Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ajHbekBDjf7I5jgSUnQV-2Gi6ss.roa
File: ajHbekBDjf7I5jgSUnQV-2Gi6ss.roa (raw, json)
Hash identifier: vkastN5zrnvMBaesCzS0muSEhNBEGbGPSL23nmgH+lU=
Subject key identifier: 6A:31:DB:7A:40:43:8D:FE:C8:E6:38:12:52:74:15:FB:61:A2:EA:CB
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 034F0932
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ajHbekBDjf7I5jgSUnQV-2Gi6ss.roa
Signing time: Sat 01 Jan 2022 13:01:53 +0000
ROA not before: Sat 01 Jan 2022 13:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35073
IP address blocks: 195.238.254.0/24 maxlen: 24
2001:67c:18fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55511346 (0x34f0932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Jan 1 13:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a31db7a40438dfec8e63812527415fb61a2eacb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:d9:2b:c1:a0:8f:8b:ea:f8:83:da:49:0c:
b4:48:0c:30:9e:2d:83:9b:8e:e9:68:9b:67:08:1f:
09:79:7c:37:ac:db:6c:3e:04:ae:77:7c:b5:fa:f0:
1c:53:3c:6b:af:d4:1c:35:9b:6d:5f:c1:4c:e6:29:
ae:c6:f6:80:71:25:3b:97:eb:33:08:3f:b6:7c:6a:
46:6f:11:f4:9b:6c:f5:ec:62:1f:db:20:90:65:e7:
d7:5f:b4:d3:be:9f:35:fe:77:25:54:08:0a:52:70:
99:a6:76:e6:9b:12:00:a8:dc:70:fc:02:c7:bf:ea:
92:c4:80:84:9e:bf:96:97:22:1f:82:4c:9e:d8:ec:
bd:44:03:9c:84:f3:f7:c0:6f:b1:24:db:0a:33:65:
1e:e6:18:98:bd:08:ac:16:51:24:01:5b:03:3c:1f:
cf:10:68:b4:6a:81:7a:cd:82:d6:c8:a5:7b:65:5f:
f6:b8:24:eb:be:95:6a:02:f9:28:b9:36:74:27:c9:
72:d2:af:90:ef:be:9d:39:7b:c5:35:56:da:32:04:
ce:1b:54:15:c9:4d:1e:6f:f6:6c:7f:6e:25:e6:18:
2a:f8:a4:42:02:c0:58:be:73:ac:49:66:12:68:32:
56:6c:21:b1:6d:e7:86:48:bf:af:8c:59:68:12:cf:
a9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:31:DB:7A:40:43:8D:FE:C8:E6:38:12:52:74:15:FB:61:A2:EA:CB
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ajHbekBDjf7I5jgSUnQV-2Gi6ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.254.0/24
IPv6:
2001:67c:18fc::/48
Signature Algorithm: sha256WithRSAEncryption
1d:04:66:c0:bd:03:e1:50:a5:2b:9e:9b:99:c1:7c:25:28:12:
f8:8b:1c:f5:51:df:41:07:96:e3:2e:dd:84:a9:30:54:05:0f:
bc:63:91:af:7b:42:03:0b:b6:5f:f1:1b:94:29:79:93:3f:32:
c2:af:19:13:a5:63:aa:86:ff:6e:1d:41:03:ee:2e:15:4c:83:
42:d5:37:fb:36:ba:45:fe:14:7a:b6:3e:e1:bd:2c:e2:ce:62:
88:53:e4:c0:b3:f7:83:56:84:b8:a5:57:59:6a:52:78:2c:35:
14:e0:e6:7b:95:db:a2:05:6d:ad:f6:55:6b:fd:d6:5b:f9:1f:
e0:56:ac:eb:89:80:ae:38:b0:93:17:92:fe:c6:8e:80:b0:a6:
db:84:07:3e:a2:2a:32:2e:0c:9e:18:20:bd:d4:48:8f:81:f1:
2b:36:d8:01:75:7d:96:3b:a0:02:98:b2:2a:96:fa:19:25:19:
1e:14:65:c8:a3:27:ad:5f:2d:a6:89:d9:2f:45:20:71:d5:b6:
a5:54:be:9d:03:33:6c:c5:4f:bc:dd:17:bb:8c:f2:5e:1a:56:
1e:ac:32:01:53:54:86:ff:50:d4:32:05:50:d6:5f:2d:19:ac:
2c:d8:65:b7:a6:6b:70:0c:51:9e:17:02:bc:29:67:41:c6:d6:
80:9e:b8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:13 2023 by rpki-client on console.sobornost.net