Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/w9uWBZ4Qd8XTqGTzkcuBOiCF3EI.roa
File: w9uWBZ4Qd8XTqGTzkcuBOiCF3EI.roa (raw, json)
Hash identifier: r9oh9iPoMJP7g/XnsDgjYGVRC40EzY8kIQqN/30eUCc=
Subject key identifier: C3:DB:96:05:9E:10:77:C5:D3:A8:64:F3:91:CB:81:3A:20:85:DC:42
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 04FA73CA
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/w9uWBZ4Qd8XTqGTzkcuBOiCF3EI.roa
Signing time: Wed 20 Apr 2022 06:39:33 +0000
ROA not before: Wed 20 Apr 2022 06:39:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 185.95.159.0/24 maxlen: 24
185.95.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83522506 (0x4fa73ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Apr 20 06:39:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3db96059e1077c5d3a864f391cb813a2085dc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e4:57:7b:06:43:97:74:ac:c3:11:51:3b:23:
49:34:39:d8:7e:5c:9a:4d:8e:70:80:00:9a:45:29:
43:be:26:8c:71:eb:a8:0d:f2:7c:4b:5e:01:1b:94:
e7:ce:92:c6:6a:a1:14:54:22:68:37:5f:39:9b:8f:
2f:31:5a:79:a6:2e:8f:a4:38:9e:88:20:c8:2b:b1:
a9:e8:8a:fd:63:6a:25:b0:ed:14:6e:56:5e:40:1f:
c0:9a:62:ac:5e:a0:15:54:d5:1f:29:d8:e3:66:0b:
d7:2f:e4:5d:bc:e9:b2:51:d3:f6:93:d7:6a:95:67:
6a:7e:ad:47:14:f4:44:ec:77:15:58:85:98:e8:f7:
57:a0:a6:04:c8:a4:52:96:4b:ea:01:27:8b:02:10:
36:9e:50:5b:3d:e5:37:22:56:26:10:37:9b:33:84:
6c:ea:ff:d8:6d:f0:46:fa:1a:43:6b:d7:56:58:9c:
71:99:a0:c9:1d:83:d6:5f:bf:fd:e5:74:f3:f9:3d:
ec:0c:a5:f9:ab:30:1f:23:92:26:3a:b6:a5:e8:79:
55:e0:60:a4:35:42:58:92:3b:3c:9b:fd:d7:f2:a3:
43:60:4d:f5:e3:34:68:30:53:5a:40:2a:81:aa:eb:
ef:07:f0:b3:98:5b:8c:8a:c4:30:6d:fd:5c:b6:59:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DB:96:05:9E:10:77:C5:D3:A8:64:F3:91:CB:81:3A:20:85:DC:42
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/w9uWBZ4Qd8XTqGTzkcuBOiCF3EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.157.0/24
185.95.159.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:4a:ba:89:54:6b:f1:05:5e:09:30:7f:c4:67:2a:c0:dc:62:
0d:4e:91:d6:74:51:70:d9:56:71:24:7d:fb:da:bc:1a:58:e1:
3b:29:57:ef:03:92:09:81:b8:8c:84:4e:4c:7b:d3:f1:84:c9:
19:2b:83:4c:8d:30:0c:70:5e:04:48:22:15:25:4f:0a:ea:28:
35:b2:fd:48:07:d0:a3:c3:9a:88:2c:28:f0:45:ad:4a:45:32:
d6:10:d6:f1:eb:81:d9:fe:ee:2f:f2:39:ac:7b:1c:41:80:b8:
6a:eb:4e:60:b6:e4:a5:f6:b9:a3:d1:f9:c5:32:2a:2c:d3:a1:
04:09:62:08:e4:ad:e1:5a:f4:a1:a4:9b:4a:3c:23:08:e9:f8:
11:2c:34:e2:f1:07:30:8d:19:f1:cf:10:20:54:13:d2:59:dc:
37:a7:58:56:49:99:bc:c9:f0:3a:33:5c:cb:36:e7:79:d6:e4:
29:5b:94:d3:9e:f3:74:d4:f3:46:62:df:0a:7c:2a:74:93:20:
81:0c:a7:76:a1:b4:fa:de:ac:8f:6f:60:33:39:41:ff:92:f7:
e5:af:7c:a6:72:b5:11:27:46:60:e1:a0:f9:be:93:d6:c9:ea:
ea:ba:62:06:62:ba:4f:8a:bf:24:6c:32:c3:90:9e:df:34:98:
88:07:62:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:33 2024 by rpki-client on console-ams.rpki-client.org