Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/91wtX3D6_tRk9JjJ80H5vaagNzc.roa
File: 91wtX3D6_tRk9JjJ80H5vaagNzc.roa (raw, json)
Hash identifier: AnGkFu3xR5uHu8T3xCvC8Af7qcig0UQoRy2ut420Wis=
Subject key identifier: F7:5C:2D:5F:70:FA:FE:D4:64:F4:98:C9:F3:41:F9:BD:A6:A0:37:37
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 1A8C511E
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/91wtX3D6_tRk9JjJ80H5vaagNzc.roa
Signing time: Sat 01 Jan 2022 11:03:43 +0000
ROA not before: Sat 01 Jan 2022 11:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202286
IP address blocks: 195.20.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445403422 (0x1a8c511e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 11:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f75c2d5f70fafed464f498c9f341f9bda6a03737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ab:c1:0d:6d:9f:64:dd:a0:dd:16:76:0a:fa:
6d:5a:2f:a1:6a:bc:51:0d:2b:e1:2e:7d:bd:2d:e7:
a6:58:df:e2:f1:b3:39:d3:f2:29:f9:17:e0:0f:95:
48:37:fa:96:ca:c5:55:c3:2f:19:1d:8d:37:94:e4:
8b:19:bd:c7:19:63:ac:1e:78:69:0f:d3:25:97:e4:
d5:80:c5:3b:ce:c3:04:63:90:5a:ab:be:8d:46:2e:
11:b4:a8:91:99:99:e5:6f:85:f4:1c:1c:f4:b6:7d:
42:de:cd:08:37:22:6e:3c:65:38:d6:d5:95:b7:23:
8c:45:14:93:00:74:30:2e:61:88:7a:d4:fd:d1:ac:
9f:b9:b8:22:0a:5b:77:d8:71:a0:fd:66:23:33:1a:
71:88:3a:46:66:3d:16:9e:44:6f:72:99:6c:01:77:
da:2d:c4:74:63:0b:f8:4a:a7:ef:0d:2a:78:a5:26:
fa:56:64:9e:d7:b3:25:00:b2:c6:33:d4:a9:fc:6a:
c3:58:6f:c3:d5:53:c7:c4:d4:95:42:00:1f:04:73:
18:f1:79:a0:98:d9:b6:f6:00:d8:74:62:3e:03:f3:
a3:f3:10:25:2e:8c:eb:21:b0:42:15:0e:7a:95:21:
a1:a9:15:8f:14:e2:94:e2:03:ae:69:9f:e4:8b:80:
65:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5C:2D:5F:70:FA:FE:D4:64:F4:98:C9:F3:41:F9:BD:A6:A0:37:37
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/91wtX3D6_tRk9JjJ80H5vaagNzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.109.0/24
Signature Algorithm: sha256WithRSAEncryption
19:a6:ae:79:e0:28:6d:ad:dc:0f:6c:01:43:55:e8:3d:91:2e:
eb:a3:2b:ac:b6:9a:48:ce:cc:ce:16:4b:a3:bb:86:8e:38:ed:
42:83:04:ac:18:fc:0c:3f:da:35:59:c2:cf:71:d5:23:67:b9:
78:da:07:07:28:c6:24:74:22:4d:6f:a8:5e:35:cb:92:cf:d7:
58:00:ef:02:7f:6f:14:f2:31:56:6f:e3:80:8f:7d:20:c3:fd:
c0:e8:4c:24:14:0f:56:fd:fd:74:7c:79:ea:67:82:5f:ce:22:
0b:61:b1:15:04:0e:f9:03:24:2f:4b:08:90:18:1b:7b:65:9b:
83:12:6c:d4:ff:e5:7f:83:df:df:f5:01:29:3d:6d:de:68:aa:
7b:65:b3:20:11:9b:e9:af:5d:3a:ca:34:98:60:6f:d2:aa:c2:
5b:8a:06:6b:4c:cc:8c:0c:bf:a5:3d:c8:4f:3e:20:f4:92:6d:
69:2c:a5:0b:8e:2b:1d:de:48:4c:d2:22:7c:1e:54:84:91:82:
14:c6:46:e1:c9:88:29:78:1c:da:b7:6a:d9:31:b5:76:db:fe:
84:b9:dd:92:6f:04:63:c8:46:78:13:54:d1:19:fc:cc:82:d9:
3b:de:8c:5f:3e:2c:be:ab:6e:06:21:63:8b:1c:b1:af:f8:7a:
28:ef:b5:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org