:2d:92:0d:
32:e4:1b:5f:d0:e0:8c:dc:f5:87:26:2e:1a:4c:18:
bc:a6:05:f8:ab:2d:cc:88:53:e0:a1:1d:f5:51:8a:
15:06:ed:87:9d:cc:f6:d5:17:14:11:10:9e:79:a0:
ee:4c:37:40:88:ba:18:f3:43:70:17:b0:a5:42:08:
7d:f4:df:31:ed:6e:bb:4b:bc:65:3d:36:49:7d:52:
65:24:c9:ba:75:5d:d9:ca:3a:fc:03:9f:57:3b:af:
92:c7:10:03:7c:f1:5b:00:61:df:f6:b6:17:98:51:
29:b0:a8:de:22:ee:68:ba:33:f8:dd:ab:b7:c7:e2:
f2:63:b3:ee:54:76:4d:11:4f:35:68:96:3f:a3:4e:
99:17:4a:08:e2:23:fa:5f:8e:9d:23:8f:b1:1c:8a:
74:87:14:4e:ec:ef:c8:76:c7:db:d5:6c:a4:32:90:
a3:99:f9:86:69:1a:f9:56:a7:d4:c0:1a:05:d6:fb:
f4:0f:8d:23:d9:99:eb:04:d3:75:eb:68:01:a1:f0:
fd:2f:36:ff:5f:9b:0b:66:4a:51:0c:be:45:9f:7e:
9a:d3:38:70:3e:b2:de:a4:4b:35:3a:3b:06:bc:29:
9c:1e:7a:a1:e7:54:ab:19:ea:79:3b:2b:97:d1:30:
d6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:52:98:3B:91:D6:8C:2B:47:27:69:8C:22:2E:C3:43:F6:DD:76
X509v3 Authority Key Identifier:
keyid:47:16:A4:43:74:FE:A5:EC:99:F1:0F:B8:D6:C7:D8:EF:E2:A3:34:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RxakQ3T-peyZ8Q-41sfY7-KjNIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/9a1fff-050e-4de9-8e64-5d4010900e86/1/PVFSmDuR1owrRydpjCIuw0P23XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/9a1fff-050e-4de9-8e64-5d4010900e86/1/RxakQ3T-peyZ8Q-41sfY7-KjNIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.30.0/23
Signature Algorithm: sha256WithRSAEncryption
92:b1:b5:71:3f:f4:af:91:22:c0:ed:12:aa:b8:cc:96:9e:0d:
9a:47:e8:8a:0b:04:1e:26:c0:d0:17:b6:3c:f6:90:dc:b4:25:
6f:cc:0e:1b:ee:d5:f3:2e:47:d8:f6:4d:0e:15:ba:74:8d:d9:
21:36:5e:80:2d:dc:01:0f:02:1c:fc:80:b2:12:3d:a8:2f:10:
75:55:f2:ed:63:af:5c:da:56:9f:bf:31:76:87:01:61:d1:b4:
2e:a7:47:a7:91:74:c4:11:69:36:07:b4:5a:4a:e2:59:22:3b:
38:5b:2f:43:96:78:c5:01:d8:67:11:71:78:9e:5d:bc:3e:b4:
33:42:e7:4f:0b:3f:0b:4b:f1:a8:60:21:25:cf:2f:0a:1f:27:
3d:ed:6a:7b:f8:ca:9b:6d:c9:11:a8:ae:44:dc:78:f6:c8:c1:
f8:5f:24:e4:67:58:5c:2c:0f:6c:f3:e9:28:d9:8d:07:33:90:
9f:9a:ad:94:f9:fc:6c:ef:47:86:b2:82:d3:17:48:be:63:c8:
7c:05:e6:23:32:0c:be:11:03:02:9b:7f:76:f8:47:99:16:a9:
45:1a:ff:82:d0:cd:ce:79:c7:e0:ee:3c:e1:34:73:c1:50:1a:
0b:51:5d:7d:dd:07:a6:b7:c6:b3:31:e9:17:b8:4b:92:aa:43:
76:44:34:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:16 2024 by rpki-client on console-fra.rpki-client.org