Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/c1c063-9e49-4353-b8bd-9374f21e6488/1/Jk6pAVL__zhkRH6NHyaYMF0nNoo.roa
File: Jk6pAVL__zhkRH6NHyaYMF0nNoo.roa (raw, json)
Hash identifier: OWmZUGS8p+Mmcgum5cmXZY/CO5Uijb91DqFLaAzO0sg=
Subject key identifier: 26:4E:A9:01:52:FF:FF:38:64:44:7E:8D:1F:26:98:30:5D:27:36:8A
Certificate issuer: /CN=3fda29a48c257758c8e518ee5c8b03ccda0247c9
Certificate serial: 01821018B926D6A753C4E1CFAF5FD520097C
Authority key identifier: 3F:DA:29:A4:8C:25:77:58:C8:E5:18:EE:5C:8B:03:CC:DA:02:47:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9oppIwld1jI5RjuXIsDzNoCR8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/c1c063-9e49-4353-b8bd-9374f21e6488/1/Jk6pAVL__zhkRH6NHyaYMF0nNoo.roa
Signing time: Mon 18 Jul 2022 06:57:11 +0000
ROA not before: Mon 18 Jul 2022 06:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39320
IP address blocks: 195.250.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:18:b9:26:d6:a7:53:c4:e1:cf:af:5f:d5:20:09:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fda29a48c257758c8e518ee5c8b03ccda0247c9
Validity
Not Before: Jul 18 06:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=264ea90152ffff3864447e8d1f2698305d27368a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cf:10:96:63:30:b8:61:f6:a8:57:82:e3:78:
c2:68:3f:70:eb:7f:3f:10:a3:05:5f:07:f4:94:6f:
41:4d:9e:89:0d:fb:29:7e:b2:e7:8c:38:7a:2c:e2:
f4:c2:53:3e:64:26:ab:4c:b1:ee:0c:cd:c3:e7:d9:
d8:fa:ed:61:62:31:28:be:aa:92:d8:6b:50:e5:1f:
74:7d:bb:02:fd:91:87:c3:48:ca:5d:d1:bb:b4:36:
1f:3d:98:a4:4e:d9:d3:3b:9d:84:94:c0:45:33:e4:
d3:d3:69:9e:5b:60:dc:f6:6b:4e:26:a3:98:53:81:
de:c0:bb:f8:f9:be:ff:37:0a:aa:5e:03:2a:0c:06:
b6:33:8b:b1:09:0c:77:72:84:20:73:77:54:67:49:
96:8f:78:61:3f:de:e3:6e:1b:dc:c9:6a:12:2b:d8:
50:3f:83:8c:af:c6:d5:27:1b:37:0b:86:33:ff:1e:
de:91:e1:52:d9:9a:fb:d3:40:52:db:ad:d5:ac:6f:
35:f5:52:30:74:6d:af:69:b9:1d:bb:30:f4:0d:46:
e8:7b:fb:2b:c5:d3:db:53:96:da:ea:29:4d:c7:28:
a8:0d:e4:1a:2f:78:05:ff:10:84:4b:f1:99:b2:96:
e5:54:bc:85:ae:c4:c7:72:f8:dd:bf:83:5c:c7:e8:
42:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4E:A9:01:52:FF:FF:38:64:44:7E:8D:1F:26:98:30:5D:27:36:8A
X509v3 Authority Key Identifier:
keyid:3F:DA:29:A4:8C:25:77:58:C8:E5:18:EE:5C:8B:03:CC:DA:02:47:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9oppIwld1jI5RjuXIsDzNoCR8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/c1c063-9e49-4353-b8bd-9374f21e6488/1/Jk6pAVL__zhkRH6NHyaYMF0nNoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/c1c063-9e49-4353-b8bd-9374f21e6488/1/P9oppIwld1jI5RjuXIsDzNoCR8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.58.0/24
Signature Algorithm: sha256WithRSAEncryption
48:dd:b8:44:02:7d:46:97:6f:74:cf:e7:0a:de:61:e2:8a:a0:
26:ce:99:b6:42:4b:d1:80:6d:8b:da:07:cd:54:46:31:1c:56:
03:b0:06:ac:fe:08:54:8d:f7:25:0e:7b:d2:29:e1:a4:06:c7:
8d:24:ab:aa:32:a5:50:2c:f5:df:dd:c1:24:62:2c:86:09:46:
43:b5:3f:34:bc:50:ea:a4:5c:0d:8a:ac:7c:f4:24:f6:52:56:
f3:fd:da:75:70:96:02:2e:0d:30:45:5f:fc:52:c2:3c:48:c9:
c7:07:f1:06:31:36:e7:14:7c:53:e4:33:40:b7:27:3a:da:df:
bf:28:e0:10:35:bb:c4:17:50:a6:2a:3a:2d:56:0a:c8:5b:2b:
ac:4f:7c:c1:67:03:05:17:7e:eb:d7:b9:69:f3:3a:40:c6:7c:
20:b5:8d:a2:6f:c6:0f:aa:bd:b3:e5:67:95:b2:97:ca:56:d0:
a3:02:66:97:19:99:6b:11:92:ae:3c:0f:58:9e:58:66:30:0d:
74:76:2d:91:b2:45:73:2b:f8:0c:e0:61:7c:40:1b:77:9b:ab:
85:fd:20:a7:27:28:d8:77:08:0c:d1:70:be:0e:3e:dc:30:6e:
e8:67:21:34:ec:a3:71:02:b2:85:68:cb:9e:ce:9b:e0:84:b2:
79:50:be:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:03 2023 by rpki-client on console-fra.rpki-client.org