Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/AEiXMXnbY6-gJfoHp25L80KqWqA.roa
File: AEiXMXnbY6-gJfoHp25L80KqWqA.roa (raw, json)
Hash identifier: zNgrfu/iJGx+wxpFI4A2/+l9Et1cM69gDDXK0gUgXJU=
Subject key identifier: 00:48:97:31:79:DB:63:AF:A0:25:FA:07:A7:6E:4B:F3:42:AA:5A:A0
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0FBADF84
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/AEiXMXnbY6-gJfoHp25L80KqWqA.roa
Signing time: Thu 20 Jan 2022 15:31:49 +0000
ROA not before: Thu 20 Jan 2022 15:31:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202984
IP address blocks: 62.76.142.0/24 maxlen: 24
195.19.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263905156 (0xfbadf84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 20 15:31:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0048973179db63afa025fa07a76e4bf342aa5aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ee:44:27:bb:b2:c7:2b:f1:4f:7d:37:0c:1e:
28:fb:c4:76:ae:9c:2f:36:0d:2a:1d:09:5a:85:9f:
91:d8:a1:f0:cb:56:f1:fb:8e:43:1a:54:5b:f4:15:
e7:f1:cc:38:10:5c:c9:a6:16:79:77:c2:33:aa:7a:
84:d2:cf:64:c9:86:7b:4b:be:70:5b:03:77:74:ba:
28:aa:3b:ab:af:d8:7d:eb:75:79:b0:6f:6b:c4:cc:
59:72:fa:5f:51:18:15:49:97:6f:4a:a6:3d:fa:ef:
65:a3:99:a2:c9:f2:c3:ec:81:c5:01:36:2e:ab:ad:
92:ea:fd:17:d1:a3:86:19:21:61:4c:a2:2e:ed:55:
e5:7f:29:95:2a:02:28:9c:cd:fd:e7:b6:7d:b9:f7:
8a:d2:69:e0:2d:cb:c3:ca:53:45:b3:ab:72:ea:e8:
0b:ef:fc:3d:37:9b:03:a3:81:1a:a5:00:48:3d:27:
fb:ee:36:fd:2b:b9:18:1a:ad:cf:e1:de:fa:df:f7:
32:2f:3c:ea:e3:9b:3d:28:57:13:6c:6f:64:6d:79:
ad:07:2f:fe:4a:d1:2a:0c:89:18:32:1e:49:ad:03:
33:01:49:90:c4:51:22:ab:0a:fa:9c:e6:53:1c:09:
75:dd:bf:55:84:ae:e5:de:84:4f:de:03:39:28:d6:
be:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:48:97:31:79:DB:63:AF:A0:25:FA:07:A7:6E:4B:F3:42:AA:5A:A0
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/AEiXMXnbY6-gJfoHp25L80KqWqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.142.0/24
195.19.92.0/24
Signature Algorithm: sha256WithRSAEncryption
13:06:06:ec:f4:85:01:5b:6a:18:0f:a8:71:e4:cd:ed:78:af:
8f:4f:21:8a:db:3d:35:1d:e2:e0:d1:96:c0:57:15:54:63:1b:
e8:9f:6c:d3:0c:63:df:5e:5e:c5:fd:fc:96:05:40:44:68:d7:
ac:39:9c:7b:7c:28:d8:19:19:8e:a9:b2:7a:87:59:d3:2d:8c:
56:ca:4a:42:ad:a7:dd:5d:d5:44:9c:30:f1:30:5b:9c:28:f2:
0f:1a:3b:24:03:43:a8:75:22:ca:6c:73:01:f9:c4:d7:ec:c2:
d1:a2:d5:e5:15:c2:30:0f:f7:1b:e2:a2:d8:e0:d5:33:66:ad:
d7:7f:0f:d2:0d:20:17:8b:f4:4b:1a:37:b1:af:db:a5:ea:77:
59:d4:46:11:36:e3:e5:b5:ea:29:3b:1e:a3:49:f5:73:5a:ca:
55:c3:8a:3d:34:7e:3e:61:68:42:1f:c0:34:e9:81:0c:6b:54:
83:f7:5c:13:89:a8:23:04:f6:66:13:d2:1d:c0:69:f1:3e:f0:
3b:d6:23:a5:97:97:4a:45:ae:23:ed:6b:38:e1:0a:d2:92:03:
96:ad:27:b0:f4:11:93:8d:f3:ed:6d:2b:4c:9e:05:7f:57:25:
3e:3f:eb:d9:a2:09:41:97:61:2f:a7:bd:3c:f3:86:bd:d5:9a:
a4:e9:07:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org