Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/t-1XuGrgBjLqWLc2hS1t9VuavMk.roa
File: t-1XuGrgBjLqWLc2hS1t9VuavMk.roa (raw, json)
Hash identifier: F7LKD3HooENGztyCJASCQlscS8LrF3MOsOamJI9cOWQ=
Subject key identifier: B7:ED:57:B8:6A:E0:06:32:EA:58:B7:36:85:2D:6D:F5:5B:9A:BC:C9
Certificate issuer: /CN=5a94c4bc4d2563e252ebfcc0fbc2ac199cce608a
Certificate serial: 0636BE15
Authority key identifier: 5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/t-1XuGrgBjLqWLc2hS1t9VuavMk.roa
Signing time: Sat 01 Jan 2022 01:57:41 +0000
ROA not before: Sat 01 Jan 2022 01:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204918
IP address blocks: 185.171.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104250901 (0x636be15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a94c4bc4d2563e252ebfcc0fbc2ac199cce608a
Validity
Not Before: Jan 1 01:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7ed57b86ae00632ea58b736852d6df55b9abcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1a:d2:55:c5:d2:d2:2c:97:08:17:97:89:eb:
f7:03:27:e9:32:b4:f1:bd:43:a4:f3:69:5c:1c:a2:
86:85:34:b1:71:7e:b3:34:b2:fa:02:ab:fe:d6:06:
32:82:9f:ba:b2:08:1a:dd:32:4e:08:86:b3:4c:6c:
43:30:05:6c:dc:78:7a:b0:9f:05:18:db:bc:e8:74:
b7:ad:81:6d:0a:dc:8a:c9:24:a4:49:ae:0c:28:60:
5e:3f:60:9b:ef:a1:01:0c:c1:a6:b5:ac:c6:e4:09:
9f:05:95:0b:bc:b2:c4:40:0a:e8:08:ba:a1:78:75:
b5:d2:99:90:dd:66:4c:86:20:38:b4:fe:ca:47:46:
12:33:7d:9a:eb:c4:e6:89:28:4a:be:97:14:35:ca:
5b:c0:80:e2:85:a0:af:ed:1a:30:f9:47:7d:fe:ce:
80:d9:55:0d:9d:d5:9d:0c:22:f8:db:ec:91:f5:47:
f6:16:75:11:b1:87:3c:9b:c1:2c:04:80:a0:2b:91:
bf:36:98:ab:bc:36:3f:b3:be:66:05:66:e1:3e:e2:
8e:63:21:86:6e:51:7e:12:85:7b:96:81:9b:86:30:
ad:6c:82:db:62:f1:2a:ff:88:00:31:8b:4d:3c:3e:
01:40:8d:9b:02:f1:1d:e2:19:7e:24:b1:72:dd:21:
d1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:ED:57:B8:6A:E0:06:32:EA:58:B7:36:85:2D:6D:F5:5B:9A:BC:C9
X509v3 Authority Key Identifier:
keyid:5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/t-1XuGrgBjLqWLc2hS1t9VuavMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/WpTEvE0lY-JS6_zA-8KsGZzOYIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:bc:15:da:9b:2b:1c:75:1a:ee:ea:e7:f1:c9:76:0e:5f:7e:
c2:74:3d:c9:37:9a:4e:37:16:4d:2d:0f:16:d3:0a:1b:37:56:
28:07:39:be:ca:a7:f9:b3:8a:91:74:69:c3:f4:71:33:b8:09:
5e:61:2d:45:07:8b:1e:04:d5:b9:08:25:27:cd:df:db:bd:28:
7b:79:d1:72:ca:4b:06:68:f1:55:c9:8c:ab:a2:20:1f:29:0d:
21:58:18:35:8d:d7:98:ee:13:46:8b:84:7b:98:db:75:48:ee:
e3:6b:f7:2d:7f:2a:80:f4:d9:28:81:41:fc:ed:3d:7d:e7:b3:
20:ad:bd:c2:9c:4f:bf:45:44:3b:f4:88:56:03:14:04:91:85:
e5:ec:29:56:0c:f6:1e:64:c2:b8:cc:62:d8:35:67:d9:3a:ff:
e2:3a:76:9d:e6:36:ae:1a:8c:0b:5f:f2:cd:81:a6:23:14:61:
19:69:dc:28:4d:4d:df:a2:92:0b:87:7f:52:5f:82:a9:79:f4:
eb:20:76:29:74:da:91:9e:07:67:1b:59:a9:3f:b9:b4:41:2e:
1d:69:14:1e:60:0f:37:87:15:bc:b4:53:3c:29:db:6b:ad:84:
17:5d:ca:04:fc:0b:50:76:79:38:14:20:34:b0:e8:18:07:d3:
4b:29:e7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:59 2024 by rpki-client on console-ams.rpki-client.org