Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/226996-4b3f-4f5f-8a7e-0b1b6641b8a2/1/uDw52IH2zbPXsiFSVH1W4o5DarA.roa
File: uDw52IH2zbPXsiFSVH1W4o5DarA.roa (raw, json)
Hash identifier: 5mOfot2Rcyj7KCnyR6JDWsykDjLG0ru8e+A61SaJyLc=
Subject key identifier: B8:3C:39:D8:81:F6:CD:B3:D7:B2:21:52:54:7D:56:E2:8E:43:6A:B0
Certificate issuer: /CN=f97a546b66e2449ce628432dd80ad6d4d00cd03e
Certificate serial: 0183385446B8CABFADBDC46FB8E46E04A097
Authority key identifier: F9:7A:54:6B:66:E2:44:9C:E6:28:43:2D:D8:0A:D6:D4:D0:0C:D0:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XpUa2biRJzmKEMt2ArW1NAM0D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/226996-4b3f-4f5f-8a7e-0b1b6641b8a2/1/uDw52IH2zbPXsiFSVH1W4o5DarA.roa
Signing time: Tue 13 Sep 2022 19:29:50 +0000
ROA not before: Tue 13 Sep 2022 19:29:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9123
IP address blocks: 195.206.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:54:46:b8:ca:bf:ad:bd:c4:6f:b8:e4:6e:04:a0:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f97a546b66e2449ce628432dd80ad6d4d00cd03e
Validity
Not Before: Sep 13 19:29:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b83c39d881f6cdb3d7b22152547d56e28e436ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:23:1e:38:ca:dc:4e:28:5f:a2:48:83:59:8d:
a0:d7:9c:3e:4b:ca:0b:9e:57:77:d7:4b:46:73:e8:
a8:d8:1a:54:9f:64:e0:63:7b:32:b2:93:25:55:65:
80:31:44:4c:34:87:aa:f5:78:80:c1:8b:f1:b9:20:
65:d3:bf:23:a2:58:f3:0f:03:e2:cc:bc:93:39:2a:
80:72:88:3a:d5:f0:61:11:90:72:1d:eb:a2:58:e0:
c4:49:39:50:8b:1c:7c:02:32:13:13:03:ee:c5:5a:
ca:34:2c:6e:6b:58:f6:fd:70:0f:6f:d8:f0:81:4c:
f2:1d:0e:12:3e:93:62:36:e9:97:b6:af:49:ba:0f:
65:54:60:70:97:fc:6c:30:8d:dc:67:76:e9:0e:a7:
b1:b2:78:1e:6c:2a:7b:63:1e:93:0e:7f:d3:a6:2f:
2a:d8:a8:b9:25:e6:d0:98:ed:e3:60:27:b6:24:43:
ba:76:7e:b7:b1:06:40:21:5e:50:de:f3:a4:b5:ec:
63:c9:2a:0f:c8:7c:ff:a9:c8:c4:f9:56:78:2b:6d:
5e:ef:95:6c:71:0e:3a:5c:3f:3c:3f:b7:67:05:72:
9b:18:57:b0:6f:2e:cf:a9:37:c3:8e:38:39:57:31:
cf:e3:c4:75:d2:73:7e:16:44:c1:13:fc:86:30:7a:
83:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3C:39:D8:81:F6:CD:B3:D7:B2:21:52:54:7D:56:E2:8E:43:6A:B0
X509v3 Authority Key Identifier:
keyid:F9:7A:54:6B:66:E2:44:9C:E6:28:43:2D:D8:0A:D6:D4:D0:0C:D0:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XpUa2biRJzmKEMt2ArW1NAM0D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/226996-4b3f-4f5f-8a7e-0b1b6641b8a2/1/uDw52IH2zbPXsiFSVH1W4o5DarA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/226996-4b3f-4f5f-8a7e-0b1b6641b8a2/1/1-XpUa2biRJzmKEMt2ArW1NAM0D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.206.243.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:45:4a:1e:7c:df:15:06:ba:44:13:e9:25:cc:82:51:3d:48:
d6:2e:88:12:a2:63:0a:7c:ca:1e:44:be:89:cb:57:22:c4:7f:
a4:e3:d0:ac:49:31:e0:a9:13:61:db:4c:1a:89:79:45:de:56:
e2:ce:6f:e8:ce:03:77:cd:28:00:cf:4d:40:bd:10:76:f8:40:
d6:e7:f0:1e:bb:83:b3:24:07:95:b3:eb:2c:8e:0f:db:42:e3:
8d:77:37:a0:e8:0a:e0:82:54:fa:ab:5f:16:15:3e:71:c9:83:
ab:a1:eb:33:41:eb:15:7f:36:e8:f9:15:65:85:03:cb:fc:ba:
ae:d4:c5:d6:09:09:9e:12:a5:54:10:a2:0f:40:d4:6a:97:85:
b3:ca:d5:23:23:f6:7b:14:ce:28:ae:fc:e0:6a:c4:57:b8:18:
05:02:57:97:7d:95:50:9f:07:35:7c:e6:05:5b:66:b9:dc:98:
c5:e7:17:1f:d3:6b:3c:08:32:51:62:8a:c6:7a:9b:43:4d:db:
b2:82:75:4d:70:f3:1a:c7:ee:6e:34:51:f5:51:a5:bf:ca:83:
6f:29:e4:7e:92:2e:dd:7b:a9:94:02:f5:09:1d:f6:6e:c0:4e:
01:74:06:36:bc:f6:1c:75:75:04:d3:80:1d:8e:5b:44:ce:7d:
e8:28:c7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net