Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/7ora2-9F6YBbIyNblV-ufXcJPSg.roa
File: 7ora2-9F6YBbIyNblV-ufXcJPSg.roa (raw, json)
Hash identifier: QgslZaktOEl5dAzqkWLxtPMqL+KeTy/+7TXHTMqJfD8=
Subject key identifier: EE:8A:DA:DB:EF:45:E9:80:5B:23:23:5B:95:5F:AE:7D:77:09:3D:28
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 056E8A16
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/7ora2-9F6YBbIyNblV-ufXcJPSg.roa
Signing time: Sat 01 Jan 2022 12:00:49 +0000
ROA not before: Sat 01 Jan 2022 12:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41008
IP address blocks: 195.14.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91130390 (0x56e8a16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Jan 1 12:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee8adadbef45e9805b23235b955fae7d77093d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:30:31:3a:df:fb:8e:8f:3c:1a:14:d0:fa:
1e:76:50:3b:54:e7:9d:0b:16:95:99:b5:3d:36:15:
77:34:0f:41:30:59:54:ce:0a:e7:59:55:35:95:e5:
83:f3:9d:fe:82:3e:42:f7:d7:9d:fe:9b:9d:78:18:
80:1c:cd:11:34:9e:9b:ce:96:1e:18:58:62:1b:00:
38:f2:2b:61:0d:e9:08:12:80:8f:45:2e:16:76:fa:
24:39:ff:55:f0:af:2e:f2:4b:00:3f:86:0c:d3:bc:
bb:87:d9:84:f4:9c:fd:32:b3:e8:05:32:26:a6:d5:
5f:76:33:44:e3:5b:ce:ab:21:d9:cc:e4:2a:e5:92:
4a:55:87:06:b2:5c:9d:a4:b8:62:7b:78:e6:bc:f4:
d4:ce:a8:12:e3:f1:26:ef:6c:5c:bf:a9:aa:13:58:
13:4b:aa:92:ba:4b:d0:0f:a0:51:dc:77:e5:03:34:
53:cc:53:ce:b4:36:f0:56:d0:61:29:59:37:af:87:
89:72:81:27:be:ff:d8:fe:65:23:84:aa:88:8e:9a:
84:90:23:ea:13:d2:c8:8a:c1:41:2b:ad:a1:94:ef:
9b:7d:5c:c7:1b:84:71:4b:4f:1d:31:91:c1:3b:cc:
26:a0:ee:c9:f6:0b:09:7b:8d:27:4b:53:43:2e:6f:
9c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8A:DA:DB:EF:45:E9:80:5B:23:23:5B:95:5F:AE:7D:77:09:3D:28
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/7ora2-9F6YBbIyNblV-ufXcJPSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.29.0/24
Signature Algorithm: sha256WithRSAEncryption
99:43:4e:9c:98:6f:52:59:7e:2a:8c:50:55:a8:41:7e:c9:8c:
c0:f9:91:1a:de:ea:df:ca:24:ae:ec:36:e4:54:b1:ac:2a:f4:
e1:40:7c:74:ff:0c:51:a2:67:6f:55:3f:b5:16:47:2d:48:94:
02:8b:21:7b:8e:47:81:00:21:c5:47:04:a6:b5:e7:f6:66:be:
f5:40:a4:07:14:9f:89:6e:aa:28:b0:1b:6d:ec:e1:05:85:4f:
d7:f6:5e:6a:bb:64:4e:74:49:f1:77:4f:ce:73:13:5d:9c:39:
b8:b5:ca:a6:87:f4:50:4d:f8:f6:9b:0d:54:fc:36:e9:58:fd:
0d:21:c0:80:c6:eb:e3:17:d0:bd:1c:f3:f4:13:cb:d9:c7:0e:
a8:aa:d6:29:3a:1f:e7:0a:a9:18:31:0b:bf:4c:00:66:a1:16:
25:92:ad:fc:a4:79:96:1f:2b:19:61:a8:ec:5a:bb:53:38:b3:
28:27:72:26:3c:eb:00:bd:e2:14:01:20:e6:cb:17:9e:53:d3:
50:a2:10:b4:a0:ae:d5:7c:47:3e:3e:41:47:ef:60:60:dd:ad:
83:16:0f:1a:88:3f:0b:8f:3e:22:08:ba:7a:79:a0:22:2c:60:
20:b0:b1:b0:1e:04:00:72:75:85:ca:57:35:7f:16:6d:79:57:
84:3f:32:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org