Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/11933b-fc0b-410f-9c34-1064504e2b97/1/lSp55zvB1YGyjWaj2YK5CppPfss.roa
File: lSp55zvB1YGyjWaj2YK5CppPfss.roa (raw, json)
Hash identifier: JhMsBrnGBD6GopR7UmGUcFxRlCUEVi/vnZKvCJaIRVY=
Subject key identifier: 95:2A:79:E7:3B:C1:D5:81:B2:8D:66:A3:D9:82:B9:0A:9A:4F:7E:CB
Certificate issuer: /CN=eb7c822d1e94517c88515cc9b3fc2bde129b454c
Certificate serial: 01825BDF16AFFCF015E644D512AB692F6242
Authority key identifier: EB:7C:82:2D:1E:94:51:7C:88:51:5C:C9:B3:FC:2B:DE:12:9B:45:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/63yCLR6UUXyIUVzJs_wr3hKbRUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/11933b-fc0b-410f-9c34-1064504e2b97/1/lSp55zvB1YGyjWaj2YK5CppPfss.roa
Signing time: Tue 02 Aug 2022 00:05:23 +0000
ROA not before: Tue 02 Aug 2022 00:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205308
IP address blocks: 194.55.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5b:df:16:af:fc:f0:15:e6:44:d5:12:ab:69:2f:62:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb7c822d1e94517c88515cc9b3fc2bde129b454c
Validity
Not Before: Aug 2 00:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=952a79e73bc1d581b28d66a3d982b90a9a4f7ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:78:88:74:dc:29:86:a0:f9:1b:ec:c5:c9:
64:49:21:e2:b1:00:45:78:ee:80:52:9d:45:0e:65:
9c:53:31:de:1d:be:a8:29:4c:b8:14:74:91:8f:5b:
46:05:69:1a:b4:bb:c1:fd:3b:4a:a0:4f:ce:81:d7:
04:9f:37:f4:20:1b:6f:49:59:32:a7:b5:67:fa:78:
85:e9:2e:6b:fa:c1:44:a2:f6:98:64:5b:24:3d:5a:
aa:48:a0:29:55:78:2d:83:57:14:14:d9:4e:3e:25:
54:ca:6c:05:fb:48:79:bf:4f:9e:4e:22:4b:a7:88:
c2:51:78:4b:08:a9:ab:db:11:de:ad:4b:f1:8e:c3:
8f:32:62:1c:0e:05:30:67:9e:74:0a:d6:15:4a:29:
95:6c:a3:74:ec:34:92:04:34:1b:f5:bf:39:27:88:
a9:55:7a:36:a4:d8:7a:09:ee:10:64:f8:d1:23:3d:
34:f2:ac:de:a9:f0:9b:87:1e:8c:bc:3c:3e:57:18:
f7:e6:f3:f1:31:7c:ab:a5:6f:f4:5a:c3:bf:66:4d:
ba:fa:52:bc:f9:6c:3f:9d:a9:61:1d:73:d5:90:ce:
7a:75:3d:77:37:9f:f8:8a:9f:ff:fa:a4:56:1f:33:
ca:77:b2:06:b0:b5:83:31:70:00:20:2f:d6:1e:31:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:2A:79:E7:3B:C1:D5:81:B2:8D:66:A3:D9:82:B9:0A:9A:4F:7E:CB
X509v3 Authority Key Identifier:
keyid:EB:7C:82:2D:1E:94:51:7C:88:51:5C:C9:B3:FC:2B:DE:12:9B:45:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/63yCLR6UUXyIUVzJs_wr3hKbRUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11933b-fc0b-410f-9c34-1064504e2b97/1/lSp55zvB1YGyjWaj2YK5CppPfss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11933b-fc0b-410f-9c34-1064504e2b97/1/63yCLR6UUXyIUVzJs_wr3hKbRUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.7.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5b:d4:41:0c:f8:8e:8c:bf:d8:4e:5e:94:a7:d3:eb:9a:2a:
7b:de:71:e1:67:0c:b9:ad:ab:73:53:5a:2c:2e:e6:06:96:bf:
e5:7f:6a:2c:14:e2:73:42:07:ef:fb:0b:5e:cd:0e:34:50:ab:
5c:26:4a:d5:87:69:6f:89:19:40:1e:f7:47:c7:9a:aa:0a:76:
02:c2:31:0e:ec:b5:97:57:fc:a7:6b:d2:ab:c4:4d:61:21:12:
b0:d4:67:15:ff:c2:86:5c:07:17:95:ce:45:8d:8a:44:d7:40:
a7:a0:a5:f5:ec:d1:57:0d:64:14:d3:f3:98:e6:73:d6:78:2f:
ff:1e:85:ca:60:af:72:e2:96:aa:93:cc:2f:a6:7b:cf:cf:4a:
f0:72:7b:9c:d8:75:e7:9d:bc:f2:02:98:fb:94:90:77:76:e1:
54:26:63:73:60:7f:b0:3e:31:20:3c:70:8b:a6:41:e9:cc:6d:
7e:91:a3:07:7c:0c:af:a5:85:12:b9:58:ec:99:5b:68:f9:1c:
61:b2:a3:b3:c4:3b:cc:c1:04:06:c5:e7:4e:0a:56:09:de:cf:
06:73:8e:c5:16:06:c1:e0:82:e5:d4:5e:8c:a1:9a:f6:9d:28:
39:fd:0a:51:2c:e7:21:33:75:7a:ec:3f:5d:4e:ab:cd:63:d5:
43:4d:51:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:49 2024 by rpki-client on console-fra.rpki-client.org