Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ab23ff-e53b-4d08-8392-9af993b0343e/1/CesMZM3YD9SoxD4n6wjZqJj-ZQo.roa
File: CesMZM3YD9SoxD4n6wjZqJj-ZQo.roa (raw, json)
Hash identifier: UdeCDrFnVUltGDV2uj6vz8gIuqxJiGPSTsgXHS3Fe9o=
Subject key identifier: 09:EB:0C:64:CD:D8:0F:D4:A8:C4:3E:27:EB:08:D9:A8:98:FE:65:0A
Certificate issuer: /CN=9304eba2a97a09c9b3b08cff83dfb477141bc1cb
Certificate serial: 0EE155EF
Authority key identifier: 93:04:EB:A2:A9:7A:09:C9:B3:B0:8C:FF:83:DF:B4:77:14:1B:C1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwTroql6CcmzsIz_g9-0dxQbwcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ab23ff-e53b-4d08-8392-9af993b0343e/1/CesMZM3YD9SoxD4n6wjZqJj-ZQo.roa
Signing time: Sat 01 Jan 2022 08:04:18 +0000
ROA not before: Sat 01 Jan 2022 08:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198408
IP address blocks: 195.245.105.0/24 maxlen: 24
195.245.104.0/24 maxlen: 24
195.245.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249648623 (0xee155ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9304eba2a97a09c9b3b08cff83dfb477141bc1cb
Validity
Not Before: Jan 1 08:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09eb0c64cdd80fd4a8c43e27eb08d9a898fe650a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:2f:5b:5e:cc:85:f3:b8:f9:ef:a7:4f:5e:
66:99:6e:d7:42:a2:d9:0e:10:af:1f:17:3e:2a:cd:
c1:7a:d4:17:d5:52:e1:f7:e9:9d:68:6f:7b:4e:e9:
dc:d9:b0:c7:4a:69:fb:ae:01:bf:04:2d:25:e5:b1:
c9:84:ab:33:31:2a:eb:11:80:f5:2c:cd:fa:f5:3b:
6c:0f:88:f4:16:4f:b3:4b:ed:52:72:c7:21:60:c9:
01:e1:7f:17:ef:12:23:cb:d7:12:e0:ea:19:80:a5:
f5:ca:b4:bd:6a:ff:b4:49:33:fe:82:2b:5d:36:99:
cd:ac:9b:6c:15:e0:6d:f0:13:6a:4a:83:38:56:f3:
ba:50:a2:3c:e5:6f:84:7f:6e:96:91:13:43:d9:1f:
f1:09:10:7f:6f:17:48:d3:df:cb:0a:d4:e2:11:de:
56:68:6e:59:f6:de:34:8d:ae:d6:8f:f1:df:56:53:
db:ca:c8:c6:b5:90:3d:11:12:02:7d:07:33:34:54:
56:77:56:79:3b:8b:32:d0:94:3c:3e:6c:c3:65:3b:
e8:88:f5:d8:af:15:9a:d5:2f:58:c8:27:1b:82:93:
5d:a9:14:49:cb:c1:8f:11:a4:f6:af:6d:1c:c7:db:
f8:03:8c:d6:b5:90:fb:7b:e0:70:92:2a:27:e8:c0:
58:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EB:0C:64:CD:D8:0F:D4:A8:C4:3E:27:EB:08:D9:A8:98:FE:65:0A
X509v3 Authority Key Identifier:
keyid:93:04:EB:A2:A9:7A:09:C9:B3:B0:8C:FF:83:DF:B4:77:14:1B:C1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwTroql6CcmzsIz_g9-0dxQbwcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ab23ff-e53b-4d08-8392-9af993b0343e/1/CesMZM3YD9SoxD4n6wjZqJj-ZQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ab23ff-e53b-4d08-8392-9af993b0343e/1/kwTroql6CcmzsIz_g9-0dxQbwcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.104.0/23
Signature Algorithm: sha256WithRSAEncryption
79:01:71:f1:0a:ab:a2:92:b3:e0:c0:43:b0:88:16:f7:17:3d:
d9:e3:e6:e5:1e:e3:8e:0d:dc:0e:87:4b:e8:0a:e3:02:cd:4e:
f4:57:21:b3:ec:21:1a:5b:15:a2:91:cd:dc:db:a9:d8:9d:31:
6a:a4:13:e2:dd:eb:6f:df:dd:9a:f5:fc:f0:07:94:74:ed:78:
e2:7d:c4:42:45:70:c7:e8:7c:dc:6c:9b:d1:66:2e:55:23:13:
0d:68:e9:72:07:30:b5:e3:3e:50:95:fc:32:31:55:60:25:fb:
b9:cc:d1:87:52:40:ca:f5:f8:53:cc:ca:7c:f2:4b:02:ca:47:
f6:b3:91:31:ae:66:ae:a2:b4:d6:07:5f:c9:0c:43:7d:f6:36:
ee:8a:f5:2e:11:c2:7b:83:8a:e1:36:fa:e4:9f:35:91:1a:d6:
a5:9a:7f:69:e9:e0:8c:1d:ea:71:fc:6d:6a:af:47:e1:71:2e:
dd:86:b8:92:6b:60:5c:a7:21:3d:ff:18:e7:fa:6a:87:54:c2:
01:ff:1f:c0:47:f7:8f:27:c2:a7:76:0f:e0:ee:ff:f6:19:22:
f2:b3:07:c2:c8:63:17:fe:a6:75:52:07:3c:a7:ff:81:76:65:
dc:06:e8:ae:b7:c2:d1:6a:e4:1b:d5:3f:fa:66:0e:92:ca:a9:
1c:38:21:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:44 2024 by rpki-client on console-fra.rpki-client.org