Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/cFeJ53G5e955b7iMKFz0aXbLUsc.roa
File: cFeJ53G5e955b7iMKFz0aXbLUsc.roa (raw, json)
Hash identifier: nOIvrFiRgLhQh3OKlNDztG7YL3rAuciOJPh4NkqrY+g=
Subject key identifier: 70:57:89:E7:71:B9:7B:DE:79:6F:B8:8C:28:5C:F4:69:76:CB:52:C7
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 07FE5AFF
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/cFeJ53G5e955b7iMKFz0aXbLUsc.roa
Signing time: Sat 01 Jan 2022 16:01:35 +0000
ROA not before: Sat 01 Jan 2022 16:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47457
IP address blocks: 195.43.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134109951 (0x7fe5aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 1 16:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=705789e771b97bde796fb88c285cf46976cb52c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:a3:59:87:ed:84:c2:b4:90:bc:35:9e:2c:
64:d8:40:ac:ae:a4:4c:cc:cd:bd:a9:88:26:df:5a:
2a:b4:c4:8a:c9:c4:02:3d:05:5c:38:c6:03:54:41:
c5:f8:c4:8c:e0:60:27:c3:54:d8:70:00:86:dd:d1:
a9:9a:2f:ef:6c:88:df:9c:85:98:65:5e:04:be:6d:
c8:88:3c:68:90:52:5e:60:15:a1:88:6a:df:2c:e5:
4f:b8:ac:62:44:7b:25:06:96:48:4e:ae:b3:61:70:
22:30:c2:63:80:7d:3e:51:74:52:8a:9f:8b:6f:9f:
d4:21:90:e7:53:5a:56:b1:7c:29:d2:68:b5:06:59:
28:90:81:60:b3:9d:51:88:d0:b3:4a:7c:24:99:b4:
fa:dc:43:4c:91:46:31:ae:22:d5:6f:d2:e9:16:5e:
e6:0c:ec:17:51:c0:ad:46:32:fd:df:f7:13:7b:b7:
0b:45:fc:95:6e:8e:ed:a7:5b:46:82:6e:81:07:55:
97:06:05:83:c4:98:8d:6c:e2:53:93:42:d4:ea:4d:
37:92:dd:13:79:2b:99:a8:26:2c:dc:22:f7:0d:6a:
7d:49:1f:e3:7e:9f:81:e6:76:ab:d4:d4:b8:b0:1a:
0b:d6:6c:55:08:f5:db:02:b3:86:53:cc:4e:43:de:
52:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:57:89:E7:71:B9:7B:DE:79:6F:B8:8C:28:5C:F4:69:76:CB:52:C7
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/cFeJ53G5e955b7iMKFz0aXbLUsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.144.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0c:87:63:e7:23:d9:cc:99:92:d8:d8:18:e1:26:90:3e:0e:
ca:4f:ea:4c:ca:dd:5c:fa:17:09:50:d2:e3:2a:3f:67:d8:f4:
71:e9:33:51:ee:92:f2:38:70:6e:b6:70:31:3c:91:a7:6a:ab:
c0:09:2e:16:9b:c7:02:fa:4e:37:95:3f:35:a5:4a:82:ec:bf:
8c:e4:0b:fd:3a:c1:0b:dd:b7:85:26:9c:c5:3c:5a:ee:38:3e:
bc:f1:e4:f4:43:dd:30:57:bf:ce:c2:4e:93:ed:97:44:8f:63:
f7:28:9f:49:bf:17:ef:50:8b:86:7f:17:00:e9:59:3e:61:b9:
3b:46:c6:45:04:82:4d:f7:7d:a7:84:73:d3:90:45:86:f4:fb:
c2:58:4e:88:00:a4:19:2e:53:ea:fa:41:b8:2a:cb:61:2c:f6:
28:1a:0f:83:4c:d6:2c:2b:2a:54:76:ef:86:e9:42:57:20:30:
dd:95:25:23:d6:eb:a7:a3:7c:ee:86:f6:bd:69:43:70:42:2f:
cd:ba:82:d3:12:91:ae:51:93:b3:5a:ef:64:cf:70:01:47:e3:
25:72:3d:d8:41:02:84:db:4e:3b:70:ee:70:33:bf:d4:db:52:
bf:90:59:50:72:ec:8f:d0:41:bd:83:f8:bd:d5:88:f1:a5:5f:
ac:0b:e6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:26 2024 by rpki-client on console-ams.rpki-client.org