Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/dGDx4NKkpUJfOrZc3aRmNO1Uwsc.roa
File: dGDx4NKkpUJfOrZc3aRmNO1Uwsc.roa (raw, json)
Hash identifier: 53wIOZNEbkdUhoamSauB3kV5y9cU+B+LgFPV+zxlytM=
Subject key identifier: 74:60:F1:E0:D2:A4:A5:42:5F:3A:B6:5C:DD:A4:66:34:ED:54:C2:C7
Certificate issuer: /CN=db25d03fc18f2f42cda503869de194fd8cc21aa9
Certificate serial: 13027457
Authority key identifier: DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yXQP8GPL0LNpQOGneGU_YzCGqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/dGDx4NKkpUJfOrZc3aRmNO1Uwsc.roa
Signing time: Sat 01 Jan 2022 13:59:14 +0000
ROA not before: Sat 01 Jan 2022 13:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197192
IP address blocks: 195.226.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318927959 (0x13027457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db25d03fc18f2f42cda503869de194fd8cc21aa9
Validity
Not Before: Jan 1 13:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7460f1e0d2a4a5425f3ab65cdda46634ed54c2c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:90:0b:6c:90:6c:cf:20:e9:4f:14:c9:61:08:
3d:c5:c0:aa:34:17:0a:4a:d1:4d:20:6d:51:d6:0c:
1f:01:1a:16:d8:c0:59:a8:c3:66:5e:69:95:2d:5d:
e0:96:27:20:fc:6c:1e:9a:5b:6f:9a:ce:11:63:42:
ac:01:7c:01:76:b4:2c:a7:58:eb:48:be:f0:10:e3:
50:44:6a:18:9d:72:cd:02:6b:06:6c:18:73:13:90:
27:24:b4:80:74:5c:ea:30:1d:5f:86:c3:f5:b1:dd:
f7:b1:37:f5:85:3c:40:49:c5:76:b3:94:2a:aa:68:
3d:f3:07:a5:d0:93:fa:2e:64:3c:b9:2e:0d:db:6a:
90:45:74:8f:ab:65:f3:e8:71:c4:3f:5c:69:4d:cb:
7b:1d:14:14:39:f6:cd:97:3d:22:22:87:79:89:6a:
b7:80:90:7e:ec:ac:0b:07:79:9c:04:9e:e4:30:c4:
46:21:c6:e9:ec:6d:f7:a6:0b:af:cc:2f:98:94:ba:
0a:b8:0c:0c:b2:57:8b:60:af:79:fa:5e:43:8c:0c:
7c:19:90:83:e3:cb:98:88:be:14:8a:75:01:f7:ac:
e6:ee:44:21:ef:b2:65:b8:99:d7:2f:46:1b:bf:5b:
dd:53:66:92:81:df:64:c1:78:54:19:8b:a8:a4:a3:
14:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:60:F1:E0:D2:A4:A5:42:5F:3A:B6:5C:DD:A4:66:34:ED:54:C2:C7
X509v3 Authority Key Identifier:
keyid:DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yXQP8GPL0LNpQOGneGU_YzCGqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/dGDx4NKkpUJfOrZc3aRmNO1Uwsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/2yXQP8GPL0LNpQOGneGU_YzCGqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.213.0/24
Signature Algorithm: sha256WithRSAEncryption
64:48:3b:3e:51:bd:33:59:d0:bb:6c:de:f8:95:5a:ce:b8:55:
f5:ed:75:f4:c6:1f:79:e4:29:0e:e5:29:9e:4f:5f:51:af:89:
cf:de:05:3d:84:a8:a5:05:8e:26:db:6b:46:66:63:73:6f:ac:
ee:d4:29:17:ba:64:a7:df:a6:e2:c2:26:16:96:37:d5:90:91:
07:d8:b9:03:50:04:9b:6e:86:e7:df:82:f1:c5:cc:46:03:a5:
cc:a2:29:4d:ea:21:41:0a:f2:9a:49:2b:f0:9a:5c:41:f7:64:
6f:58:74:25:fe:5f:1c:6b:00:7a:c0:00:5c:ec:15:40:09:56:
e8:73:e4:d4:5d:fb:b3:02:a5:28:9a:47:ef:65:74:50:02:3a:
b3:30:05:ba:05:0a:1b:71:94:c7:a0:d5:06:94:10:93:bc:5a:
8b:ce:9e:f4:e2:5d:81:19:e0:41:29:86:29:a0:df:41:bc:8a:
be:3d:d8:d9:4f:bd:17:9c:81:8f:32:4c:c7:4c:00:ec:d3:13:
b6:c5:f6:04:b1:83:b2:9f:36:0a:71:bc:78:41:99:87:91:76:
5d:f0:80:16:d8:d9:35:49:f0:84:4f:62:44:39:dd:76:be:fd:
99:29:53:2f:d0:45:d7:bd:d6:e9:d1:82:de:e4:91:50:85:8f:
aa:ea:68:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net