Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/9fd57c-90ef-44b0-93e4-fe5aed59a7d9/1/kHPvHUwsjd5AZ8L9W7jITxIc4HA.roa
File: kHPvHUwsjd5AZ8L9W7jITxIc4HA.roa (raw, json)
Hash identifier: B6+dWLaIFp0h45sH3vb+dpRzXGHTFoiubIQF5fl0o5k=
Subject key identifier: 90:73:EF:1D:4C:2C:8D:DE:40:67:C2:FD:5B:B8:C8:4F:12:1C:E0:70
Certificate issuer: /CN=313cdbc4b4de5495ee61317d2e737c2c3f7f83ba
Certificate serial: 0BBBC001
Authority key identifier: 31:3C:DB:C4:B4:DE:54:95:EE:61:31:7D:2E:73:7C:2C:3F:7F:83:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTzbxLTeVJXuYTF9LnN8LD9_g7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/9fd57c-90ef-44b0-93e4-fe5aed59a7d9/1/kHPvHUwsjd5AZ8L9W7jITxIc4HA.roa
Signing time: Sat 01 Jan 2022 08:02:44 +0000
ROA not before: Sat 01 Jan 2022 08:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39926
IP address blocks: 195.95.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196853761 (0xbbbc001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=313cdbc4b4de5495ee61317d2e737c2c3f7f83ba
Validity
Not Before: Jan 1 08:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9073ef1d4c2c8dde4067c2fd5bb8c84f121ce070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ac:de:63:a8:77:38:e1:87:e6:1d:93:49:ab:
cd:b0:66:29:9a:00:84:0c:39:79:75:57:f0:0f:19:
d0:7c:a4:25:e4:63:93:40:3a:2c:72:23:2c:f1:3e:
d0:3a:ea:d6:fc:2d:59:32:5a:cb:73:bd:4c:26:09:
81:8f:04:61:4b:1a:b4:5b:56:ac:89:94:8a:ff:01:
e6:f3:96:e0:b6:65:de:86:75:68:79:6a:5a:72:3d:
93:ac:15:ce:5c:87:1d:01:80:88:5f:d7:e6:ad:11:
10:26:dd:21:47:fc:3d:46:b1:a4:e2:3a:17:07:ff:
b8:f8:43:c7:27:b9:3e:54:a1:7c:2b:4a:a0:71:a7:
dd:d7:b3:76:e4:d2:7e:5e:63:15:8f:e1:91:c5:ac:
34:a6:22:f0:ae:b8:b3:19:12:98:3f:85:4c:c0:1d:
3d:5f:d6:60:ef:13:a0:48:af:72:a1:5b:cd:12:ae:
77:35:26:3c:30:3a:34:80:4f:8d:45:a6:14:aa:3e:
6e:7c:62:c5:fe:34:a8:c7:92:27:69:b9:15:bc:e0:
c1:d6:41:a2:c0:66:d6:34:61:02:e8:39:f4:68:51:
e3:dc:0c:ae:e5:2e:95:4d:42:95:7a:9d:53:12:25:
95:d0:32:c0:b4:b9:85:b3:45:b4:f8:8c:38:21:c0:
67:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:73:EF:1D:4C:2C:8D:DE:40:67:C2:FD:5B:B8:C8:4F:12:1C:E0:70
X509v3 Authority Key Identifier:
keyid:31:3C:DB:C4:B4:DE:54:95:EE:61:31:7D:2E:73:7C:2C:3F:7F:83:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTzbxLTeVJXuYTF9LnN8LD9_g7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/9fd57c-90ef-44b0-93e4-fe5aed59a7d9/1/kHPvHUwsjd5AZ8L9W7jITxIc4HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/9fd57c-90ef-44b0-93e4-fe5aed59a7d9/1/MTzbxLTeVJXuYTF9LnN8LD9_g7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.142.0/24
Signature Algorithm: sha256WithRSAEncryption
90:77:02:cf:4b:b5:ec:89:61:6d:6c:fa:e0:3a:e5:ba:a1:42:
50:91:3d:63:86:f4:0c:c4:28:f0:bd:eb:02:f5:9d:33:37:d4:
5f:9f:19:05:6a:8b:12:f2:61:e2:f3:2e:86:89:49:ac:73:50:
39:4a:4a:18:a8:e0:ed:d2:27:72:b6:49:b2:51:34:dd:f6:4a:
05:ab:8f:17:5f:e0:d2:a8:99:d7:7d:e3:4f:bf:4b:58:b8:d4:
7f:5d:c1:86:a4:d9:cb:90:49:0b:16:8a:30:b6:28:cc:47:93:
06:d5:e4:c8:d8:18:31:f6:40:ea:9b:34:bc:4c:32:10:17:a6:
df:68:5d:1c:21:7b:77:75:42:c1:66:82:6a:97:c6:4b:63:3e:
83:5f:a9:ea:39:a3:09:1c:e1:2e:3b:03:91:0e:a9:11:4f:1d:
c1:ba:5a:15:f9:57:9d:3f:b7:55:f8:1b:a9:52:8a:2d:ef:cf:
8e:bd:f1:1f:e0:0f:f7:22:3e:06:ed:70:60:ea:2f:15:cb:71:
cc:cc:1d:95:b2:f7:23:7a:df:af:c6:51:7b:cb:f0:81:dc:63:
ec:8c:c5:bd:ea:94:44:01:98:81:5b:b3:5f:41:db:25:cd:8e:
e9:86:ee:8c:d7:e5:8a:b3:d0:6f:bc:d7:04:5c:4f:af:58:28:
5a:67:ca:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:43 2024 by rpki-client on console-ams.rpki-client.org